blob: 6cf653946dbf6d50bbcd152d092f5a40b4582009 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Christopher Fauletd59cd782022-12-09 10:28:32 +010042022/12/09 : 2.4.20
5 - BUG/MINOR: checks: update pgsql regex on auth packet
6 - DOC: config: Fix pgsql-check documentation to make user param mandatory
7 - BUG/MEDIUM: lua: Don't crash in hlua_lua2arg_check on failure
8 - BUG/MEDIUM: lua: handle stick table implicit arguments right.
9 - BUILD: h1: silence an initiialized warning with gcc-4.7 and -Os
10 - BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()
11 - BUILD: http_fetch: silence an uninitiialized warning with gcc-4/5/6 at -Os
12 - BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error
13 - MINOR: smtpchk: Update expect rule to fully match replies to EHLO commands
14 - BUG/MINOR: smtpchk: SMTP Service check should gracefully close SMTP transaction
15 - BUG/MINOR: backend: only enforce turn-around state when not redispatching
16 - DOC: configuration: missing 'if' in tcp-request content example
17 - BUG/MAJOR: stick-tables: do not try to index a server name for applets
18 - BUG/MINOR: server: make sure "show servers state" hides private bits
19 - CI: Replace the deprecated `::set-output` command by writing to $GITHUB_OUTPUT in matrix.py
20 - CI: Replace the deprecated `::set-output` command by writing to $GITHUB_OUTPUT in workflow definition
21 - BUG/MINOR: log: Preserve message facility when the log target is a ring buffer
22 - BUG/MINOR: ring: Properly parse connect timeout
23 - BUG/MEDIUM: compression: handle rewrite errors when updating response headers
24 - BUG/MINOR: sink: Only use backend capability for the sink proxies
25 - BUG/MINOR: sink: Set default connect/server timeout for implicit ring buffers
26 - CI: SSL: use proper version generating when "latest" semantic is used
27 - CI: SSL: temporarily stick to LibreSSL=3.5.3
28 - BUG/MINOR: stick-table: Use server_id instead of std_t_sint in process_store_rules()
29 - DOC: management: add forgotten "show startup-logs"
30 - BUG/MAJOR: stick-table: don't process store-response rules for applets
31 - BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task
32 - BUG/MINOR: log: fixing bug in tcp syslog_io_handler Octet-Counting
33 - CI: add monthly gcc cross compile jobs
34 - BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer
35 - BUG/MINOR: ssl: ocsp structure not freed properly in case of error
36 - CI: switch to the "latest" LibreSSL
37 - CI: emit the compiler's version in the build reports
38 - BUG/MEDIUM: wdt/clock: properly handle early task hangs
39 - BUG/MINOR: http-htx: Fix error handling during parsing http replies
40 - BUG/MINOR: resolvers: Set port before IP address when processing SRV records
41 - BUG/MINOR: mux-fcgi: Be sure to send empty STDING record in case of zero-copy
42 - BUG/MEDIUM: mux-fcgi: Avoid value length overflow when it doesn't fit at once
43 - BUG/MINOR: mux-h1: Do not send a last null chunk on body-less answers
44 - REG-TESTS: cache: Remove T-E header for 304-Not-Modified responses
45 - DOC: config: fix alphabetical ordering of global section
46 - BUG/MEDIUM: ring: fix creation of server in uninitialized ring
47 - BUG/MINOR: pool/cli: use ullong to report total pool usage in bytes
48 - BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task
49 - BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists
50 - BUG/MINOR: ssl: don't initialize the keylog callback when not required
51 - BUG/MEDIUM: peers: messages about unkown tables not correctly ignored
52 - BUILD: peers: Remove unused variables
53 - BUG/MINOR: server/idle: at least use atomic stores when updating max_used_conns
54 - BUILD: listener: fix build warning on global_listener_rwlock without threads
55 - BUG/MINOR: cfgparse-listen: fix ebpt_next_dup pointer dereference on proxy "from" inheritance
56 - BUG/MINOR: log: fix parse_log_message rfc5424 size check
57 - BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action
58 - BUILD: http-htx: Silent build error about a possible NULL start-line
59 - BUG/MINOR: mux-h1: Fix handling of 408-Request-Time-Out
60 - Revert "BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action"
61 - DOC: config: provide some configuration hints for "http-reuse"
62 - DOC: config: clarify the fact that SNI should not be used in HTTP scenarios
63 - DOC: config: mention that a single monitor-uri rule is supported
64 - DOC: config: explain how default matching method for ACL works
65 - DOC: config: clarify the fact that "retries" is not just for connections
66 - DOC: config: clarify the -m dir and -m dom pattern matching methods
67 - SCRIPTS: announce-release: add a link to the data plane API
68 - Revert "CI: switch to the "latest" LibreSSL"
69 - Revert "CI: determine actual OpenSSL version dynamically"
70
Christopher Fauletec554342022-09-28 14:51:49 +0200712022/09/28 : 2.4.19
72 - BUG/MEDIUM: mworker: use default maxconn in wait mode
73 - MINOR: http: Add function to get port part of a host
74 - MINOR: http: Add function to detect default port
75 - BUG/MEDIUM: h1: Improve authority validation for CONNCET request
76 - MINOR: http-htx: Use new HTTP functions for the scheme based normalization
77 - MINOR: ebtree: add ebmb_lookup_shorter() to pursue lookups
78 - BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
79 - MINOR: peers: Use a dedicated reconnect timeout when stopping the local peer
80 - BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
81 - BUG/MINOR: peers: Use right channel flag to consider the peer as connected
82 - BUG/MEDIUM: dns: Properly initialize new DNS session
83 - MINOR: server: Constify source server to copy its settings
84 - REORG: server: Export srv_settings_cpy() function
85 - BUG/MEDIUM: proxy: Perform a custom copy for default server settings
86 - BUG/MINOR: ring/cli: fix a race condition between the writer and the reader
87 - BUG/MINOR: sink: fix a race condition between the writer and the reader
88 - BUILD: cfgparse: always defined _GNU_SOURCE for sched.h and crypt.h
89 - BUG/MEDIUM: poller: use fd_delete() to release the poller pipes
90 - BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()
91 - BUILD: debug: silence warning on gcc-5
92 - BUG/MEDIUM: ring: fix too lax 'size' parser
93 - BUILD: http: silence an uninitialized warning affecting gcc-5
94 - BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names
95 - BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
96 - BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized
97 - BUG/MAJOR: mworker: fix infinite loop on master with no proxies.
98 - BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
99 - BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect
100 - REGTESTS: Fix prometheus script to perform HTTP health-checks
101 - DOC: configuration: do-resolve doesn't work with a port in the string
102 - BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
103 - BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
104 - BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
105 - BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
106 - BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets
107 - BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)
108 - BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
109 - REGTESTS: http_request_buffer: Add a barrier to not mix up log messages
110 - BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools
111 - BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber
112 - BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber
113 - BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber
114 - BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
115 - BUILD: makefile: enable crypt(3) for NetBSD
116 - BUG/MINOR: h1: Support headers case adjustment for TCP proxies
117 - BUG/MINOR: task: always reset a new tasklet's call date
118 - BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
119 - BUG/MINOR: signals/poller: ensure wakeup from signals
120 - CI: cirrus-ci: bump FreeBSD image to 13-1
121 - BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
122 - MINOR: listener: small API change
123 - BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'
124 - REGTESTS: healthcheckmail: Relax matching on the healthcheck log message
125 - REGTESTS: log: test the log-forward feature
126 - BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.
127 - REGTESTS: ssl/log: test the log-forward with SSL
128 - DOC: fix TOC in starter guide for subsection 3.3.8. Statistics
129 - BUG/MEDIUM: captures: free() an error capture out of the proxy lock
130 - BUILD: fd: fix a build warning on the DWCAS
131 - SCRIPTS: announce-release: update some URLs to https
132 - BUG/MINOR: log: improper behavior when escaping log data
133 - REGTESTS: 4be_1srv_smtpchk_httpchk_layer47errors: Return valid SMTP replies
134 - BUG/MEDIUM: resolvers: Remove aborted resolutions from query_ids tree
135
Christopher Faulet1d80f182022-07-27 15:10:44 +02001362022/07/27 : 2.4.18
137 - CI: determine actual LibreSSL version dynamically
138 - MEDIUM: http-ana: Add a proxy option to restrict chars in request header names
139 - BUILD: fix build warning on solaris based systems with __maybe_unused.
140 - MINOR: tools: add get_exec_path implementation for solaris based systems.
141 - BUG/MINOR: ssl: Fix crash when no private key is found in pem
142 - REGTESTS: abortonclose: Fix some race conditions
143 - BUG/MEDIUM: config: Reset outline buffer size on realloc error in readcfgfile()
144 - BUG/MINOR: check: Reinit the buffer wait list at the end of a check
145 - BUG/MINOR: cfgparse: abort earlier in case of allocation error
146 - BUG/MINOR: peers: fix error reporting of "bind" lines
147 - BUILD/MINOR: cpuset fix build for FreeBSD 13.1
148 - CI: determine actual OpenSSL version dynamically
149 - BUG/MEDIUM: tools: Fix `inet_ntop` usage in sa2str
150 - BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols
151 - BUG/MEDIUM: resolvers: Don't defer resolutions release in deinit function
152 - BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections
153 - BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section
154 - BUG/MEDIUM: sample: Fix adjusting size in word converter
155 - REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+ (2)
156 - SCRIPTS: add make-releases-json to recreate a releases.json file in download dirs
157 - SCRIPTS: make publish-release try to launch make-releases-json
158 - DOC: peers: indicate that some server settings are not usable
159 - DOC: peers: clarify when entry expiration date is renewed.
160 - DOC: peers: fix port number and addresses on new peers section format
161 - DOC: intro: adjust the numbering of paragrams to keep the output ordered
162 - BUG/MINOR: ssl_ckch: Free error msg if commit changes on a cert entry fails
163 - BUG/MEDIUM: ssl_ckch: Don't delete a cert entry if it is being modified
164 - BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a cert entry
165 - BUG/MEDIUM: ssl_ckch: Rework 'commit ssl cert' to handle full buffer cases
166 - BUG/MEDIUM: ssl/crt-list: Rework 'add ssl crt-list' to handle full buffer cases
167 - MEDIUM: http-ana: Always report rewrite failures as PRXCOND in logs
168 - REGTESTS: abortonclose: Add a barrier to not mix up log messages
169 - REGTESTS: http_request_buffer: Increase client timeout to wait "slow" clients
170 - BUG/MINOR: ssl_ckch: Dump cert transaction only once if show command yield
171 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cert I/O handler
172 - REGTESTS: http_abortonclose: Extend supported versions
173 - REGTESTS: restrict_req_hdr_names: Extend supported versions
174 - BUILD: compiler: implement unreachable for older compilers too
175 - BUG/MEDIUM: mailers: Set the object type for check attached to an email alert
176 - BUG/MINOR: trace: Test server existence for health-checks to get proxy
177 - BUG/MINOR: checks: Properly handle email alerts in trace messages
178 - REGTESTS: healthcheckmail: Update the test to be functionnal again
179 - REGTESTS: healthcheckmail: Relax health-check failure condition
180 - BUG/MINOR: cli/stats: add missing trailing LF after JSON outputs
181 - BUG/MINOR: server: do not enable DNS resolution on disabled proxies
182 - BUG/MINOR: cli/stats: add missing trailing LF after "show info json"
183 - BUG/MINOR: tcp-rules: Make action call final on read error and delay expiration
184 - BUG/MEDIUM: ssl/cli: crash when crt inserted into a crt-list
185 - MEDIUM: mux-h2: try to coalesce outgoing WINDOW_UPDATE frames
186 - BUG/MINOR: ssl: Do not look for key in extra files if already in pem
187 - BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created
188 - BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch
189 - MINOR: fd: add a new FD_DISOWN flag to prevent from closing a deleted FD
190 - BUG/MEDIUM: ssl/fd: unexpected fd close using async engine
191 - BUILD: Makefile: Add Lua 5.4 autodetect
192 - CI: re-enable gcc asan builds
193 - MINOR: fd: Add BUG_ON checks on fd_insert()
194 - BUG/MINOR: peers/config: always fill the bind_conf's argument
195 - BUG/MINOR: http-check: Preserve headers if not redefined by an implicit rule
196 - BUG/MINOR: http-act: Properly generate 103 responses when several rules are used
197 - BUG/MINOR: peers: fix possible NULL dereferences at config parsing
198 - BUG/MINOR: http-htx: Fix scheme based normalization for URIs wih userinfo
199 - BUG/MEDIUM: http-fetch: Don't fetch the method if there is no stream
200 - REGTEESTS: filters: Fix CONNECT request in random-forwarding script
201 - BUG/MINOR: mux-h1: Be sure to commit htx changes in the demux buffer
202 - BUG/MEDIUM: http-ana: Don't wait to have an empty buf to switch in TUNNEL state
203 - BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send
204 - MEDIUM: mworker: set the iocb of the socketpair without using fd_insert()
205 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds
206 - BUILD: makefile: Fix install(1) handling for OpenBSD/NetBSD/Solaris/AIX
207 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds (try 2)
208 - BUG/MINOR: tools: fix statistical_prng_range()'s output range
209 - REGTESTS: Fix some scripts to be compatible with 2.4 and prior
210 - BUG/MEDIUM: mworker: proc_self incorrectly set crashes upon reload
211 - BUILD: add detection for unsupported compiler models
212 - BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible
213 - BUG/MINOR: sockpair: wrong return value for fd_send_uxst()
214
Christopher Faulet9f971552022-05-13 17:13:48 +02002152022/05/13 : 2.4.17
216 - CI: github actions: update LibreSSL to 3.5.2
217 - SCRIPTS: announce-release: add URL of dev packages
218 - BUG/MEDIUM: mux-fcgi: Be sure to never set EOM flag on an empty HTX message
219 - BUG/MEDIUM: mux-h1: Be able to handle trailers when C-L header was specified
220 - BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket
221 - BUG/MINOR: mux-h2: mark the stream as open before processing it not after
222 - MINOR: mux-h2: report a trace event when failing to create a new stream
223 - DOC: config: Update doc for PR/PH session states to warn about rewrite failures
224 - BUG/MINOR: tcp/http: release the expr of set-{src,dst}[-port]
225 - BUG/MEDIUM: resolvers: make "show resolvers" properly yield
226 - BUG/MEDIUM: cli: make "show cli sockets" really yield
227 - BUG/MINOR: map/cli: protect the backref list during "show map" errors
228 - BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init
229 - DOC: fix typo "ant" for "and" in INSTALL
230 - CI: dynamically determine actual version of h2spec
231 - BUILD: ssl: work around bogus warning in gcc 12's -Wformat-truncation
232 - BUILD: debug: work around gcc-12 excessive -Warray-bounds warnings
233 - BUILD: listener: shut report of possible null-deref in listener_accept()
234 - BUG/MEDIUM: ssl: fix the gcc-12 broken fix :-(
235 - DOC: install: update gcc version requirements
236 - BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).
237 - BUG/MINOR: conn_stream: do not confirm a connection from the frontend path
238 - BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized
239 - CLEANUP: mux-h1: Fix comments and error messages for global options
240
Christopher Faulet9d532c42022-04-29 16:04:08 +02002412022/04/29 : 2.4.16
242 - BUG/MINOR: tools: fix url2sa return value with IPv4
243 - BUG/MINOR: server/ssl: free the SNI sample expression
244 - CI: github actions: switch to LibreSSL-3.5.1
245 - BUG/MEDIUM: mux-h1: only turn CO_FL_ERROR to CS_FL_ERROR with empty ibuf
246 - BUG/MEDIUM: trace: avoid race condition when retrieving session from conn->owner
247 - MEDIUM: mqtt: support mqtt_is_valid and mqtt_field_value converters for MQTTv3.1
248 - DOC: config: Explictly add supported MQTT versions
249 - BUG/MINOR: tools: url2sa reads too far when no port nor path
250 - BUG/MEDIUM: mux-fcgi: Properly handle return value of headers/trailers parsing
251 - BUG/MEDIUM: mux-h1: Properly detect full buffer cases during message parsing
252 - BUG/MEDIUM: stream-int: do not rely on the connection error once established
253 - MEDIUM: mux-h2: slightly relax timeout management rules
254 - BUG/MEDIUM: mux-h2: make use of http-request and keep-alive timeouts
255 - DOC: reflect H2 timeout changes
256 - BUG/MINOR: samples: add missing context names for sample fetch functions
257 - BUG/MINOR: cli/stream: fix "shutdown session" to iterate over all threads
258 - BUG/MAJOR: mux_pt: always report the connection error to the conn_stream
259 - CI: github actions: update OpenSSL to 3.0.2
260 - BUG/MINOR: fcgi-app: Don't add C-L header on response to HEAD requests
261 - BUG/MEDIUM: stats: Be sure to never set EOM flag on an empty HTX message
262 - BUG/MEDIUM: hlua: Don't set EOM flag on an empty HTX message in HTTP applet
263 - BUG/MEDIUM: promex: Be sure to never set EOM flag on an empty HTX message
264 - BUG/MEDIUM: mux-h1: Set outgoing message to DONE when payload length is reached
265 - BUG/MEDIUM: http-conv: Fix url_enc() to not crush const samples
266 - BUG/MEDIUM: http-act: Don't replace URI if path is not found or invalid
267 - BUG/MINOR: opentracing: setting the return value in function flt_ot_var_set()
268 - EXAMPLES: opentracing: refined shell scripts for testing filter performance
269 - DOC: opentracing: corrected comments in function descriptions
270 - CLEANUP: opentracing: removed unused function flt_ot_var_unset()
271 - CLEANUP: opentracing: removed unused function flt_ot_var_get()
272 - CLEANUP: opentracing: added flt_ot_smp_init() function
273 - CLEANUP: opentracing: added variable to store variable length
274 - DEBUG: opentracing: show return values of all functions in the debug output
275 - CI: Update to actions/checkout@v3
276 - CI: Update to actions/cache@v3
277 - CI: cirrus: switch to FreeBSD-13.0
278 - BUG/MINOR: mux-h2: do not send GOAWAY if SETTINGS were not sent
279 - BUG/MINOR: cache: do not display expired entries in "show cache"
280 - BUILD: debug: mark the __start_mem_stats/__stop_mem_stats symbols as weak
281 - BUG/MINOR: mux-h2: do not use timeout http-keep-alive on backend side
282 - BUG/MINOR: mux-h2: use timeout http-request as a fallback for http-keep-alive
283 - BUG/MEDIUM: mux-h1: Don't request more room on partial trailers
284 - BUILD: sched: workaround crazy and dangerous warning in Clang 14
285 - BUILD: compiler: use a more portable set of asm(".weak") statements
286 - BUG/MEDIUM: stream: do not abort connection setup too early
287 - BUG/MEDIUM: fcgi-app: Use http_msg flags to know if C-L header can be added
288 - BUG/MEDIUM: compression: Don't forget to update htx_sl and http_msg flags
289 - SCRIPTS: announce-release: update the doc's URL
290 - DOC: lua: update a few doc URLs
291 - SCRIPTS: announce-release: add shortened links to pending issues
292 - BUG/MINOR: cache: Disable cache if applet creation fails
293 - BUG/MAJOR: connection: Never remove connection from idle lists outside the lock
294 - DOC: remove my name from the config doc
295 - BUG/MINOR: rules: Fix check_capture() function to use the right rule arguments
296 - MINOR: task: add a new task_instant_wakeup() function
297 - MEDIUM: queue: use tasklet_instant_wakeup() to wake tasks
298 - REGTESTS: fix the race conditions in be2dec.vtc ad field.vtc
299 - BUILD: compiler: properly distinguish weak and global symbols
300 - BUG/MINOR: resolvers: Fix memory leak in resolvers_deinit()
301 - BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()
302 - CLEANUP: acl: Remove unused variable when releasing an acl expression
303 - BUILD: fd: remove unused variable totlen in fd_write_frag_line()
304 - BUILD: sockpair: do not set unused flag
305 - BUILD: proto_uxst: do not set unused flag
306 - BUILD: opentracing: Fix OT build due to misuse of var_clear()
307
Christopher Faulet7782e232022-03-14 17:31:12 +01003082022/03/14 : 2.4.15
309 - CI: github actions: add the output of $CC -dM -E-
310 - CI: github actions: add OpenTracing builds
311 - CI: github actions: use cache for OpenTracing
312 - CI: github actions: use cache for SSL libs
313 - BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()
314 - REGTESTS: fix the race conditions in normalize_uri.vtc
315 - REGTESTS: fix the race conditions in secure_memcmp.vtc
316 - BUG/MINOR: pool: always align pool_heads to 64 bytes
317 - BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed
318 - MINOR: pools: add a new global option "no-memory-trimming"
319 - BUILD: pools: fix backport of no-memory-trimming on non-linux OS
320 - BUG/MINOR: add missing modes in proxy_mode_str()
321 - BUG/MINOR: cli: shows correct mode in "show sess"
322 - BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
323 - BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
324 - BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
325 - BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
326 - DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
327 - BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
328 - DEBUG: stream: Add the missing descriptions for stream trace events
329 - DEBUG: stream: Fix stream trace message to print response buffer state
330 - BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
331 - BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()
332 - BUG/MINOR: stream: make the call_rate only count the no-progress calls
333 - DOC: Fix usage/examples of deprecated ACLs
334 - BUILD: tree-wide: mark a few numeric constants as explicitly long long
335
Christopher Fauleteaa786f2022-02-25 17:10:23 +01003362022/02/25 : 2.4.14
337 - MINOR: sock: move the unused socket cleaning code into its own function
338 - BUG/MEDIUM: mworker: close unused transferred FDs on load failure
339 - BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
340 - BUG/MINOR: sink: Use the right field in appctx context in release callback
341 - BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
342 - BUG/MEDIUM: fd: always align fdtab[] to 64 bytes
343 - BUG/MAJOR: compiler: relax alignment constraints on certain structures
344 - CI: ssl: enable parallel builds for OpenSSL on Linux
345 - CI: ssl: do not needlessly build the OpenSSL docs
346 - CI: ssl: keep the old method for ancient OpenSSL versions
347 - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
348 - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
349 - CI: github actions: add OpenSSL-3.0.0 builds
350 - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
351 - CI: github actions: relax OpenSSL-3.0.0 version comparision
352 - CI: github: switch to OpenSSL 3.0.0
353 - CI: github actions: update OpenSSL to 3.0.1
354 - BUG/MINOR: mailers: negotiate SMTP, not ESMTP
355 - BUG/MINOR: tools: url2sa reads ipv4 too far
356 - BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message
357 - BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
358 - BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
359 - BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()
360 - REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks
361 - CI: github: enable pool debugging by default
362 - BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
363
Willy Tarreau095275f2022-02-16 16:29:03 +01003642022/02/16 : 2.4.13
365 - BUG/MEDIUM: connection: properly leave stopping list on error
366 - BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
367 - BUILD/MINOR: fix solaris build with clang.
368 - BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl
369 - MEDIUM: cli: yield between each pipelined command
370 - MINOR: channel: add new function co_getdelim() to support multiple delimiters
371 - BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
372 - BUG/MEDIUM: cli: Never wait for more data on client shutdown
373 - BUG/MEDIUM: mcli: do not try to parse empty buffers
374 - BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
375 - MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change
376 - DEBUG: cli: add a new "debug dev fd" expert command
377 - BUILD: debug/cli: condition test of O_ASYNC to its existence
378 - DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY
379 - BUG/MEDIUM: mworker: don't lose the stats socket on failed reload
380 - BUG/MINOR: pools: always flush pools about to be destroyed
381 - DEBUG: pools: add extra sanity checks when picking objects from a local cache
382 - DEBUG: pools: let's add reverse mapping from cache heads to thread and pool
383 - DEBUG: pools: replace the link pointer with the caller's address on pool_free()
384 - BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
385 - BUG/MINOR: mworker: does not erase the pidfile upon reload
386 - MINOR: listener: replace the listener's spinlock with an rwlock
387 - BUG/MEDIUM: listener: read-lock the listener during accept()
388 - BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
389 - BUG/MAJOR: spoe: properly detach all agents when releasing the applet
390 - REGTESTS: peers: leave a bit more time to peers to synchronize
391 - BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change
392 - BUG/MINOR: mux-h2: update the session's idle delay before creating the stream
393
Christopher Faulet4b7772e2022-01-11 11:34:19 +01003942022/01/11 : 2.4.12
395 - BUG/MEDIUM: mworker: don't use _getsocks in wait mode
396 - BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data
397
Willy Tarreau1e183b82022-01-07 16:40:23 +01003982022/01/07 : 2.4.11
399 - BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch
400 - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
401 - BUILD: cli: clear a maybe-unused warning on some older compilers
402 - BUILD: ssl: unbreak the build with newer libressl
403 - DOC: fix misspelled keyword "resolve_retries" in resolvers
404 - BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server
405 - REGTESTS: ssl: fix ssl_default_server.vtc
406 - MINOR: proxy: add option idle-close-on-response
407 - BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning
408 - BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message
409 - BUG/MINOR: mux-h1: Fix splicing for messages with unknown length
410 - MINOR: compat: detect support for dl_iterate_phdr()
411 - MINOR: debug: add ability to dump loaded shared libraries
412 - MINOR: debug: add support for -dL to dump library names at boot
413 - BUG/MINOR: ssl: free the fields in srv->ssl_ctx
414 - BUG/MEDIUM: ssl: free the ckch instance linked to a server
415 - BUILD/MINOR: cpuset FreeBSD 14 build fix.
416 - BUILD/MINOR: tools: solaris build fix on dladdr.
417 - BUG/MINOR: cli: fix _getsocks with musl libc
418 - BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
419
Willy Tarreaubedf2772021-12-23 17:47:51 +01004202021/12/23 : 2.4.10
421 - BUILD/MINOR: server: fix compilation without SSL
422 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
423 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context
424 - BUG/MEDIUM: resolvers: Detach query item on response error
425 - BUG/MAJOR: segfault using multiple log forward sections.
426 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers
427 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH
428 - CI: Github Actions: temporarily disable BoringSSL builds
429 - MINOR: cli: "show version" displays the current process version
430 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types
431 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode
432 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id
433 - DOC: spoe: Clarify use of the event directive in spoe-message section
434 - DOC: config: Specify %Ta is only available in HTTP mode
435 - DOC: config: retry-on list is space-delimited
436 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
437 - MINOR: pools: work around possibly slow malloc_trim() during gc
438 - BUG/MINOR: backend: do not set sni on connection reuse
439 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
440
Christopher Fauletf8dcd9f2021-11-24 08:36:25 +01004412021/11/24 : 2.4.9
442 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
443 - MINOR: mux-h2: perform a full cycle shutdown+drain on close
444 - MINOR: mux-h2: add trace on extended connect usage
445 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
446 - BUG/MINOR: resolvers: fix sent messages were counted twice
447 - BUG/MINOR: resolvers: throw log message if trash not large enough for query
448 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
449 - DOC: config: Fix typo in ssl_fc_unique_id description
450 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
451 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
452 - DOC: lua: Be explicit with the Reply object limits
453 - MINOR: mux-h1: Slightly Improve H1 traces
454 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
455 - BUG/MINOR: mworker: doesn't launch the program postparser
456 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
457 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
458 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
459 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
460 - BUILD: makefile: simplify detection of libatomic
461 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
462 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
463 - CLEANUP: ssl: fix wrong #else commentary
464 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
465 - BUG/MEDIUM: mux-h2: always process a pending shut read
466 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
467 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
468 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
469 - MINOR: shctx: add a few BUG_ON() for consistency checks
470 - BUG/MINOR: ssl: make SSL counters atomic
471 - MINOR: stream/mux: implement websocket stream flag
472 - MINOR: connection: implement function to update ALPN
473 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
474 - MEDIUM: server/backend: implement websocket protocol selection
475 - MINOR: server: add ws keyword
476 - MINOR: promex: backend aggregated server check status
477 - BUG/MINOR: cache: Fix loop on cache entries in "show cache"
478
Willy Tarreaud1f8d412021-11-03 11:50:02 +01004792021/11/03 : 2.4.8
480 - CLEANUP: server: always include the storage for SSL settings
481 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
482 - CLEANUP: sample: uninline sample_conv_var2smp_str()
483 - MINOR: sample: provide a generic var-to-sample conversion function
484 - BUG/MEDIUM: sample: properly verify that variables cast to sample
485 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
486 - DOC: configuration: add clarification on escaping in keyword arguments
487 - MINOR: initcall: Rename __GLOBL and __GLOBL1.
488 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
489 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
490 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
491 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
492 - Revert "CLEANUP: server: always include the storage for SSL settings"
493 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
494 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
495 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
496 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
497 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
498 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
499 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
500 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
501 - BUG/MEDIUM: resolvers: use correct storage for the target address
502 - MINOR: resolvers: merge address and target into a union "data"
503 - BUG/MAJOR: resolvers: add other missing references during resolution removal
504 - BUILD: resolvers: avoid a possible warning on null-deref
505 - BUG/MEDIUM: resolvers: always check a valid item in query_list
506 - BUG/MAJOR: buf: fix varint API post- vs pre- increment
507 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
508 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
509 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
510 - MINOR: memprof: report the delta between alloc and free on realloc()
511 - MINOR: memprof: add one pointer size to the size of allocations
512 - BUILD: fix compilation on NetBSD
513 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
514 - BUILD: atomic: fix build on mac/arm64
515 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
516 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
517 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
518 - CLEANUP: always initialize the answer_list
519 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
520 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
521 - MEDIUM: resolvers: use a kill list to preserve the list consistency
522 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
523 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
524 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
525 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
526 - DOC: halog: Move the `-qry` parameter into the correct section in help text
527 - MINOR: halog: Rename -qry to -query
528 - CLEANUP: halog: Use consistent indentation in help()
529 - BUG/MINOR: halog: Add missing newlines in die() messages
530 - MINOR: halog: Add support for extracting captures using -hdr
531 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
532 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
533 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
534 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
535 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
536 - DOC: config: Fix alphabetical order of fc_* samples
537 - BUILD/MINOR: cpuset freebsd build fix
538 - MINOR: stream: Improve dump of bogus streams
539 - DOC/peers: some grammar fixes for peers 2.1 spec
540 - SCRIPTS: git-show-backports: re-enable file-based filtering
541
Christopher Fauletb5e51a52021-10-04 14:56:33 +02005422021/10/04 : 2.4.7
543 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
544
Christopher Fauletd83fd762021-10-04 08:46:17 +02005452021/10/04 : 2.4.6
546 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
547
Christopher Faulete74a1b32021-10-01 17:54:02 +02005482021/10/01 : 2.4.5
549 - MINOR: lua: Add a flag on lua context to know the yield capability at run time
550 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
551 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
552 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
553 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
554 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
555 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
556 - BUG/MINOR: systemd: ExecStartPre must use -Ws
557 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
558 - MINOR: htx: Skip headers with no value when adding a header list to a message
559 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
560 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
561 - BUG/MINOR: compat: make sure __WORDSIZE is always defined
562 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
563 - MINOR: pools: automatically disable malloc_trim() with external allocators
564 - MINOR: pools: use mallinfo2() when available instead of mallinfo()
565 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
566 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
567 - DOC: management: certificate files must be sanitized before injection
568 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
569 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
570 - BUG/MINOR: cli/payload: do not search for args inside payload
571 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
572 - BUILD: tools: get the absolute path of the current binary on NetBSD.
573 - MINOR: tools: add FreeBSD support to get_exec_path()
574 - MINOR: proc: setting the process to produce a core dump on FreeBSD.
575 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
576 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
577 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
578 - IMPORT: slz: silence a build warning with -Wundef
579 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
580 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
581 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
582 - BUILD: tools: properly guard __GLIBC__ with defined()
583 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
584 - MINOR: sample: add missing ARGC_ entries
585 - BUG/MINOR: vars: properly set the argument parsing context in the expression
586 - BUG/MINOR: vars: truncate the variable name in error reports about scope.
587 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
588 - BUILD: fix dragonfly build again on __read_mostly
589 - BUILD: compiler: fixed a missing test on defined(__GNUC__)
590 - BUILD: halog: fix a -Wundef warning on non-glibc systems
591 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
592 - BUG/MINOR: server: allow 'enable health' only if check configured
593 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
594 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
595 - BUG/MINOR: http-ana: increment internal_errors counter on response error
596 - MINOR: server: implement a refcount for dynamic servers
597 - MINOR: global: define MODE_STOPPING
598 - BUG/MINOR: server: do not use refcount in free_server in stopping mode
599 - MINOR: server: return the next srv instance on free_server
600 - BUG/MINOR: stats: use refcount to protect dynamic server on dump
601 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
602 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
603 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
604 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
605 - MINOR: htx: Add an HTX flag to know when a message is fragmented
606 - MINOR: htx: Add a function to know if the free space wraps
607 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
608 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
609 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
610 - DOC: peers: fix doc "enable" statement on "peers" sections
611 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
612 - BUG/MEDIUM: lua: fix wakeup condition from sleep()
613 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
614 - MINOR: arg: Be able to forbid unresolved args when building an argument list
615 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
616 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
617 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
618
Willy Tarreauacb1d0b2021-09-07 16:17:15 +02006192021/09/07 : 2.4.4
620 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
621 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
622 - REGTESTS: abortonclose: after retries, 503 is expected, not close
623 - MINOR: hlua: take the global Lua lock inside a global function
624 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
625 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
626 - BUG/MINOR: base64: base64urldec() ignores padding in output size check
627 - MINOR: compiler: implement an ONLY_ONCE() macro
628 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
629 - BUG/MINOR: time: fix idle time computation for long sleeps
630 - MINOR: time: add report_idle() to report process-wide idle time
631 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
632 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
633 - BUG/MINOR: tools: Fix loop condition in dump_text()
634 - CLEANUP: Add missing include guard to signal.h
635 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
636 - DOC: configuration: remove wrong tcp-request examples in tcp-response
637 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
638 - CLEANUP: htx: remove comments about "must be < 256 MB"
639 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
640 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
641
Willy Tarreau4dd5a5a2021-08-17 14:11:09 +02006422021/08/17 : 2.4.3
643 - BUILD: http_htx: fix ci compilation error with isdigit for Windows
644 - MINOR: mux_h2: define config to disable h2 websocket support
645 - BUG/MINOR: ssl: Default-server configuration ignored by server
646 - BUILD: add detection of missing important CFLAGS
647 - BUILD: lua: silence a build warning with TCC
648 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
649 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
650 - BUILD/MINOR: memprof fix macOs build.
651 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
652 - BUG/MINOR: stats: Add missing agent stats on servers
653 - BUG/MINOR: check: fix the condition to validate a port-less server
654 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
655 - BUG/MINOR: systemd: must check the configuration using -Ws
656 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
657 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
658 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
659 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
660 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
661 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
662 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
663 - BUG/MINOR: select: fix excess number of dead/skip reported
664 - BUG/MINOR: poll: fix abnormally high skip_fd counter
665 - BUG/MINOR: pollers: always program an update for migrated FDs
666 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
667 - DOC: internals: document the FD takeover process
668 - BUILD: opentracing: fixed build when using pkg-config utility
669 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
670 - BUG/MINOR: server: update last_change on maint->ready transitions too
671 - MINOR: server: unmark deprecated on enable health/agent cli
672 - ADMIN: dyncookie: implement a simple dynamic cookie calculator
673 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
674 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
675 - BUG/MINOR: buffer: fix buffer_dump() formatting
676 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
677 - DOC: Improve the lua documentation
678 - DOC: config: Fix 'http-response send-spoe-group' documentation
679 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
680 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
681 - CLEANUP: assorted typo fixes in the code and comments
682 - DOC/MINOR: fix typo in management document
683 - MINOR: http: add a new function http_validate_scheme() to validate a scheme
684 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
685 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
686 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
687 - BUG/MEDIUM: h2: give :authority precedence over Host
688 - REGTESTS: add a test to prevent h2 desync attacks
689
Christopher Faulet553dee32021-07-07 16:46:09 +02006902021/07/07 : 2.4.2
691 - BUG/MINOR: server-state: load SRV resolution only if params match the config
692 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
693 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
694 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
695 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
696 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
697 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
698 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
699 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
700 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
701 - REGTESTS: fix maxconn update with agent-check
702 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
703 - DOC: config: Add missing actions in "tcp-request session" documentation
704 - CLEANUP: dns: Remove a forgotten debug message
705 - BUG/MINOR: resolvers: Always attach server on matching record on resolution
706 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
707 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
708 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
709 - BUILD: Makefile: fix linkage for Haiku.
710 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
711 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
712 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
713 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
714 - DOC: config: use CREATE USER for mysql-check
715 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
716 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
717 - DOC: stick-table: add missing documentation about gpt0 stored type
718 - BUG/MEDIUM: sock: make sure to never miss early connection failures
719 - BUG/MINOR: cli: fix server name output in "show fd"
720 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
721 - MINOR: http: implement http_get_scheme
722 - MEDIUM: http: implement scheme-based normalization
723 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
724 - MEDIUM: h2: apply scheme-based normalization on h2 requests
725 - REGTESTS: add http scheme-based normalization test
726
Willy Tarreau1ce7d492021-06-17 09:06:08 +02007272021/06/17 : 2.4.1
728 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
729 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
730 - BUILD/MINOR: opentracing: fixed build when using clang
731 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
732 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
733 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
734 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
735 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
736 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
737 - MINOR: cfgparse: Fail when encountering extra arguments in macro
738 - DOC: intro: Fix typo in starter guide
739 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
740 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
741 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
742 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
743 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
744 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
745 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
746 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
747 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
748 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
749 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
750 - BUG/MINOR: http: Missing calloc return value check in make_arg_list
751 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
752 - CLEANUP: http-ana: Remove useless if statement about L7 retries
753 - BUG/MINOR: vars: Be sure to have a session to get checks variables
754 - DOC/MINOR: move uuid in the configuration to the right alphabetical order
755 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
756 - MINOR: errors: allow empty va_args for diag variadic macro
757 - DOC: use the req.ssl_sni in examples
758 - BUILD: make tune.ssl.keylog available again
759 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
760 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
761 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
762 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
763 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
764 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
765 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
766 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
767 - MINOR: pools: do not maintain the lock during pool_flush()
768 - MINOR: pools: call malloc_trim() under thread isolation
769 - MEDIUM: pools: use a single pool_gc() function for locked and lockless
770 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
771 - CLEANUP: pools: remove now unused seq and pool_free_list
772 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
773 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
774 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
775 - BUG/MINOR: resolvers: answser item list was randomly purged or errors
776 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
777 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
778 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
779 - DOC: lua: Add a warning about buffers modification in HTTP
780 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
781 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
782 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
783 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
784 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
785 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
786 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
787 - BUG/MINOR: ssl: use atomic ops to update global shctx stats
788 - BUG/MINOR: mworker: fix typo in chroot error message
789 - CLEANUP: global: remove unused definition of stopping_task[]
790 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
791 - MINOR: backend: only skip LB when there are actual connections
792 - BUG/MINOR: mux-h1: do not skip the error response on bad requests
793 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
794 - MINOR: connection: add helper conn_append_debug_info()
795 - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
796 - CLEANUP: mux-h2/traces: better align user messages
797 - BUG/MINOR: stats: make "show stat typed desc" work again
798 - MINOR: mux-h2: obey http-ignore-probes during the preface
799 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
800 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
801
Willy Tarreau6cbbecf2021-05-14 09:03:30 +02008022021/05/14 : 2.4.0
803 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
804 - CLEANUP: cli/activity: Remove double spacing in set profiling command
805 - CI: Build VTest with clang
806 - CI: extend spellchecker whitelist, add "ists" as well
807 - CLEANUP: assorted typo fixes in the code and comments
808 - BUG/MINOR: memprof: properly account for differences for realloc()
809 - MINOR: memprof: also report the method used by each call
810 - MINOR: memprof: also report the totals and delta alloc-free
811 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
812 - BUG/MINOR: http_act: Fix normalizer names in error messages
813 - MINOR: uri_normalizer: Add `fragment-strip` normalizer
814 - MINOR: uri_normalizer: Add `fragment-encode` normalizer
815 - IMPORT: slz: use the generic function for the last bytes of the crc32
816 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
817 - BUILD/MINOR: opentracing: fixed compilation with filter enabled
818 - BUILD: makefile: add a few popular ARMv8 CPU targets
819 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
820 - REGTESTS: stick-table: add src_conn_rate test
821 - CLEANUP: stick-table: remove a leftover of an old keyword declaration
822 - BUG/MINOR: stats: fix lastchk metric that got accidently lost
823 - EXAMPLES: add a "basic-config-edge" example config
824 - EXAMPLES: add a trivial config for quick testing
825 - DOC: management: Correct example reload command in the document
826 - Revert "CI: Build VTest with clang"
827 - MINOR: activity/cli: optionally support sorting by address on "show profiling"
828 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
829 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
830 - DOC: config: Fix configuration example for mqtt
831 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
832 - BUILD: config: avoid a build warning on numa_detect_topology() without threads
833 - DOC: update min requirements in INSTALL
834 - IMPORT: slz: use inttypes.h instead of stdint.h
835 - BUILD: sample: use strtoll() instead of atoll()
836 - MINOR: version: mention that it's LTS now.
837
Willy Tarreau46b93af2021-05-10 07:50:26 +02008382021/05/10 : 2.4-dev19
839 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
840 - BUG/MEDIUM: cli: prevent memory leak on write errors
841 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
842 - MINOR: debug: add a new "debug dev sym" command in expert mode
843 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
844 - CI: Github Actions: switch to LibreSSL-3.3.3
845 - MINOR: srv: close all idle connections on shutdown
846 - MINOR: connection: move session_list member in a union
847 - MEDIUM: mux_h1: release idling frontend conns on soft-stop
848 - MEDIUM: connection: close front idling connection on soft-stop
849 - MINOR: tools: add functions to retrieve the address of a symbol
850 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
851 - MINOR: activity: add a "memory" entry to "profiling"
852 - MINOR: activity: declare the storage for memory usage statistics
853 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
854 - MINOR: activity: clean up the show profiling io_handler a little bit
855 - MINOR: activity: make "show profiling" support a few arguments
856 - MINOR: activity: make "show profiling" also dump the memoery usage
857 - MINOR: activity: add the profiling.memory global setting
858 - BUILD: makefile: add new option USE_MEMORY_PROFILING
859 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
860 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
861 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
862 - MEDIUM: mux-h1: Don't block reads when waiting for the other side
863 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
864 - REGTESTS: Add script to test abortonclose option
865 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
866 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
867 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
868 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
869 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
870 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
871 - BUG/MINOR: stream: Decrement server current session counter on L7 retry
872 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
873 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
874 - BUG/MINOR: config: .if/.elif should also accept negative integers
875 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
876 - MINOR: config: keep up-to-date current file/line/section in the global struct
877 - MINOR: config: support some pseudo-variables for file/line/section
878 - BUILD: activity: do not include malloc.h
879 - MINOR: arg: improve the error message on missing closing parenthesis
880 - MINOR: global: export the build features string list
881 - MINOR: global: add version comparison functions
882 - MINOR: config: improve .if condition error reporting
883 - MINOR: config: make cfg_eval_condition() support predicates with arguments
884 - MINOR: config: add predicate "defined()" to conditional expression blocks
885 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
886 - MINOR: config: add predicate "feature" to detect certain built-in features
887 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
888 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
889 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
890 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
891 - MINOR: config: add a new message directive: .diag
892 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
893 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
894 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
895 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
896 - MINOR: global: define tainted flag
897 - MINOR: cfgparse: add a new field flags in cfg_keyword
898 - MINOR: cfgparse: implement experimental config keywords
899 - MINOR: action: replace match_pfx by a keyword flags field
900 - MINOR: action: implement experimental actions
901 - MINOR: cli: set tainted when using CLI expert/experimental mode
902 - MINOR: stats: report tainted on show info
903 - MINOR: http_act: mark normalize-uri as experimental
904 - BUILD: fix usage of ha_alert without format string
905 - MINOR: proxy: define PR_CAP_LB
906 - BUG/MINOR: server: do not report diag for peer servers with null weight
907 - DOC: ssl: Extra files loading now works for backends too
908 - ADDONS: make addons/ discoverable by git via .gitignore
909 - DOC: ssl: Add information about crl-file option
910 - MINOR: sample: improve error reporting on missing arg to strcmp() converter
911 - DOC: management: mention that some fields may be emitted as floats
912 - MINOR: tools: implement trimming of floating point numbers
913 - MINOR: tools: add a float-to-ascii conversion function
914 - MINOR: freq_ctr: add new functions to report float measurements
915 - MINOR: stats: avoid excessive padding of float values with trailing zeroes
916 - MINOR: stats: add the HTML conversion for float types
917 - MINOR: stats: pass the appctx flags to stats_fill_info()
918 - MINOR: stats: support an optional "float" option to "show info"
919 - MINOR: stats: use tv_remain() to precisely compute the uptime
920 - MINOR: stats: report uptime and start time as floats with subsecond resolution
921 - MINOR: stats: make "show info" able to report rates as floats when asked
922 - MINOR: config: mark tune.fd.edge-triggered as experimental
923 - REORG: vars: move the "proc" scope variables out of the global struct
924 - REORG: threads: move all_thread_mask() to thread.h
925 - BUILD: wdt: include signal-t.h
926 - BUILD: auth: include missing list.h
927 - REORG: mworker: move proc_self from global to mworker
928 - BUILD: ssl: ssl_utils requires chunk.h
929 - BUILD: config: cfgparse-ssl.c needs tools.h
930 - BUILD: wurfl: wurfl.c needs tools.h
931 - BUILD: spoe: flt_spoe.c needs tools.h
932 - BUILD: promex: service-prometheus.c needs tools.h
933 - BUILD: resolvers: include tools.h
934 - BUILD: config: include tools.h in cfgparse-listen.c
935 - BUILD: htx: include tools.h in http_htx.c
936 - BUILD: proxy: include tools.h in proxy.c
937 - BUILD: session: include tools.h in session.c
938 - BUILD: cache: include tools.h in cache.c
939 - BUILD: sink: include tools.h in sink.c
940 - BUILD: connection: include tools.h in connection.c
941 - BUILD: server-state: include tools.h from server_state.c
942 - BUILD: dns: include tools.h in dns.c
943 - BUILD: payload: include tools.h in payload.c
944 - BUILD: vars: include tools.h in vars.c
945 - BUILD: compression: include tools.h in compression.c
946 - BUILD: mworker: include tools.h from mworker.c
947 - BUILD: queue: include tools.h from queue.c
948 - BUILD: udp: include tools.h from proto_udp.c
949 - BUILD: stick-table: include freq_ctr.h from stick_table.h
950 - BUILD: server: include tools.h from server.c
951 - BUILD: server: include missing proxy.h in server.c
952 - BUILD: sink: include proxy.h in sink.c
953 - BUILD: mworker: include proxy.h in mworker.c
954 - BUILD: filters: include proxy.h in filters.c
955 - BUILD: fcgi-app: include proxy.h in fcgi-app.c
956 - BUILD: connection: move list_mux_proto() to connection.c
957 - REORG: stick-table: uninline stktable_alloc_data_type()
958 - REORG: stick-table: move composite address functions to stick_table.h
959 - REORG: config: uninline warnifnotcap() and failifnotcap()
960 - BUILD: task: remove unused includes from task.c
961 - MINOR: task: stop including stream.h from task.c
962 - BUILD: connection: stop including listener-t.h
963 - BUILD: hlua: include proxy.h from hlua.c
964 - BUILD: mux-h1: include proxy.h from mux-h1.c
965 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
966 - BUILD: listener: include proxy.h from listener.c
967 - BUILD: http-rules: include proxy.h from http_rules.c
968 - BUILD: thread: include log.h from thread.c
969 - BUILD: comp: include proxy.h from flt_http_comp.c
970 - BUILD: fd: include log.h from fd.c
971 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
972 - BUILD: makefile: reorder object files by build time
973 - DOC: Fix a few grammar/spelling issues and casing of HAProxy
974 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
975 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
976 - DOC: remove last occurrences of "HA-Proxy" syntax
977 - DOC: peers: fix the protocol tag name in the doc
978 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
979 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
980 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
981 - MINOR: tools/rnd: compute the result outside of the CAS loop
982 - BUILD: http_fetch: address a few aliasing warnings with older compilers
983 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
984 - BUILD: errors: include stdarg in errors.h
985 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
986 - MINOR: cli: make "help" support a command in argument
987 - MINOR: cli: sort the output of the "help" keywords
988 - CLEANUP: cli/mworker: properly align the help messages
989 - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
990 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
991 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
992 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
993 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
994
Willy Tarreau080347f2021-05-01 08:25:15 +02009952021/05/01 : 2.4-dev18
996 - DOC: Fix indentation for `path-strip-dot` normalizer
997 - DOC: Fix RFC reference for the percent-to-uppercase normalizer
998 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
999 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
1000 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
1001 - REORG: htx: Inline htx functions to add HTX blocks in a message
1002 - CLEANUP: assorted typo fixes in the code and comments
1003 - DOC: general: fix white spaces for HTML converter
1004 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
1005 - BUG/MINOR: cpuset: move include guard at the very beginning
1006 - BUG/MAJOR: fix build on musl with cpu_set_t support
1007 - BUG/MEDIUM: cpuset: fix build on MacOS
1008 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
1009 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
1010 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
1011 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
1012 - MEDIUM: http-ana: handle read error on server side if waiting for response
1013 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
1014 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
1015 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
1016 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
1017 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
1018 - DOC: general: fix example in set-timeout
1019 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
1020 - MINOR: config: add a new "default-path" global directive
1021 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
1022 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
1023 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
1024 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
1025 - BUG/MEDIUM: peers: reset commitupdate value in new conns
1026 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
1027 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
1028 - MINOR: peers: add informative flags about resync process for debugging
1029 - BUG/MEDIUM: time: fix updating of global_now upon clock drift
1030 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
1031 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
1032 - MINOR: server: fix doc/trace on lb algo for dynamic server creation
1033 - REGTESTS: server: fix cli_add_server due to previous trace update
1034 - REGTESTS: add minimal CLI "add map" tests
1035 - DOC: management: move "set var" to the proper place
1036 - CLEANUP: map: slightly reorder the add map function
1037 - MINOR: map: get rid of map_add_key_value()
1038 - MINOR: map: show the current and next pattern version in "show map"
1039 - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
1040 - MINOR: pattern: support purging arbitrary ranges of generations
1041 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
1042 - MINOR: map/acl: add the "prepare map/acl" CLI command
1043 - MINOR: map/acl: add the "commit map/acl" CLI command
1044 - MINOR: map/acl: make "add map/acl" support an optional version number
1045 - CLEANUP: map/cli: properly align the map/acl help
1046 - BUILD: compiler: do not use already defined __read_mostly on dragonfly
1047
Willy Tarreaubfd19d62021-04-23 19:11:10 +020010482021/04/23 : 2.4-dev17
1049 - MINOIR: mux-pt/trace: Register a new trace source with its events
1050 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
1051 - CI: travis: Drastically clean up .travis.yml
1052 - CLEANUP: pattern: make all pattern tables read-only
1053 - MINOR: trace: replace the trace() inline function with an equivalent macro
1054 - MINOR: initcall: uniformize the section names between MacOS and other unixes
1055 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
1056 - MINOR: compiler: add macros to declare section names
1057 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
1058 - MINOR: global: declare a read_mostly section
1059 - MINOR: fd: move a few read-mostly variables to their own section
1060 - MINOR: epoll: move epoll_fd to read_mostly
1061 - MINOR: kqueue: move kqueue_fd to read_mostly
1062 - MINOR: pool: move pool declarations to read_mostly
1063 - MINOR: threads: mark all_threads_mask as read_mostly
1064 - MINOR: server: move idle_conn_task to read_mostly
1065 - MINOR: protocol: move __protocol_by_family to read_mostly
1066 - MINOR: pattern: make the pat_lru_seed read_mostly
1067 - MINOR: trace: make trace sources read_mostly
1068 - MINOR: freq_ctr: add a generic function to report the total value
1069 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
1070 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
1071 - MINOR: freq_ctr: add the missing next_event_delay_period()
1072 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
1073 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
1074 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
1075 - MINOR: freq_ctr: simplify and improve the update function
1076 - CLEANUP: time: remove the now unused ms_left_scaled
1077 - MINOR: time: move the time initialization out of tv_update_date()
1078 - MINOR: time: remove useless variable copies in tv_update_date()
1079 - MINOR: time: change the global timeval and the the global tick at once
1080 - MEDIUM: time: make the clock offset global and no per-thread
1081 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
1082 - MINOR: trace: Add the checks as a possible trace source
1083 - MINOIR: checks/trace: Register a new trace source with its events
1084 - MINOR: hlua: Add function to release a lua function
1085 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
1086 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
1087 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
1088 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
1089 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
1090 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
1091 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
1092 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
1093 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
1094 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
1095 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
1096 - DOC: internals: update the SSL architecture schema
1097 - BUG/MEDIUM: sample: Fix adjusting size in field converter
1098 - MINOR: sample: add ub64dec and ub64enc converters
1099 - CLEANUP: sample: align samples list in sample.c
1100 - MINOR: ist: Add `istclear(struct ist*)`
1101 - CI: cirrus: install "pcre" package
1102 - MINOR: opentracing: correct calculation of the number of arguments in the args[]
1103 - MINOR: opentracing: transfer of context names without prefix
1104 - MINOR: sample: converter: Add mjson library.
1105 - MINOR: sample: converter: Add json_query converter
1106 - CI: travis-ci: enable weekly graviton2 builds
1107 - DOC: ssl: Certificate hot update only works on fronted certificates
1108 - DOC: ssl: Certificate hot update works on server certificates
1109 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
1110 - MINOR: threads: Only consider running threads to end a thread harmeless period
1111 - BUG/MINOR: checks: Set missing id to the dummy checks frontend
1112 - MINOR: logs: Add support of checks as session origin to format lf strings
1113 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
1114 - MINOR: connection: Make bc_http_major compatible with tcp-checks
1115 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
1116 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
1117 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
1118 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
1119 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
1120 - BUG/MINOR: logs: Report the true number of retries if there was no connection
1121 - BUILD: makefile: Redirect stderr to /dev/null when probing options
1122 - MINOR: uri_normalizer: Add uri_normalizer module
1123 - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
1124 - MINOR: uri_normalizer: Add `http-request normalize-uri`
1125 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
1126 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
1127 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
1128 - MINOR: uri_normalizer: Add a `sort-query` normalizer
1129 - MINOR: uri_normalizer: Add a `percent-upper` normalizer
1130 - MEDIUM: http_act: Rename uri-normalizers
1131 - DOC: Add introduction to http-request normalize-uri
1132 - DOC: Note that URI normalization is experimental
1133 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
1134 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
1135 - MINOR: pools: drop the unused static history of artificially failed allocs
1136 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
1137 - MEDIUM: pools: move the cache into the pool header
1138 - MINOR: pool: remove the size field from pool_cache_head
1139 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
1140 - MINOR: pools: enable the fault injector in all allocation modes
1141 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
1142 - MEDIUM: pools: unify pool_refill_alloc() across all models
1143 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
1144 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
1145 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
1146 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
1147 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
1148 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
1149 - MINOR: tools: add statistical_prng_range() to get a random number over a range
1150 - MINOR: pools: use cheaper randoms for fault injections
1151 - MINOR: pools: move the fault injector to __pool_alloc()
1152 - MINOR: pools: split the OS-based allocator in two
1153 - MINOR: pools: always use atomic ops to maintain counters
1154 - MINOR: pools: move pool_free_area() out of the lock in the locked version
1155 - MINOR: pools: factor the release code into pool_put_to_os()
1156 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
1157 - MINOR: pools: create unified pool_{get_from,put_to}_cache()
1158 - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
1159 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
1160 - CLEANUP: pools: make the local cache allocator fall back to the shared cache
1161 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
1162 - CLEANUP: pools: uninline pool_put_to_cache()
1163 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
1164 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
1165 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
1166 - CONTRIB: mod_defender: import the minimal number of includes
1167 - CONTRIB: mod_defender: make the code build with the embedded includes
1168 - CONTRIB: modsecurity: import the minimal number of includes
1169 - CONTRIB: modsecurity: make the code build with the embedded includes
1170 - CLEANUP: sample: Improve local variables in sample_conv_json_query
1171 - CLEANUP: sample: Explicitly handle all possible enum values from mjson
1172 - CLEANUP: sample: Use explicit return for successful `json_query`s
1173 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
1174 - CONTRIB: move spoa_example out of the tree
1175 - BUG/MINOR: server: free srv.lb_nodes in free_server
1176 - BUG/MINOR: logs: free logsrv.conf.file on exit
1177 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
1178 - MINOR: server: add log on dynamic server creation
1179 - MINOR: server: implement delete server cli command
1180 - CONTRIB: move spoa_server out of the tree
1181 - CONTRIB: move modsecurity out of the tree
1182 - BUG/MINOR: server: fix potential null gcc error in delete server
1183 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
1184 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
1185 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
1186 - CLEANUP: uri_normalizer: Remove trailing whitespace
1187 - MINOR: uri_normalizer: Add a `strip-dot` normalizer
1188 - CONTRIB: move mod_defender out of the tree
1189 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
1190 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
1191 - MINOR: config: add a diag for invalid cpu-map statement
1192 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
1193 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
1194 - BUILD: makefile: fix the "make clean" target on strict bourne shells
1195 - IMPORT: slz: import slz into the tree
1196 - BUILD: compression: switch SLZ from out-of-tree to in-tree
1197 - CI: github: do not build libslz any more
1198 - CLEANUP: compression: remove calls to SLZ init functions
1199 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
1200 - MINOR: cpuset: define a platform-independent cpuset type
1201 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
1202 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
1203 - MINOR: thread: implement the detection of forced cpu affinity
1204 - MINOR: cfgparse: support the comma separator on parse_cpu_set
1205 - MEDIUM: cfgparse: detect numa and set affinity if needed
1206 - MINOR: global: add option to disable numa detection
1207 - BUG/MINOR: haproxy: fix compilation on macOS
1208 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
1209 - MINOR: time: avoid unneeded updates to now_offset
1210 - MINOR: time: avoid overwriting the same values of global_now
1211 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
1212 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
1213 - BUG/MINOR: peers: remove useless table check if initial resync is finished
1214 - BUG/MEDIUM: peers: re-work connection to new process during reload.
1215 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
1216 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
1217
Willy Tarreau86512dd2021-04-09 17:10:39 +020012182021/04/09 : 2.4-dev16
1219 - CLEANUP: dev/flags: remove useless test in the stdin number parser
1220 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
1221 - MINOR: acl: Add HTTP_2.0 predefined macro
1222 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
1223 - BUG/MINOR: tools: fix parsing "us" unit for timers
1224 - MINOR: server/bind: add support of new prefixes for addresses.
1225 - MINOR: log: register config file and line number on log servers.
1226 - MEDIUM: log: support tcp or stream addresses on log lines.
1227 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
1228 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
1229 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
1230 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
1231 - MINOR: fd: move .linger_risk into fdtab[].state
1232 - MINOR: fd: move .cloned into fdtab[].state
1233 - MINOR: fd: move .initialized into fdtab[].state
1234 - MINOR: fd: move .et_possible into fdtab[].state
1235 - MINOR: fd: move .exported into fdtab[].state
1236 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
1237 - MINOR: cli/show-fd: slightly reorganize the FD status flags
1238 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
1239 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
1240 - CLEANUP: atomic: make all standard add/or/and/sub operations return void
1241 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
1242 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
1243 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
1244 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
1245 - MINOR: atomic: implement native BTS/BTR for x86
1246 - MINOR: ist: Add `istappend(struct ist, char)`
1247 - MINOR: ist: Add `istshift(struct ist*)`
1248 - MINOR: ist: Add `istsplit(struct ist*, char)`
1249 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
1250 - MINOR: opentracing: register config file and line number on log servers
1251 - MEDIUM: resolvers: add support of tcp address on nameserver line.
1252 - MINOR: ist: Rename istappend() to __istappend()
1253 - CLEANUP: htx: Make http_get_stline take a `const struct`
1254 - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
1255 - CLEANUP: Remove useless malloc() casts
1256
Willy Tarreau59fa1d12021-04-02 19:16:32 +020012572021/04/02 : 2.4-dev15
1258 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
1259 - BUG/MINOR: stats: Apply proper styles in HTML status page.
1260 - BUG/MEDIUM: time: make sure to always initialize the global tick
1261 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
1262 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
1263 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
1264 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
1265 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
1266 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
1267 - MINOR: frontend: Create HTTP txn for HTX streams
1268 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
1269 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
1270 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
1271 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
1272 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
1273 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
1274 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
1275 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
1276 - MINOR: muxes: Show muxes flags when the mux list is displayed
1277 - DOC: config: Improve documentation about proto/check-proto keywords
1278 - MINOR: stream: Use stream type instead of proxy mode when appropriate
1279 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
1280 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
1281 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
1282 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
1283 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
1284 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
1285 - DOC: config: Add documentation about TCP to HTTP upgrades
1286 - REGTESTS: Add script to tests TCP to HTTP upgrades
1287 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
1288 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
1289 - MINOR: action: Use a generic function to check validity of an action rule list
1290 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
1291 - MEDIUM: http-rules: Add wait-for-body action on request and response side
1292 - REGTESTS: Add script to tests the wait-for-body HTTP action
1293 - BUG/MINOR: http-fetch: Fix test on message state to capture the version
1294 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
1295 - MINOR: global: define diagnostic mode of execution
1296 - MINOR: cfgparse: diag for multiple nbthread statements
1297 - MINOR: server: diag for 0 weight server
1298 - MINOR: diag: create cfgdiag module
1299 - MINOR: diag: diag if servers use the same cookie value
1300 - MINOR: config: diag if global section after non-global
1301 - TESTS: slightly reorganize the code in the tests/ directory
1302 - TESTS: move tests/*.cfg to tests/config
1303 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
1304 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
1305 - CONTRIB: halog: fix issue with array of type char
1306 - CONTRIB: tcploop: add a shutr command
1307 - CONTRIB: debug: add the show-fd-to-flags script
1308 - CONTRIB: debug: split poll from flags
1309 - CONTRIB: move some dev-specific tools to dev/
1310 - BUILD: makefile: always build the flags utility
1311 - DEV: flags: replace the unneeded makefile with a README
1312 - BUILD: makefile: integrate the hpack tools
1313 - CONTRIB: merge ip6range with iprange
1314 - CONTRIB: move some admin-related sub-projects to admin/
1315 - CONTRIB: move halog to admin/
1316 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
1317 - BUILD: makefile: build halog with the correct flags
1318 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
1319 - CONTRIB: move prometheus-exporter to addons/promex
1320 - DOC: add a few words about USE_* and the addons directory
1321 - CONTRIB: move 51Degrees to addons/51degrees
1322 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
1323 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
1324 - CONTRIB: move contrib/opentracing to addons/ot
1325 - BUG/MINOR: opentracing: initialization after establishing daemon mode
1326 - DOC: clarify that compression works for HTTP/2
1327
Willy Tarreauaf6d88b2021-03-27 09:42:09 +010013282021/03/27 : 2.4-dev14
1329 - MEDIUM: quic: Fix build.
1330 - MEDIUM: quic: Fix build.
1331 - CI: codespell: whitelist "Dragan Dosen"
1332 - CLEANUP: assorted typo fixes in the code and comments
1333 - CI: github actions: update LibreSSL to 3.2.5
1334 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
1335 - CLEANUP: mark defproxy as const on parse tune.fail-alloc
1336 - REGTESTS: remove unneeded experimental-mode in cli add server test
1337 - REGTESTS: wait for proper return of enable server in cli add server test
1338 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
1339 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
1340 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
1341 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
1342 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
1343 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
1344 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
1345 - CLEANUP: compression: do not test for buffer before calling b_alloc()
1346 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
1347 - MINOR: channel: simplify the channel's buffer allocation
1348 - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
1349 - CLEANUP: dynbuf: remove b_alloc_margin()
1350 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
1351 - CLEANUP: pools: remove the unused pool_get_first() function
1352 - MINOR: pools: make the pool allocator support a few flags
1353 - MINOR: pools: add pool_zalloc() to return a zeroed area
1354 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
1355 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
1356 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
1357 - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
1358 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
1359 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
1360 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
1361 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
1362 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
1363 - MINOR: time: also provide a global, monotonic global_now_ms timer
1364 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
1365 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
1366 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
1367 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
1368 - CLEANUP: ssl: remove unused definitions
1369 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
1370 - MINOR: lua: Slightly improve function dumping the lua traceback
1371 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
1372 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
1373 - MINOR: fd: make fd_clr_running() return the remaining running mask
1374 - MINOR: fd: remove the unneeded running bit from fd_insert()
1375 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
1376 - CLEANUP: fd: remove unused fd_set_running_excl()
1377 - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
1378 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
1379 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
1380 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
1381 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
1382 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
1383 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
1384 - BUG/MINOR: ssl: Fix update of default certificate
1385 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
1386 - BUILD: ssl: introduce fine guard for ssl random extraction functions
1387 - REORG: global: move initcall register code in a dedicated file
1388 - REORG: global: move free acl/action in their related source files
1389 - REORG: split proxy allocation functions
1390 - MINOR: proxy: implement a free_proxy function
1391 - MINOR: proxy: define cap PR_CAP_LUA
1392 - MINOR: lua: properly allocate the lua Socket proxy
1393 - MINOR: lua: properly allocate the lua Socket servers
1394 - MINOR: vars: make get_vars() allow the session to be null
1395 - MINOR: vars: make the var() sample fetch keyword depend on nothing
1396 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
1397 - MINOR: sample: make smp_resolve_args() return an allocate error message
1398 - MINOR: sample: add a new SMP_SRC_CONST sample capability
1399 - MINOR: sample: mark the truly constant sample fetch keywords as such
1400 - MINOR: sample: add a new CFG_PARSER context for samples
1401 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
1402 - MEDIUM: vars: add support for a "set-var" global directive
1403 - REGTESTS: add a basic reg-test for some "set-var" commands
1404 - MINOR: sample: add a new CLI_PARSER context for samples
1405 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
1406 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
1407 - MEDIUM: cli: add a new experimental "set var" command
1408 - MINOR: compat: add short aliases for a few very commonly used types
1409 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
1410 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
1411
Willy Tarreau09cc6692021-03-19 17:16:18 +010014122021/03/19 : 2.4-dev13
1413 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
1414 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
1415 - MINOR: tools: improve word fingerprinting by counting presence
1416 - MINOR: tools: do not sum squares of differences for word fingerprints
1417 - MINOR: cli: improve fuzzy matching to work on all remaining words at once
1418 - MINOR: cli: sort the suggestions by order of relevance
1419 - MINOR: cli: limit spelling suggestions to 5
1420 - MINOR: cfgparse/proxy: also support spelling fixes on options
1421 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
1422 - MINOR: time: export the global_now variable
1423 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
1424 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
1425 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
1426 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
1427 - MINOR: cli: implement experimental-mode
1428 - REORG: server: add a free server function
1429 - MINOR: cfgparse: always alloc idle conns task
1430 - REORG: server: move keywords in srv_kws
1431 - MINOR: server: remove fastinter from mistyped kw list
1432 - REORG: server: split parse_server
1433 - REORG: server: move alert traces in parse_server
1434 - REORG: server: rename internal functions from parse_server
1435 - REORG: server: attach servers in parse_server
1436 - REORG: server: use flags for parse_server
1437 - MINOR: server: prepare parsing for dynamic servers
1438 - MINOR: stats: export function to allocate extra proxy counters
1439 - MEDIUM: server: implement 'add server' cli command
1440 - REGTESTS: implement test for 'add server' cli
1441 - MINOR: server: enable standard options for dynamic servers
1442 - MINOR: server: support keyword proto in 'add server' cli
1443 - BUG/MINOR: protocol: add missing support of dgram unix socket.
1444 - CLEANUP: Fix a typo in fix_is_valid description
1445 - MINOR: raw_sock: Add a close method.
1446 - MEDIUM: connections: Introduce a new XPRT method, start().
1447 - MEDIUM: connections: Implement a start() method for xprt_handshake.
1448 - MEDIUM: connections: Implement a start() method in ssl_sock.
1449 - MINOR: muxes: garbage collect the reset() method.
1450 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
1451 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
1452 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
1453
Willy Tarreauacdd47d2021-03-13 11:48:28 +010014542021/03/13 : 2.4-dev12
1455 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
1456 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
1457 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
1458 - MINOR: connection: Use a `struct ist` to store proxy_authority
1459 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
1460 - BUILD: task: fix build at -O0 with threads disabled
1461 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
1462 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
1463 - BUILD: connection: do not use VAR_ARRAY in struct tlv
1464 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
1465 - MINOR: build: force CC to set a return code when probing options
1466 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
1467 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
1468 - CLEANUP: config: also address the cfg_keyword API change in the compression code
1469 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
1470 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
1471 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
1472 - OPTIM: task: automatically adjust the default runqueue-depth to the threads
1473 - BUG/MINOR: connection: Missing QUIC initialization
1474 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
1475 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
1476 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
1477 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
1478 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
1479 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
1480 - BUG/MINOR: server-state: properly handle the case where the base is not set
1481 - BUG/MINOR: server-state: use the argument, not the global state
1482 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
1483 - CLEANUP: vars: make the error message clearer on missing arguments for set-var
1484 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
1485 - CLEANUP: actions: the keyword must always be const from the rule
1486 - MINOR: tools: add simple word fingerprinting to find similar-looking words
1487 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
1488 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
1489 - MINOR: cfgparse: suggest correct spelling for unknown words in global section
1490 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
1491 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
1492 - MINOR: actions: add a function to suggest an action ressembling a given word
1493 - MINOR: http-rules: suggest approaching action names on mismatch
1494 - MINOR: tcp-rules: suggest approaching action names on mismatch
1495 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
1496 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
1497 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
1498 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
1499 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
1500 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
1501 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
1502 - MINOR: resolvers: new function find_srvrq_answer_record()
1503 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
1504 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
1505 - MINOR: resolvers: Use a function to remove answers attached to a resolution
1506 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
1507 - MINOR: resolvers: Add function to change the srv status based on SRV resolution
1508 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
1509 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
1510 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
1511 - MINOR: resolvers: Use milliseconds for cached items in resolver responses
1512 - MINOR: resolvers: Don't try to match immediatly renewed ADD items
1513 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
1514 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
1515 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
1516 - CLEANUP: cli: fix misleading comment and better indent the access level flags
1517 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
1518 - MINOR: cli: test the appctx level for master access instead of comparing pointers
1519 - MINOR: cli: print the error message in the parser function itself
1520 - MINOR: cli: filter the list of commands to the matching part
1521 - MEDIUM: cli: apply spelling fixes for known commands before listing them
1522 - MINOR: tools: add the ability to update a word fingerprint
1523 - MINOR: cli: apply the fuzzy matching on the whole command instead of words
1524 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
1525 - CLEANUP: cli: rename the last few "stats_" to "cli_"
1526 - CLEANUP: task: make sure tasklet handlers always indicate their statuses
1527 - CLEANUP: assorted typo fixes in the code and comments
1528
Willy Tarreau7bbc6c92021-03-05 21:24:23 +010015292021/03/05 : 2.4-dev11
1530 - CI: codespell: skip Makefile for spell check
1531 - CLEANUP: assorted typo fixes in the code and comments
1532 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
1533 - BUG/MINOR: connection: Use the client's dst family for adressless servers
1534 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
1535 - CLEANUP: Use ist2(const void*, size_t) whenever possible
1536 - CLEANUP: Use IST_NULL whenever possible
1537 - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
1538 - BUILD: quic: Implicit conversion between SSL related enums.
1539 - DOC: spoe: Add a note about fragmentation support in HAProxy
1540 - MINOR: contrib: add support for heartbeat control messages.
1541 - MINOR: contrib: Enhance peers dissector heuristic.
1542 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
1543 - CLEANUP: Reapply the ist2() replacement patch
1544 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
1545 - CLEANUP: Use isttest(const struct ist) whenever possible
1546 - Revert "CI: Pin VTest to a known good commit"
1547 - CLEANUP: backend: fix a wrong comment
1548 - BUG/MINOR: backend: free allocated bind_addr if reuse conn
1549 - MINOR: backend: handle reuse for conns with no server as target
1550 - REGTESTS: test http-reuse if no server target
1551 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
1552 - BUG/MINOR: server-state: Don't load server-state file for disabled backends
1553 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
1554 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
1555 - DOC: fix originalto except clause on destination address
1556 - CLEANUP: Use the ist() macro whenever possible
1557 - CLEANUP: Replace for loop with only a condition by while
1558 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
1559 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
1560 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
1561 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
1562 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
1563 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
1564 - MINOR: pools: double the local pool cache size to 1 MB
1565 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
1566 - CLEANUP: stream: explain why we queue the stream at the head of the server list
1567 - MEDIUM: backend: use a trylock when trying to grab an idle connection
1568 - REORG: tools: promote the debug PRNG to more general use as a statistical one
1569 - OPTIM: lb-random: use a cheaper PRNG to pick a server
1570 - MINOR: task: stop abusing the nice field to detect a tasklet
1571 - MINOR: task: move the nice field to the struct task only
1572 - MEDIUM: task: extend the state field to 32 bits
1573 - MINOR: task: add an application specific flag to the state: TASK_F_USR1
1574 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
1575 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
1576 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
1577 - MINOR: server: don't read curr_used_conns multiple times
1578 - CLEANUP: global: reorder some fields to respect cache lines
1579 - CLEANUP: sockpair: silence a coverity check about fcntl()
1580 - CLEANUP: lua: set a dummy file name and line number on the dummy servers
1581 - MINOR: server: add a global list of all known servers
1582 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
1583 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
1584 - MINOR: server: move actconns to the per-thread structure
1585 - CLEANUP: server: reorder some fields in the server struct to respect cache lines
1586 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
1587 - BUG/MINOR: backend: fix condition for reuse on mode HTTP
1588 - BUILD: Fix build when using clang without optimizing.
1589 - CLEANUP: assorted typo fixes in the code and comments
1590
Willy Tarreau8ab65c22021-02-26 22:49:10 +010015912021/02/26 : 2.4-dev10
1592 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
1593 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
1594 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
1595 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
1596 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
1597 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
1598 - DOC: muxes: add a diagram of the exchanges between muxes and outer world
1599 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
1600 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
1601 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
1602 - MINOR: stream: add an "epoch" to figure which streams appeared when
1603 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
1604 - MINOR: streams: use one list per stream instead of a global one
1605 - MEDIUM: streams: do not use the streams lock anymore
1606 - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
1607 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
1608 - MINOR: tasks: do not maintain the rqueue_size counter anymore
1609 - CLEANUP: tasks: use a less confusing name for task_list_size
1610 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
1611 - MINOR: task: limit the remote thread wakeup to the global runqueue only
1612 - MINOR: task: move the allocated tasks counter to the per-thread struct
1613 - CLEANUP: task: split the large tasklet_wakeup_on() function in two
1614 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
1615 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
1616 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
1617 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
1618 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
1619 - BUG/MEDIUM: resolvers: Reset address for unresolved servers
1620 - DOC: Update the module list in MAINTAINERS file
1621 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
1622 - DOC: Update the HTX API documentation
1623 - DOC: Update the filters guide
1624 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
1625 - MINOR: task: split the counts of local and global tasks picked
1626 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
1627 - MINOR: task: don't decrement then increment the local run queue
1628 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
1629 - MINOR: task: make grq_total atomic to move it outside of the grq_lock
1630 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
1631 - MINOR: task: make tasklet wakeup latency measurements more accurate
1632 - MINOR: server: Be more strict on the server-state line parsing
1633 - MINOR: server: Only fill one array when parsing a server-state line
1634 - MEDIUM: server: Refactor apply_server_state() to make it more readable
1635 - CLEANUP: server: Rename state_line node to node instead of name_name
1636 - CLEANUP: server: Rename state_line structure into server_state_line
1637 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
1638 - MINOR: server: Be more strict when reading the version of a server-state file
1639 - MEDIUM: server: Store parsed params of a server-state line in the tree
1640 - MINOR: server: Remove cached line from global server-state tree when found
1641 - MINOR: server: Move loading state of servers in a dedicated function
1642 - MEDIUM: server: Use a tree to store local server-state lines
1643 - MINOR: server: Parse and store server-state lines in a dedicated function
1644 - MEDIUM: server: Don't load server-state file if a line is corrupted
1645 - REORG: server: Export and rename some functions updating server info
1646 - REORG: server-state: Move functions to deal with server-state in its own file
1647 - MINOR: server-state: Don't load server-state file for serverless proxies
1648 - CLEANUP: muxes: Remove useless if condition in show_fd function
1649 - BUG/MINOR: stats: fix compare of no-maint url suffix
1650 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
1651 - MINOR: ssl: mark the SSL handshake tasklet as heavy
1652 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
1653 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
1654 - MINOR: task: add one extra tasklet class: TL_HEAVY
1655 - MINOR: task: place the heavy elements in TL_HEAVY
1656 - MINOR: task: only limit TL_HEAVY tasks but not others
1657 - BUG/MINOR: http-ana: Only consider dst address to process originalto option
1658 - MINOR: tools: Add net_addr structure describing a network addess
1659 - MINOR: tools: Add function to compare an address to a network address
1660 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
1661 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
1662 - REGTESTS: Add script to test except param for fowardedfor/originalto options
1663 - DOC: scheduler: add a diagram showing the different queues and their usages
1664 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
1665 - CLEANUP: config: replace a few free() with ha_free()
1666 - CLEANUP: vars: always zero the pointers after a free()
1667 - CLEANUP: ssl: remove a useless "if" before freeing an error message
1668 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
1669 - CLEANUP: ssl: use realloc() instead of free()+malloc()
1670
Willy Tarreau31dd3932021-02-20 13:30:31 +010016712021/02/20 : 2.4-dev9
1672 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
1673 - CLEANUP: check: fix get_check_status_info declaration
1674 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
1675 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
1676 - MINOR: stats: add helper to get status string
1677 - MEDIUM: contrib/prometheus-exporter: add listen stats
1678 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
1679 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
1680 - BUG/MINOR: dns: missing test writing in output channel in session handler
1681 - BUG/MINOR: dns: fix ring attach control on dns_session_new
1682 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
1683 - BUG/MAJOR: connection: prevent double free if conn selected for removal
1684 - BUG/MINOR: session: atomically increment the tracked sessions counter
1685 - REGTESTS: fix http_reuse_conn_hash proxy test
1686 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
1687 - MINOR: connection: remove pointers for prehash in conn_hash_params
1688 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
1689 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
1690 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
1691 - OPTIM: server: switch the actconn list to an mt-list
1692 - Revert "MINOR: threads: change lock_t to an unsigned int"
1693 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
1694 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
1695 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
1696 - OPTIM: lb-leastconn: do not unlink the server if it did not change
1697 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
1698 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
1699 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
1700 - MINOR: cli: add missing agent commands for set server
1701 - BUILD/MEDIUM: da Adding pcre2 support.
1702 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
1703 - REGTESTS: reorder reuse conn proxy protocol test
1704 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
1705 - MINOR: tasks: refine the default run queue depth
1706 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
1707 - MINOR: mux_h2: do not try to remove front conn from idle trees
1708 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
1709 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
1710 - MINOR: connection: allocate dynamically hash node for backend conns
1711 - DOC: DeviceAtlas documentation typo fix.
1712 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
1713 - BUG/MINOR: http-rules: Always replace the response status on a return action
1714 - BUG/MINOR: server: Init params before parsing a new server-state line
1715 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
1716 - MEDIUM: server: Don't introduce a new server-state file version
1717 - DOC: contrib/prometheus-exporter: remove htx reference
1718 - REGTESTS: contrib/prometheus-exporter: test NaN values
1719 - REGTESTS: contrib/prometheus-exporter: test well known labels
1720 - CI: github actions: switch to stable LibreSSL release
1721 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
1722 - MINOR: dynbuf: make the buffer wait queue per thread
1723 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
1724 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
1725 - MINOR: sched: have one runqueue ticks counter per thread
1726
Willy Tarreaudc626ec2021-02-13 10:17:27 +010017272021/02/13 : 2.4-dev8
1728 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
1729 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
1730 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
1731 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
1732 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
1733 - CLEANUP: assorted typo fixes in the code and comments
1734 - CLEANUP: check: fix some typo in comments
1735 - CLEANUP: tools: typo in `strl2irc` mention
1736 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
1737 - MEDIUM: ssl: add a rwlock for SSL server session cache
1738 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
1739 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
1740 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
1741 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
1742 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
1743 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
1744 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
1745 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
1746 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
1747 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
1748 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
1749 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
1750 - BUG/MINOR: server: re-align state file fields number
1751 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
1752 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
1753 - CLEANUP: remove unused variable assigned found by Coverity
1754 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
1755 - BUG/MINOR: backend: hold correctly lock when killing idle conn
1756 - MEDIUM: connection: protect idle conn lists with locks
1757 - MEDIUM: connection: replace idle conn lists by eb trees
1758 - MINOR: backend: search conn in idle/safe trees after available
1759 - MINOR: backend: search conn in idle tree after safe on always reuse
1760 - MINOR: connection: prepare hash calcul for server conns
1761 - MINOR: connection: use the srv pointer for the srv conn hash
1762 - MINOR: backend: compare conn hash for session conn reuse
1763 - MINOR: connection: use sni as parameter for srv conn hash
1764 - MINOR: reg-tests: test http-reuse with sni
1765 - MINOR: backend: rewrite alloc of stream target address
1766 - MINOR: connection: use dst addr as parameter for srv conn hash
1767 - MINOR: reg-test: test http-reuse with specific dst addr
1768 - MINOR: backend: rewrite alloc of connection src address
1769 - MINOR: connection: use src addr as parameter for srv conn hash
1770 - MINOR: connection: use proxy protocol as parameter for srv conn hash
1771 - MINOR: reg-tests: test http-reuse with proxy protocol
1772 - MINOR: doc: update http reuse for new eligilible connections
1773 - BUG/MINOR: backend: fix compilation without ssl
1774 - REGTESTS: adjust http_reuse_conn_hash requirements
1775 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
1776 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
1777 - CI: cirrus: update FreeBSD image to 12.2
1778 - MEDIUM: cli: add check-addr command
1779 - MEDIUM: cli: add agent-port command
1780 - MEDIUM: server: add server-states version 2
1781 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
1782 - MINOR: server: enhance error precision when applying server state
1783 - BUG/MINOR: server: Fix server-state-file-name directive
1784 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
1785 - BUG/MEDIUM: config: don't pick unset values from last defaults section
1786 - BUG/MINOR: stats: revert the change on ST_CONVDONE
1787 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
1788 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
1789 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
1790 - BUILD: proxy: add missing compression-t.h to proxy-t.h
1791 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
1792 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
1793 - MEDIUM: proxy: only take defaults when a default proxy is passed.
1794 - MINOR: proxy: move the defproxy freeing code to proxy.c
1795 - MINOR: proxy: always properly reset the just freed default instance pointers
1796 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
1797 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
1798 - BUG/MINOR: server: parse_server() must take a const for the defproxy
1799 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
1800 - MINOR: proxy: add a new capability PR_CAP_DEF
1801 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
1802 - MINOR: cfgparse: use a pointer to the current default proxy
1803 - MINOR: proxy: also store the name for a defaults section
1804 - MINOR: proxy: support storing defaults sections into their own tree
1805 - MEDIUM: proxy: store the default proxies in a tree by name
1806 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
1807 - MINOR: http: add baseq sample fetch
1808 - CLEANUP: tcpcheck: Remove a useless test on port variable
1809 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
1810 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
1811 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
1812 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
1813 - DOC: tune: explain the origin of block size for ssl.cachesize
1814 - MINOR: tcp: add support for defer-accept on FreeBSD.
1815 - MINOR: ring: adds new ring_init function.
1816 - CLEANUP: channel: fix comment in ci_putblk.
1817 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
1818 - BUG/MINOR: resolvers: fix attribute packed struct for dns
1819 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
1820 - MINOR: resolvers: renames type dns_resolvers to resolvers.
1821 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
1822 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
1823 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
1824 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
1825 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
1826 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
1827 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
1828 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
1829 - MEDIUM: resolvers: split resolving and dns message exchange layers.
1830 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
1831 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
1832 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
1833
Willy Tarreau5d46fbd2021-02-05 15:17:33 +010018342021/02/05 : 2.4-dev7
1835 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
1836 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
1837 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
1838 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
1839 - CLEANUP: stats: improve field selection for frontend http fields
1840 - CLEANUP: assorted typo fixes in the code and comments
1841 - DOC: Improve documentation of the various hdr() fetches
1842 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
1843 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
1844 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
1845 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
1846 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
1847 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
1848 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
1849 - MINOR: reg-tests: add http-reuse test
1850 - CLEANUP: srv: fix comment for pool-max-conn
1851 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
1852 - REORG: backend: simplify conn_backend_get
1853 - MINOR: ssl: Server ssl context prepare function refactoring
1854 - MINOR: ssl: Certificate chain loading refactorization
1855 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
1856 - MEDIUM: ssl: Enable backend certificate hot update
1857 - MINOR: ssl: Remove client_crt member of the server's ssl context
1858 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
1859 - CLEANUP: ssl: remove SSL_CTX function parameter
1860 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
1861 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
1862 - CI: Fix DEBUG_STRICT definition for Coverity
1863 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
1864 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
1865 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
1866 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
1867 - BUG/MEDIUM: session: only retrieve ready idle conn from session
1868 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
1869 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
1870 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
1871 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
1872 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
1873 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
1874 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
1875 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
1876 - MINOR: stream: Add a function to validate TCP to H1 upgrades
1877 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
1878 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
1879 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
1880 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
1881 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
1882 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
1883 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
1884 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
1885 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
1886 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
1887 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
1888 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
1889 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
1890 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
1891 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
1892 - MINOR: htx: Add a function to know if a block is the only one in a message
1893 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
1894 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
1895 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
1896 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
1897 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
1898 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
1899 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
1900 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
1901 - MINOR: h1: reject websocket handshake if missing key
1902 - MEDIUM: h1: generate WebSocket key on response if needed
1903 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
1904 - MEDIUM: h2: parse Extended CONNECT reponse to htx
1905 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
1906 - MEDIUM: h1: add a WebSocket key on handshake if needed
1907 - MEDIUM: mux_h2: generate Extended CONNECT response
1908 - MEDIUM: h2: parse Extended CONNECT request to htx
1909 - MEDIUM: h2: send connect protocol h2 settings
1910 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
1911 - MINOR: vtc: add websocket test
1912 - REGTESTS: Fix required versions for several scripts
1913 - REGTEST: Don't use the websocket to validate http-check
1914 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
1915 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
1916 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
1917 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
1918 - REGTESTS: set_ssl_server_cert.vtc: set as broken
1919 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
1920 - BUG/MINOR: backend: check available list allocation for reuse
1921 - CI: Fix the coverity builds
1922 - DOC: management: fix "show resolvers" alphabetical ordering
1923 - MINOR: tools: add print_time_short() to print a condensed duration value
1924 - MINOR: activity: make profiling more manageable
1925 - MINOR: activity: declare a new structure to collect per-function activity
1926 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
1927 - MINOR: activity: also report collected tasks stats in "show profiling"
1928 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
1929 - MINOR: activity: add a new "show tasks" command to list currently active tasks
1930 - MINOR: listener: export accept_queue_process
1931 - MINOR: session: export session_expire_embryonic()
1932 - MINOR: muxes: export the timeout and shutr task handlers
1933 - MINOR: checks: export a few functions that appear often in trace dumps
1934 - MINOR: peers: export process_peer_sync() to improve traces
1935 - MINOR: stick-tables: export process_table_expire()
1936 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
1937 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
1938 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
1939 - MINOR: http-conv: Don't check if argument list is set in sample converters
1940 - MINOR: sample: Don't check if argument list is set in sample fetches
1941 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
1942 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
1943 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
1944 - MINOR: contrib/prometheus-exporter: declare states for objects
1945 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
1946 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
1947 - MINOR: listener: export manage_global_listener_queue()
1948 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
1949 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
1950 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
1951 - MINOR: checks: Add function to get the result code corresponding to a status
1952 - MAJOR: contrib/prometheus-exporter: move health check status to labels
1953 - MINOR: contrib/prometheus-exporter: improve service status description field
1954 - MINOR: stats: improve pending connections description
1955 - MINOR: stats: improve max stats descriptions
1956 - MINOR: contrib/prometheus-exporter: use stats desc when possible
1957 - MINOR: contrib/prometheus-exporter: add uweight field
1958 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
1959 - CLEANUP: contrib/prometheus-exporter: remove unused includes
1960 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
1961 - CLEANUP: contrib/prometheus-exporter: remove description in README
1962 - DOC: contrib/prometheus-exporter: Add missing metrics in README
1963 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
1964 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
1965 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
1966 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
1967 - BUG/MINOR: mux_h2: fix incorrect stat titles
1968 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
1969 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
1970 - MINOR: server: Don't set the check port during the update from a state file
1971 - MINOR: dns: Don't set the check port during a server dns resolution
1972 - MEDIUM: check: remove checkport checkaddr flag
1973 - MEDIUM: server: adding support for check_port in server state
1974 - BUG/MINOR: check: consitent way to set agentaddr
1975 - MEDIUM: check: align agentaddr and agentport behaviour
1976 - DOC: server: Add missing params in comment of the server state line parsing
1977 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
1978 - REGTESTS: mark http-check-send.vtc as 2.4-only
1979 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
1980 - BUG/MINOR: ssl: do not try to use early data if not configured
1981 - REGTESTS: unbreak http-check-send.vtc
1982 - MINOR: cli/show_fd: report local and report ports when known
1983 - BUILD: Makefile: move REGTESTST_TYPE default setting
1984 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
1985 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
1986 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
1987 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
1988
Willy Tarreau24c41d52021-01-22 16:19:46 +010019892021/01/22 : 2.4-dev6
1990 - MINOR: converter: adding support for url_enc
1991 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
1992 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
1993 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
1994 - BUILD: Makefile: exclude broken tests by default
1995 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
1996 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
1997 - MINOR: contrib/prometheus-exporter: export build_info
1998 - DOC: fix some spelling issues over multiple files
1999 - CLEANUP: Fix spelling errors in comments
2000 - SCRIPTS: announce-release: fix typo in help message
2001 - CI: github: add a few more words to the codespell ignore list
2002 - DOC: Add maintainers for the Prometheus exporter
2003 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
2004 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
2005 - CLEANUP: sample: remove uneeded check in json validation
2006 - MINOR: reg-tests: add a way to add service dependency
2007 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
2008 - BUG/MINOR: reg-tests: fix service dependency script
2009 - MINOR: reg-tests: add base prometheus test
2010 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
2011 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
2012 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
2013 - BUG/MINOR: init: enforce strict-limits when using master-worker
2014 - MINOR: contrib/prometheus-exporter: avoid connection close header
2015 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
2016 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
2017 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
2018 - MINOR: server: Forbid server definitions in frontend sections
2019 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
2020 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
2021 - MINOR: pattern: add the missing generation ID manipulation functions
2022 - MINOR: peers: Add traces for peer control messages.
2023 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
2024 - BUILD: peers: fix build warning about unused variable
2025 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
2026 - MINOR: cache: Do not store responses with an unknown encoding
2027 - BUG/MINOR: peers: Possible appctx pointer dereference.
2028 - MINOR: build: discard echoing in help target
2029 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
2030 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
2031 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
2032 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
2033 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
2034 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
2035 - CLEANUP: tools: make resolve_sym_name() take a const pointer
2036 - CLEANUP: cli: make "show fd" use a const connection to access other fields
2037 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
2038 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
2039 - MINOR: ssl: provide a "show fd" helper to report important SSL information
2040 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
2041 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
2042 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
2043 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
2044 - CI: Pin VTest to a known good commit
2045 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
2046 - MINOR: cli/show_fd: report some easily detectable suspicious states
2047 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
2048 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
2049 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
2050 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
2051 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
2052 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
2053 - MINOR: http: Add HTTP 501-not-implemented error message
2054 - MINOR: muxes: Add exit status for errors about not implemented features
2055 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
2056 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
2057 - DOC: Remove space after comma in converter signature
2058 - DOC: Rename '<var name>' to '<var>' in converter signature
2059 - MINOR: stats: duplicate 3 fields in bytes in info
2060 - MINOR: stats: add new start time field
2061 - MINOR: contrib/prometheus-exporter: merge info description from stats
2062 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
2063 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
2064 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
2065 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
2066 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
2067 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
2068 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
2069 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
2070 - MINOR: debug: always export the my_backtrace function
2071 - MINOR: debug: extract the backtrace dumping code to its own function
2072 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
2073 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
2074 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
2075 - BUILD: debug: fix build warning by consuming the write() result
2076 - MINOR: lua: remove unused variable
2077 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
2078
Willy Tarreau421ed392021-01-06 17:41:32 +010020792021/01/06 : 2.4-dev5
2080 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
2081 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
2082 - MINOR: time: increase the minimum wakeup interval to 60s
2083 - MINOR: check: do not ignore a connection header for http-check send
2084 - REGTESTS: complete http-check test
2085 - CI: travis-ci: drop coverity scan builds
2086 - MINOR: atomic: don't use ; to separate instruction on aarch64.
2087 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
2088 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
2089 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
2090 - CLEANUP: xxhash: remove the unused src/xxhash.c
2091 - MINOR: sample: add the xxh3 converter
2092 - REGTESTS: add tests for the xxh3 converter
2093 - MINOR: protocol: Create proto_quic QUIC protocol layer.
2094 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
2095 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
2096 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
2097 - MINOR: connection: Add a new xprt to connection.
2098 - MINOR: ssl: Export definitions required by QUIC.
2099 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
2100 - MINOR: tools: Add support for QUIC addresses parsing.
2101 - MINOR: quic: Add definitions for QUIC protocol.
2102 - MINOR: quic: Import C source code files for QUIC protocol.
2103 - MINOR: listener: Add QUIC info to listeners and receivers.
2104 - MINOR: server: Add QUIC definitions to servers.
2105 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
2106 - MINOR: ssl: QUIC transport parameters parsing.
2107 - MINOR: quic: QUIC socket management finalization.
2108 - MINOR: cfgparse: QUIC default server transport parameters init.
2109 - MINOR: quic: Enable the compilation of QUIC modules.
2110 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
2111 - MINOR: quic: Attempt to make trace more readable
2112 - MINOR: quic: Make usage of the congestion control window.
2113 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
2114 - MINOR: quic: Code reordering to help in reviewing/modifying.
2115 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
2116 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
2117 - MINOR: quic: Update the initial salt to that of draft-29.
2118 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
2119 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
2120 - MINOR: quic: Add traces for quic_packet_encrypt().
2121 - MINOR: cache: Refactoring of secondary_key building functions
2122 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
2123 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
2124 - MINOR: cache: Add specific secondary key comparison mechanism
2125 - MINOR: http: Add helper functions to trim spaces and tabs
2126 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
2127 - REGTESTS: cache: Simplify vary.vtc file
2128 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
2129 - MINOR: cache: Remove redundant test in http_action_req_cache_use
2130 - MINOR: cache: Replace the "process-vary" option's expected values
2131 - CI: GitHub Actions: enable daily Coverity scan
2132 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
2133 - MEDIUM: stick-tables: Add srvkey option to stick-table
2134 - REGTESTS: add test for stickiness using "srvkey addr"
2135 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
2136 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
2137 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
2138 - MINOR: lua: Use consistent error message 'memory allocation failed'
2139 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
2140 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
2141 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
2142 - MINOR: qpack: Add static header table definitions for QPACK.
2143 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
2144 - CLEANUP: quic: Remove useless QUIC event trace definitions.
2145 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
2146 - MINOR: quic: Pass quic_conn struct to frame parsers.
2147 - BUG/MINOR: quic: Wrong STREAM frames parsing.
2148 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
2149 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
2150 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
2151 - MINOR: ssl: make tlskeys_list_get_next() take a list element
2152 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
2153 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
2154 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
2155 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
2156 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
2157 - CLEANUP: spoe: fix typo on `var_check_arg` comment
2158 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
2159 - CI: github actions: build several popular "contrib" tools
2160 - DOC: Improve the message printed when running `make` w/o `TARGET`
2161 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
2162 - REGTESTS: add unresolvable servers to srvkey-addr
2163 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
2164 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
2165 - SCRIPTS: improve announce-release to support different tag and versions
2166 - SCRIPTS: make announce release support preparing announces before tag exists
2167 - CLEANUP: assorted typo fixes in the code and comments
2168 - BUG/MINOR: srv: do not init address if backend is disabled
2169 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
2170 - CLEANUP: assorted typo fixes in the code and comments
2171 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
2172
Willy Tarreau4d711762020-12-21 11:54:56 +010021732020/12/21 : 2.4-dev4
2174 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
2175 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
2176 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
2177 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
2178 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
2179 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
2180 - MEDIUM: cache: Avoid going over duplicates lists too often
2181 - MINOR: cache: Add a max-secondary-entries cache option
2182 - CI: cirrus: drop CentOS 6 builds
2183 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
2184 - MINOR: vars: replace static functions with global ones
2185 - MINOR: opentracing: add ARGC_OT enum
2186 - CONTRIB: opentracing: add the OpenTracing filter
2187 - DOC: opentracing: add the OpenTracing filter section
2188 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
2189 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
2190 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
2191 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
2192 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
2193 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
2194 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
2195 - CLEANUP: debug: mark the RNG's seed as unsigned
2196 - CONTRIB: halog: fix build issue caused by %L printf format
2197 - CONTRIB: halog: mark the has_zero* functions unused
2198 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
2199 - CONTRIB: debug: address "poll" utility build on non-linux platforms
2200 - BUILD: plock: remove dead code that causes a warning in gcc 11
2201 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
2202 - BUG/MINOR: dns: SRV records ignores duplicated AR records
2203 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
2204 - CLEANUP: assorted typo fixes in the code and comments
2205 - DOC: assorted typo fixes in the documentation
2206 - CI: codespell: whitelist "te" and "nd" words
2207
Willy Tarreaua786c412020-12-11 17:22:51 +010022082020/12/11 : 2.4-dev3
2209 - MINOR: log: Logging HTTP path only with %HPO
2210 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
2211 - MINOR: traces: add a new level "error" below the "user" level
2212 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
2213 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
2214 - BUG/MINOR: lua: missing "\n" in error message
2215 - BUG/MINOR: lua: lua-load doesn't check its parameters
2216 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
2217 - BUG/MINOR: lua: Some lua init operation are processed unsafe
2218 - MINOR: actions: Export actions lookup functions
2219 - MINOR: actions: add a function returning a service pointer from its name
2220 - MINOR: cli: add a function to look up a CLI service description
2221 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
2222 - MINOR: cache: Improve accept_encoding_normalizer
2223 - MINOR: cache: Add entry to the tree as soon as possible
2224 - BUG/MINOR: trace: Wrong displayed trace level
2225 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
2226 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
2227 - MEDIUM: lua-thread: use atomics for memory accounting
2228 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
2229 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
2230 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
2231 - MINOR: lua-thread: Use NULL context for main lua state
2232 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
2233 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
2234 - MINOR: lua-thread: Split hlua_init() function in two parts
2235 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
2236 - MINOR: lua-thread: Split hlua_load function in two parts
2237 - MINOR: lua-thread: Split hlua_post_init() function in two parts
2238 - MINOR: lua-thread: Add the "thread" core variable
2239 - MEDIUM: lua-thread: No longer use locked context in initialization parts
2240 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
2241 - MINOR: lua-thread: Replace global gL var with an array of states
2242 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
2243 - MINOR: lua-thread: Replace state_from by state_id
2244 - MINOR: lua-thread: Store each function reference and init reference in array
2245 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
2246 - MINOR: lua-thread: Add verbosity in errors
2247 - REGTESTS: add a test for the threaded Lua code
2248 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
2249 - DOC/MINOR: Fix formatting in Management Guide
2250 - MINOR: cache: Do not store stale entry
2251 - MINOR: cache: Add extra "cache-control" value checks
2252 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
2253 - MINOR: cache: Consider invalid Age values as stale
2254 - BUG/MEDIUM: lua-thread: some parts must be initialized once
2255 - BUG/MINOR: lua-thread: close all states on deinit
2256 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
2257 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
2258 - MINOR: session: Add the idle duration field into the session
2259 - MINOR: mux-h1: Update session idle duration when data are received
2260 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
2261 - MINOR: logs: Use session idle duration when no stream is provided
2262 - MINOR: stream: Always get idle duration from the session
2263 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
2264 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
2265 - MINOR: muxes: Remove get_cs_info callback function now useless
2266 - MINOR: stream: Pass an optional input buffer when a stream is created
2267 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
2268 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
2269 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
2270 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
2271 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
2272 - MINOR: mux-h1: Add a rxbuf into the H1 stream
2273 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
2274 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
2275 - MINOR: mux-h1: rework the h1_timeout_task() function
2276 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
2277 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
2278 - MINOR: mux-h1: Rework how shutdowns are handled
2279 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
2280 - MINOR: mux-h1: Process next request for IDLE connection only
2281 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
2282 - MINOR: stick-tables: Add functions to update some values of a tracked counter
2283 - MINOR: session: Add functions to increase http values of tracked counters
2284 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
2285 - MINOR: logs: Get the multiplexer exist status when no stream is provided
2286 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
2287 - MAJOR: mux-h1: Create the client stream as later as possible
2288 - DOC: config: Add notes about errors emitted by H1 mux
2289 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
2290 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
2291 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
2292 - MEDIUM: http-ana: Don't process partial or empty request anymore
2293 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
2294 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
2295 - REGTESTS: Fix proxy_protocol_tlv_validation
2296 - MINOR: http-ana: Properly set message flags from the start-line flags
2297 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
2298 - MINOR: protocol: add a ->set_port() helper to address families
2299 - MINOR: listener: automatically set the port when creating listeners
2300 - MINOR: listener: now use a generic add_listener() function
2301 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
2302 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
2303 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
2304 - MINOR: protocol: remove the redundant ->sock_domain field
2305 - MINOR: protocol: export protocol definitions
2306 - CLEANUP: protocol: group protocol struct members by usage
2307 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
2308 - MINOR: connection: use the control layer's init/close
2309 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
2310 - BUG/MAJOR: spoa/python: Fixing return None
2311 - DOC: spoa/python: Fixing typo in IP related error messages
2312 - DOC: spoa/python: Rephrasing memory related error messages
2313 - DOC: spoa/python: Fixing typos in comments
2314 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
2315 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
2316 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
2317 - BUG/MEDIUM: spoa/python: Fixing references to None
2318 - DOC: email change of the DeviceAtlas maintainer
2319 - MINOR: cache: Dump secondary entries in "show cache"
2320 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
2321 - MINOR: stream-int: don't touch polling anymore on shutdown
2322 - MINOR: connection: implement cs_drain_and_close()
2323 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
2324 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
2325 - MINOR: checks: don't call conn_cond_update_polling() anymore
2326 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
2327 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
2328 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
2329 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
2330 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
2331 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
2332 - BUG/MINOR: tools: Reject size format not starting by a digit
2333 - MINOR: action: define enum for timeout type of the set-timeout rule
2334 - MINOR: stream: prepare the hot refresh of timeouts
2335 - MEDIUM: stream: support a dynamic server timeout
2336 - MEDIUM: stream: support a dynamic tunnel timeout
2337 - MEDIUM: http_act: define set-timeout server/tunnel action
2338 - MINOR: frontend: add client timeout sample fetch
2339 - MINOR: backend: add timeout sample fetches
2340 - MINOR: stream: add sample fetches
2341 - MINOR: stream: add timeout sample fetches
2342 - REGTESTS: add regtest for http-request set-timeout
2343 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
2344 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
2345 - MINOR: connection: remove sock-specific code from conn_sock_send()
2346 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
2347 - MINOR: protocol: add a ->drain() function at the connection control layer
2348 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
2349 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
2350 - MEDIUM: connection: make use of the control layer check_events/ignore_events
2351
Willy Tarreauc94431b2020-12-01 08:15:26 +010023522020/12/01 : 2.4-dev2
2353 - BUILD: Make DEBUG part of .build_opts
2354 - BUILD: Show the value of DEBUG= in haproxy -vv
2355 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
2356 - MINOR: stream: Add level 7 retries on http error 401, 403
2357 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
2358 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
2359 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
2360 - BUG/MEDIUM: http_act: Restore init of log-format list
2361 - DOC: better describes how to configure a fallback crt
2362 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
2363 - MINOR: cache: Prepare helper functions for Vary support
2364 - MEDIUM: cache: Add the Vary header support
2365 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
2366 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
2367 - BUG/MAJOR: peers: fix partial message decoding
2368 - DOC: cache: Add new caching limitation information
2369 - DOC: cache: Add information about Vary support
2370 - DOC: better document the config file format and escaping/quoting rules
2371 - DOC: Clarify %HP description in log-format
2372 - CI: github actions: update LibreSSL to 3.3.0
2373 - CI: github actions: enable 51degrees feature
2374 - MINOR: fd/threads: silence a build warning with threads disabled
2375 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
2376 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
2377 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
2378 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
2379 - MINOR: config: Deprecate and ignore tune.chksize global option
2380 - MINOR: config: Add a warning if tune.chksize is used
2381 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
2382 - MINOR: check: Always increment check health counter on CONPASS
2383 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
2384 - DOC: config: Make disable-on-404 option clearer on transition conditions
2385 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
2386 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
2387 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
2388 - MINOR: debug: add "debug dev sched" to stress the scheduler.
2389 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
2390 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
2391 - MINOR: task: remove tasklet_insert_into_tasklet_list()
2392 - MINOR: task: perform atomic counter increments only once per wakeup
2393 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
2394 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
2395 - BUG/MEDIUM: local log format regression.
2396
Willy Tarreau1a38ffc2020-11-21 16:00:40 +010023972020/11/21 : 2.4-dev1
2398 - MINOR: ist: Add istend() function to return a pointer to the end of the string
2399 - MINOR: sample: Add converters to parse FIX messages
2400 - REGTEST: converter: Add a regtest for fix converters
2401 - MINOR: sample: Add converts to parses MQTT messages
2402 - REGTEST: converter: Add a regtest for MQTT converters
2403 - MINOR: compat: automatically include malloc.h on glibc
2404 - MEDIUM: pools: call malloc_trim() from pool_gc()
2405 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
2406 - MINOR: pattern: move the update revision to the pat_ref, not the expression
2407 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
2408 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
2409 - MINOR: pattern: make the delete and prune functions more generic
2410 - MEDIUM: pattern: link all final elements from the reference
2411 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
2412 - MINOR: pattern: remerge the list and tree deletion functions
2413 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
2414 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
2415 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
2416 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
2417 - MINOR: pattern: store a generation number in the reference patterns
2418 - MEDIUM: pattern: only match patterns that match the current generation
2419 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
2420 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
2421 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
2422 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
2423 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
2424 - MINOR: pattern: prepare removal of a pattern from the list head
2425 - MEDIUM: pattern: turn the pattern chaining to single-linked list
2426 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
2427 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
2428 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
2429 - MINOR: ssl: instantiate stats module
2430 - MINOR: ssl: count client hello for stats
2431 - MINOR: ssl: add counters for ssl sessions
2432 - DOC: config: Fix a typo on ssl_c_chain_der
2433 - MINOR: server: remove idle lock in srv_cleanup_connections
2434 - BUILD: ssl: silence build warning on uninitialised counters
2435 - BUILD: http-htx: fix build warning regarding long type in printf
2436 - REGTEST: ssl: test wildcard and multi-type + exclusions
2437 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
2438 - CI: Expand use of GitHub Actions for CI
2439 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
2440 - BUG/MINOR: pattern: a sample marked as const could be written
2441 - BUG/MINOR: lua: set buffer size during map lookups
2442 - MEDIUM: cache: Change caching conditions
2443 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
2444 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
2445 - MINOR: peers: Add traces to peer_treat_updatemsg().
2446 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
2447 - BUG/MINOR: peers: Missing TX cache entries reset.
2448 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
2449 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
2450 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
2451 - BUG/MEDIUM: check: reuse srv proto only if using same mode
2452 - MINOR: check: report error on incompatible proto
2453 - MINOR: check: report error on incompatible connect proto
2454 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
2455 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
2456 - MINOR: spoe: Don't close connection in sync mode on processing timeout
2457 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
2458 - MINOR: init: Fix the prototype for per-thread free callbacks
2459 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
2460 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
2461 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
2462 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
2463 - REGTESTS: Add sample_fetches/cook.vtc
2464 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
2465 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
2466 - CLEANUP: flt-trace: Remove unused random-parsing option
2467 - MINOR: flt-trace: Add an option to inhibits trace messages
2468 - MINOR: flt-trace: Use a bitfield for the trace options
2469 - REGTESTS: Add a script to test the random forwarding with several filters
2470 - REGTESTS: mark the abns test as broken again
2471 - REGTESTS: converter: add url_dec test
2472 - CI: Stop hijacking the hosts file
2473 - CI: Make the h2spec workflow more consistent with the VTest workflow
2474 - CI: travis-ci: remove amd64, osx builds
2475 - CI: travis-ci: arm64 are not allowed to fail anymore
2476 - DOC: add missing 3.10 in the summary
2477 - MINOR: ssl: remove client hello counters
2478 - MEDIUM: stats: add counters for failed handshake
2479 - MINOR: ssl: create common ssl_ctx init
2480 - MEDIUM: cli/ssl: configure ssl on server at runtime
2481 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
2482 - DOC: coding-style: update a few rules about pointers
2483 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
2484 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
2485 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
2486 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
2487 - BUG/MEDIUM: ssl: error when no certificate are found
2488 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
2489 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
2490 - CI: Github Actions: enable prometheus exporter
2491 - CI: Github Actions: remove LibreSSL-3.0.2 builds
2492 - CI: Github Actions: enable BoringSSL builds
2493 - CI: travis-ci: remove builds migrated to GH actions
2494 - BUILD: makefile: enable crypt(3) for OpenBSD
2495 - CI: Github Action: run "apt-get update" before packages restore
2496 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
2497 - CI: Pass the github.event_name to matrix.py
2498 - CI: Clean up Windows CI
2499 - DOC: clarify how to create a fallback crt
2500 - CLEANUP: connection: do not use conn->owner when the session is known
2501 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
2502 - REGTESTS: mark proxy_protocol_random_fail as broken
2503 - BUG/MINOR: http_htx: Fix searching headers by substring
2504 - MINOR: http_act: Add -m flag for del-header name matching method
2505
Willy Tarreau1db55792020-11-05 17:20:35 +010025062020/11/05 : 2.4-dev0
2507 - MINOR: version: it's development again.
2508 - DOC: mention in INSTALL that it's development again
2509
Willy Tarreau1c0a7222020-11-05 17:04:53 +010025102020/11/05 : 2.3.0
2511 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
2512 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
2513 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
2514 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
2515 - BUG/MINOR: checks: Report a socket error before any connection attempt
2516 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
2517 - MINOR: server: Copy configuration file and line for server templates
2518 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
2519 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
2520 - MINOR: debug: don't count free(NULL) in memstats
2521 - BUG/MINOR: filters: Skip disabled proxies during startup only
2522 - MINOR: mux_h2: capitalize frame type in stats
2523 - MINOR: mux_h2: add stat for total count of connections/streams
2524 - MINOR: stats: do not display empty stat module title on html
2525 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
2526 - BUG/MEDIUM: listener: only enable a listening listener if needed
2527 - BUG/MEDIUM: listener: never suspend inherited sockets
2528 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
2529 - MINOR: fd: add fd_want_recv_safe()
2530 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
2531 - REGTESTS: mark abns_socket as working now
2532 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
2533 - MINOR: sock: add a check against cross worker<->master socket activities
2534 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
2535 - BUG/MEDIUM: server: make it possible to kill last idle connections
2536 - MINOR: mworker/cli: the master CLI use its own applet
2537 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
2538 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
2539 - DOC: Add dns as an available domain to show stat
2540 - BUILD: makefile: usual reorder of objects for faster builds
2541 - DOC: update INSTALL to mention that TCC is supported
2542 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
2543 - MINOR: version: mention that it's stable now
2544
Willy Tarreaubd703e52020-10-31 13:17:06 +010025452020/10/31 : 2.3-dev9
2546 - CLEANUP: http_ana: remove unused assignation of `att_beg`
2547 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
2548 - BUG/MINOR: log: fix memory leak on logsrv parse error
2549 - BUG/MINOR: log: fix risk of null deref on error path
2550 - BUILD: ssl: more elegant OpenSSL early data support check
2551 - CI: github actions: update h2spec to 2.6.0
2552 - BUG/MINOR: cache: Check the return value of http_replace_res_status
2553 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
2554 - MINOR: cache: Process the If-Modified-Since header in conditional requests
2555 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
2556 - MINOR: mux-h2: register a stats module
2557 - MINOR: mux-h2: add counters instance to h2c
2558 - MINOR: mux-h2: add stats for received frame types
2559 - MINOR: mux-h2: report detected error on stats
2560 - MINOR: mux-h2: count open connections/streams on stats
2561 - BUG/MINOR: server: fix srv downtime calcul on starting
2562 - BUG/MINOR: server: fix down_time report for stats
2563 - BUG/MINOR: lua: initialize sample before using it
2564 - MINOR: cache: Add Expires header value parsing
2565 - MINOR: ist: Add a case insensitive istmatch function
2566 - BUG/MINOR: cache: Manage multiple values in cache-control header value
2567 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
2568 - MINOR: pattern: make pat_ref_append() return the newly added element
2569 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
2570 - MINOR: pattern: export pat_ref_push()
2571 - CLEANUP: pattern: use calloc() rather than malloc for structures
2572 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
2573
Willy Tarreaufb1b9e32020-10-24 13:14:31 +020025742020/10/24 : 2.3-dev8
2575 - MINOR: backend: replace the lbprm lock with an rwlock
2576 - MINOR: lb/map: use seek lock and read locks where appropriate
2577 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
2578 - MINOR: lb/first: use a read lock in fas_get_next_server()
2579 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
2580 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
2581 - BUILD: ssl: make BoringSSL use its own version numbers
2582 - CLEANUP: threads: don't register an initcall when not debugging
2583 - MINOR: threads: change lock_t to an unsigned int
2584 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
2585 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
2586 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
2587 - MEDIUM: config: report that "nbproc" is deprecated
2588 - BUG/MINOR: listener: close before free in `listener_accept`
2589 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
2590 - BUG/MINOR: queue: properly report redistributed connections
2591 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
2592 - BUILD: makefile: add entries to build common debugging tools
2593 - BUG/MEDIUM: server: support changing the slowstart value from state-file
2594 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
2595 - MINOR: http: Add etag comparison function
2596 - MEDIUM: cache: Store the ETag information in the cache_entry
2597 - MEDIUM: cache: Add support for 'If-None-Match' request header
2598 - REGTEST: cache: Add if-none-match test case
2599 - CLEANUP: compression: Make use of http_get_etag_type()
2600 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
2601 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
2602 - MINOR: threads/debug: only report used lock stats
2603 - MINOR: threads/debug: only report lock stats for used operations
2604 - MINOR: proxy; replace the spinlock with an rwlock
2605 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
2606 - MINOR: proxy/cli: only take a read lock in "show errors"
2607 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
2608 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
2609 - MINOR: queue: reduce the locked area in pendconn_add()
2610 - OPTIM: queue: make the nbpend counters atomic
2611 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
2612 - MINOR: leastconn: take the queue length into account when queuing servers
2613 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
2614 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
2615 - MINOR: stats: support the "up" output modifier for "show stat"
2616 - MINOR: stats: also support a "no-maint" show stat modifier
2617 - MINOR: stats: indicate the number of servers in a backend's status
2618 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
2619 - REGTEST: ssl: test "set ssl cert" with separate key / crt
2620 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
2621 - MINOR: stats: report server's user-configured weight next to effective weight
2622 - CI: travis-ci: switch to Ubuntu 20.04
2623 - CONTRIB: release-estimator: Add release estimating tool
2624 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
2625 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
2626
Willy Tarreau9d58c9b2020-10-17 10:31:50 +020026272020/10/17 : 2.3-dev7
2628 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
2629 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
2630 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
2631 - MINOR: fd: report an error message when failing initial allocations
2632 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
2633 - MINOR: sock: add sock_accept_conn() to test a listening socket
2634 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
2635 - MINOR: sockpair: implement the .rx_listening function
2636 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
2637 - CLEANUP: unix: make use of sock_accept_conn() where relevant
2638 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
2639 - CONTRIB: tcploop: implement a disconnect operation 'D'
2640 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
2641 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
2642 - BUG/MINOR: connection: fix loop iter on connection takeover
2643 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
2644 - MINOR: connection: improve list api usage
2645 - MINOR: mux/connection: add a new mux flag for HOL risk
2646 - MINOR: connection: don't check priv flag on free
2647 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
2648 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
2649 - MEDIUM: h2: remove conn from session on detach
2650 - MEDIUM: fcgi: remove conn from session on detach
2651 - DOC: Describe reuse safe for HOL handling
2652 - MEDIUM: proxy: remove obsolete "mode health"
2653 - MEDIUM: proxy: remove obsolete "monitor-net"
2654 - CLEANUP: protocol: remove the ->drain() function
2655 - CLEANUP: fd: finally get rid of fd_done_recv()
2656 - MINOR: connection: make sockaddr_alloc() take the address to be copied
2657 - MEDIUM: listener: allocate the connection before queuing a new connection
2658 - MINOR: session: simplify error path in session_accept_fd()
2659 - MINOR: connection: add new error codes for accept_conn()
2660 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
2661 - MINOR: protocol: add a new function accept_conn()
2662 - MINOR: sock: implement sock_accept_conn() to accept a connection
2663 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
2664 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
2665 - MEDIUM: listener: remove the second pass of fd manipulation at the end
2666 - MINOR: protocol: add a default I/O callback and put it into the receiver
2667 - MINOR: log: set the UDP receiver's I/O handler in the receiver
2668 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
2669 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
2670 - DOC: improve the documentation for "option nolinger"
2671 - BUG/MEDIUM: proxy: properly stop backends
2672 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
2673 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
2674 - MINOR: threads: add the transitions to/from the seek state
2675 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
2676 - BUILD: listener: avoir a build warning when threads are disabled
2677 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
2678 - MINOR: ssl: add volatile flags to ssl samples
2679 - MEDIUM: backend: reuse connection if using a static sni
2680 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
2681 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
2682 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
2683 - DOC: fix typo in MAX_SESS_STKCTR
2684
Willy Tarreaub7ffe192020-10-10 10:45:13 +020026852020/10/10 : 2.3-dev6
2686 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
2687 - BUILD: makefile: Update feature flags for OpenBSD
2688 - DOC: agent-check: fix typo in "fail" word expected reply
2689 - DOC: crt: advise to move away from cert bundle
2690 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
2691 - REGTEST: fix host part in balance-uri-path-only.vtc
2692 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
2693 - REGTEST: the iif converter test requires 2.3
2694 - REGTEST: make agent-check.vtc require 1.8
2695 - REGTEST: make abns_socket.vtc require 1.8
2696 - REGTEST: make map_regm_with_backref require 1.7
2697 - BUILD: makefile: Update feature flags for FreeBSD
2698 - OPTIM: backend/random: never queue on the server, always on the backend
2699 - OPTIM: backend: skip LB when we know the backend is full
2700 - BUILD: makefile: Fix building with closefrom() support enabled
2701 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
2702 - MINOR: tools: support for word expansion of environment in parse_line
2703 - BUILD: tools: fix minor build issue on isspace()
2704 - BUILD: makefile: Enable closefrom() support on Solaris
2705 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
2706 - MINOR: ssl: Add error if a crt-list might be truncated
2707 - MINOR: ssl: remove uneeded check in crtlist_parse_file
2708 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
2709 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
2710 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
2711 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
2712 - DOC: ssl: new "cert bundle" behavior
2713 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
2714 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
2715 - MINOR: counters: fix a typo in comment
2716 - BUG/MINOR: stats: fix validity of the json schema
2717 - REORG: stats: export some functions
2718 - MINOR: stats: add stats size as a parameter for csv/json dump
2719 - MINOR: stats: hide px/sv/li fields in applet struct
2720 - REORG: stats: extract proxy json dump
2721 - REORG: stats: extract proxies dump loop in a function
2722 - MINOR: hlua: Display debug messages on stderr only in debug mode
2723 - MINOR: stats: define the concept of domain for statistics
2724 - MINOR: stats: define additional flag px cap on domain
2725 - MEDIUM: stats: add delimiter for static proxy stats on csv
2726 - MEDIUM: stats: define an API to register stat modules
2727 - MEDIUM: stats: add abstract type to store counters
2728 - MEDIUM: stats: integrate static proxies stats in new stats
2729 - MINOR: stats: support clear counters for dynamic stats
2730 - MINOR: stats: display extra proxy stats on the html page
2731 - MINOR: stats: add config "stats show modules"
2732 - MINOR: dns/stats: integrate dns counters in stats
2733 - MINOR: stats: remove for loop declaration
2734 - DOC: ssl: fix typo about ocsp files
2735 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
2736 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
2737 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
2738 - CLEANUP: cache: Fix leak of cconf->c.name during config check
2739 - CLEANUP: ssl: Release cached SSL sessions on deinit
2740 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
2741 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
2742 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
2743 - CLEANUP: sock-unix: Remove an unreachable goto clause
2744 - BUG/MINOR: proxy: inc req counter on new syslog messages.
2745 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
2746 - MINOR: stats: inc req counter on listeners.
2747 - MINOR: channel: new getword and getchar functions on channel.
2748 - MEDIUM: log: syslog TCP support on log forward section.
2749 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
2750 - DOC: re-work log forward bind statement documentation.
2751 - DOC: fix a confusing typo on a regsub example
2752 - BUILD: Add a DragonFlyBSD target
2753 - BUG/MINOR: makefile: fix a tiny typo in the target list
2754 - BUILD: makefile: Update feature flags for NetBSD
2755 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
2756 - DOC: Add missing stats fields in the management doc
2757 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
2758 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
2759 - DOC: Fix typos in configuration.txt
2760 - BUG/MINOR: http: Fix content-length of the default 500 error
2761 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
2762 - REGTESTS: mark abns_socket as broken
2763 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
2764 - MEDIUM: listeners: don't bounce listeners management between queues
2765 - MEDIUM: init: stop disabled proxies after initializing fdtab
2766 - MEDIUM: listeners: make unbind_listener() converge if needed
2767 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
2768 - MEDIUM: listeners: remove the now unused ZOMBIE state
2769 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
2770 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
2771 - MINOR: listeners: introduce listener_set_state()
2772 - MINOR: proxy: maintain per-state counters of listeners
2773 - MEDIUM: proxy: remove the unused PR_STFULL state
2774 - MEDIUM: proxy: remove the PR_STERROR state
2775 - MEDIUM: proxy: remove state PR_STPAUSED
2776 - MINOR: startup: don't rely on PR_STNEW to check for listeners
2777 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
2778 - MEDIUM: proxy: replace proxy->state with proxy->disabled
2779 - MEDIUM: proxy: remove start_proxies()
2780 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
2781 - MINOR: listeners: check the current listener state in pause_listener()
2782 - MINOR: listeners: check the current listener earlier state in resume_listener()
2783 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
2784 - MINOR: protocol: introduce protocol_{pause,resume}_all()
2785 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
2786 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
2787 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
2788 - BUG/MEDIUM: listeners: correctly report pause() errors
2789 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
2790 - CLEANUP: protocol: remove the ->disable_all method
2791 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
2792 - MINOR: listeners: export enable_listener()
2793 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
2794 - CLEANUP: protocol: remove the ->enable_all method
2795 - CLEANUP: listeners: remove the now unused enable_all_listeners()
2796 - MINOR: protocol: rename the ->listeners field to ->receivers
2797 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
2798 - MINOR: protocol: implement an ->rx_resume() method
2799 - MINOR: listener: use the protocol's ->rx_resume() method when available
2800 - MINOR: sock: provide a set of generic enable/disable functions
2801 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
2802 - MINOR: protocol: add a new pair of enable/disable methods for listeners
2803 - MEDIUM: listeners: now use the listener's ->enable/disable
2804 - MINOR: listeners: split delete_listener() in two versions
2805 - MINOR: listeners: count unstoppable jobs on creation, not deletion
2806 - MINOR: listeners: add a new stop_listener() function
2807 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
2808 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
2809 - MEDIUM: proxy: centralize proxy status update and reporting
2810 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
2811 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
2812 - MEDIUM: udp: implement udp_suspend() and udp_resume()
2813 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
2814 - MEDIUM: listeners: always close master vs worker listeners
2815 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
2816 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
2817 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
2818 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
2819 - MEDIUM: receivers: add an rx_unbind() method in the protocols
2820 - MINOR: listeners: split do_unbind_listener() in two
2821 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
2822 - MEDIUM: config: mark "grace" as deprecated
2823 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
2824 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
2825 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
2826 - BUILD: makefile: Enable getaddrinfo() on OS/X
2827
Christopher Faulet05f01882020-09-25 18:40:47 +020028282020/09/25 : 2.3-dev5
2829 - DOC: Fix typo in iif() example
2830 - CLEANUP: Update .gitignore
2831 - BUILD: introduce possibility to define ABORT_NOW() conditionally
2832 - CI: travis-ci: help Coverity to recognize abort()
2833 - BUG/MINOR: Fix type passed of sizeof() for calloc()
2834 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
2835 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
2836 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
2837 - BUG/MINOR: ssl: verifyhost is case sensitive
2838 - BUILD: makefile: change default value of CC from gcc to cc
2839 - CI: travis-ci: split asan step out of running tests
2840 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
2841 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
2842 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
2843 - BUG/MINOR: log-forward: fail on unknown keywords
2844 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
2845 - BUG/MEDIUM: log-forward: always quit on parsing errors
2846 - MEDIUM: ssl: remove bundle support in crt-list and directories
2847 - MEDIUM: ssl/cli: remove support for multi certificates bundle
2848 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
2849 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
2850 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
2851 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
2852 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
2853 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
2854 - CLEANUP: ssl: remove utility functions for bundle
2855 - DOC: explain bundle emulation in configuration.txt
2856 - BUILD: fix build with openssl < 1.0.2 since bundle removal
2857 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
2858 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
2859 - MINOR: listener: create a new struct "settings" in bind_conf
2860 - MINOR: listener: move bind_proc and bind_thread to struct settings
2861 - MINOR: listener: move the interface to the struct settings
2862 - MINOR: listener: move the network namespace to the struct settings
2863 - REORG: listener: create a new struct receiver
2864 - REORG: listener: move the listening address to a struct receiver
2865 - REORG: listener: move the receiving FD to struct receiver
2866 - REORG: listener: move the listener's proto to the receiver
2867 - MINOR: listener: make sock_find_compatible_fd() check the socket type
2868 - REORG: listener: move the receiver part to a new file
2869 - MINOR: receiver: link the receiver to its settings
2870 - MINOR: receiver: link the receiver to its owner
2871 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
2872 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
2873 - MINOR: listener: move the INHERITED flag down to the receiver
2874 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
2875 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
2876 - MINOR: protocol: rename the ->bind field to ->listen
2877 - MINOR: protocol: add a new ->bind() entry to bind the receiver
2878 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
2879 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
2880 - MEDIUM: udp: make use of sock_inet_bind_receiver()
2881 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
2882 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
2883 - MEDIUM: sockpair: implement sockpair_bind_receiver()
2884 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
2885 - MEDIUM: protocol: explicitly start the receiver before the listener
2886 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
2887 - MINOR: protocol: add a new proto_fam structure for protocol families
2888 - MINOR: protocol: retrieve the family-specific fields from the family
2889 - CLEANUP: protocol: remove family-specific fields from struct protocol
2890 - MINOR: protocol: add a real family for existing FDs
2891 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
2892 - MINOR: tools: make str2sa_range() take more options than just resolve
2893 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
2894 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
2895 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
2896 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
2897 - MINOR: listener: remove the inherited arg to create_listener()
2898 - MINOR: tools: make str2sa_range() optionally return the fd
2899 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
2900 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
2901 - MINOR: config: do not test an inherited socket again
2902 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
2903 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
2904 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
2905 - MINOR: tools: remove the central test for "udp" in str2sa_range()
2906 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
2907 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
2908 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
2909 - MINOR: listener: pass the chosen protocol to create_listeners()
2910 - MINOR: tools: make str2sa_range() directly return the protocol
2911 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
2912 - MINOR: protocol: add the control layer type in the protocol struct
2913 - MEDIUM: protocol: store the socket and control type in the protocol array
2914 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
2915 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
2916 - MINOR: tools: drop listener detection hack from str2sa_range()
2917 - BUILD: sock_unix: add missing errno.h
2918 - MINOR: sock_inet: report the errno string in binding errors
2919 - MINOR: sock_unix: report the errno string in binding errors
2920 - BUILD: sock_inet: include errno.h
2921 - MINOR: h2/trace: also display the remaining frame length in traces
2922 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
2923 - BUG/MEDIUM: h2: report frame bits only for handled types
2924 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
2925 - BUG/MINOR: Fix memory leaks cfg_parse_peers
2926 - BUG/MINOR: config: Fix memory leak on config parse listen
2927 - MINOR: backend: make the "whole" option of balance uri take only one bit
2928 - MINOR: backend: add a new "path-only" option to "balance uri"
2929 - REGTESTS: add a few load balancing tests
2930 - BUG/MEDIUM: listeners: do not pause foreign listeners
2931 - BUG/MINOR: listeners: properly close listener FDs
2932 - BUILD: trace: include tools.h
2933
Willy Tarreau253c4dc2020-09-11 17:05:59 +020029342020/09/11 : 2.3-dev4
2935 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
2936 - BUG/MEDIUM: ssl: crt-list negative filters don't work
2937 - DOC: overhauling github issue templates
2938 - MEDIUM: cfgparse: Emit hard error on truncated lines
2939 - DOC: cache: Use '<name>' instead of '<id>' in error message
2940 - MINOR: cache: Reject duplicate cache names
2941 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
2942 - MINOR: stats: prevent favicon.ico requests for stats page
2943 - BUILD: tools: include auxv a bit later
2944 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
2945 - MEDIUM: ssl: Support certificate chaining for certificate generation
2946 - MINOR: ssl: Support SAN extension for certificate generation
2947 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
2948 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
2949 - MINOR: reload: determine the foreing binding status from the socket
2950 - MEDIUM: reload: stop passing listener options along with FDs
2951 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
2952 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
2953 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
2954 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
2955 - MEDIUM: reload: pass all exportable FDs, not just listeners
2956 - DOC: add description of pidfile in master-worker mode
2957 - BUG/MINOR: reload: do not fail when no socket is sent
2958 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
2959 - CLEANUP: tcp: stop exporting smp_fetch_src()
2960 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
2961 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
2962 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
2963 - REORG: sock: start to move some generic socket code to sock.c
2964 - MINOR: sock: introduce sock_inet and sock_unix
2965 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
2966 - MINOR: sock_inet: implement sock_inet_get_dst()
2967 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
2968 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
2969 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
2970 - REORG: listener: move xfer_sock_list to sock.{c,h}.
2971 - MINOR: sock: add interface and namespace length to xfer_sock_list
2972 - MINOR: sock: implement sock_find_compatible_fd()
2973 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
2974 - REORG: sock: move get_old_sockets() from haproxy.c
2975 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
2976 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
2977 - BUILD: sock_unix: fix build issue with isdigit()
2978 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
2979 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
2980 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
2981 - MINOR: http-htx: Handle an optional reason when replacing the response status
2982 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
2983 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
2984 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
2985 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
2986 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
2987 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
2988 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
2989 - REGTEST: increase some short timeouts to make tests more reliable
2990 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
2991 - BUILD: thread: limit the libgcc_s workaround to glibc only
2992 - MINOR: protocol: do not call proto->bind_all() anymore
2993 - MINOR: protocol: do not call proto->unbind_all() anymore
2994 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
2995 - MAJOR: init: start all listeners via protocols and not via proxies anymore
2996 - BUG/MINOR: startup: haproxy -s cause 100% cpu
2997 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
2998 - BUG/MEDIUM: doc: Fix replace-path action description
2999 - MINOR: http-rules: Add set-pathq and replace-pathq actions
3000 - MINOR: http-fetch: Add pathq sample fetch
3001 - REGTEST: Add a test for request path manipulations, with and without the QS
3002 - MINOR: Commit .gitattributes
3003 - CLEANUP: Update .gitignore
3004 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
3005 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
3006 - MINOR: server: Improve log message sent when server address is updated
3007 - DOC: ssl-load-extra-files only applies to certificates on bind lines
3008 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
3009 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
3010 - BUILD: threads: better workaround for late loading of libgcc_s
3011 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
3012 - BUILD: compiler: workaround a glibc madness around __attribute__()
3013 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
3014 - BUILD: trace: always have an argument before variadic args in macros
3015 - BUILD: traces: don't pass an empty argument for missing ones
3016 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
3017 - CLEANUP: Free old_argv on deinit
3018 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
3019 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
3020 - CLEANUP: haproxy: Free post_check_list in deinit()
3021 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
3022 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
3023 - MINOR: sample: Add iif(<true>,<false>) converter
3024
Willy Tarreauf104b532020-08-14 18:54:05 +020030252020/08/14 : 2.3-dev3
3026 - SCRIPTS: git-show-backports: make -m most only show the left branch
3027 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
3028 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
3029 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
3030 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
3031 - CLEANUP: dns: typo in reported error message
3032 - BUG/MAJOR: dns: disabled servers through SRV records never recover
3033 - BUG/MINOR: spoa-server: fix size_t format printing
3034 - DOC: spoa-server: fix false friends `actually`
3035 - BUG/MINOR: ssl: fix memory leak at OCSP loading
3036 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
3037 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
3038 - MINOR: arg: Add an argument type to keep a reference on opaque data
3039 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
3040 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
3041 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
3042 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
3043 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
3044 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
3045 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
3046 - MEDIUM: lua: Don't filter exported fetches and converters
3047 - MINOR: lua: Add support for userlist as fetches and converters arguments
3048 - MINOR: lua: Add support for regex as fetches and converters arguments
3049 - MINOR: arg: Use chunk_destroy() to release string arguments
3050 - BUG/MINOR: snapshots: leak of snapshots on deinit()
3051 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
3052 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
3053 - CLEANUP: fix all duplicated semicolons
3054 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
3055 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
3056 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
3057 - BUILD: makefile: don't disable -Wstringop-overflow anymore
3058 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
3059 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
3060 - BUG/MEDIUM: ssl: never generates the chain from the verify store
3061 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
3062 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
3063 - CLEANUP: ssl: remove poorly readable nested ternary
3064
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020030652020/07/31 : 2.3-dev2
3066 - DOC: ssl: req_ssl_sni needs implicit TLS
3067 - BUG/MEDIUM: arg: empty args list must be dropped
3068 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
3069 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
3070 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
3071 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
3072 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
3073 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
3074 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
3075 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
3076 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
3077 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
3078 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
3079 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
3080 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
3081 - BUILD: tools: fix build with static only toolchains
3082 - DOC: Use gender neutral language
3083 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
3084 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
3085 - BUG/MAJOR: dns: don't treat Authority records as an error
3086 - CI : travis-ci : prepare for using stock OpenSSL
3087 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
3088 - MEDIUM: lua: Add support for the Lua 5.4
3089 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
3090 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
3091 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
3092 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
3093 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
3094 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
3095 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
3096 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
3097 - MINOR: connection: Preinstall the mux for non-ssl connect
3098 - MINOR: stream-int: Be sure to have a mux to do sends and receives
3099 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
3100 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
3101 - CI: travis-ci: use better name for Coverity scan job
3102 - CI: travis-ci: use proper linking flags for SLZ build
3103 - BUG/MEDIUM: backend: always attach the transport before installing the mux
3104 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
3105 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
3106 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
3107 - MINOR: mux-h1: do not try to receive on backend before sending a request
3108 - CLEANUP: assorted typo fixes in the code and comments
3109 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
3110
Willy Tarreaue732cbd2020-07-17 15:13:19 +020031112020/07/17 : 2.3-dev1
3112 - MINOR: config: make strict limits enabled by default
3113 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
3114 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
3115 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
3116 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
3117 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
3118 - BUG/MINOR: haproxy: Free srule->file during deinit
3119 - BUG/MINOR: haproxy: Free srule->expr during deinit
3120 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
3121 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
3122 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
3123 - CLEANUP: haproxy: Free post_deinit_list in deinit()
3124 - CLEANUP: haproxy: Free server_deinit_list in deinit()
3125 - CLEANUP: haproxy: Free post_server_check_list in deinit()
3126 - CLEANUP: Add static void vars_deinit()
3127 - CLEANUP: Add static void hlua_deinit()
3128 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
3129 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
3130 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
3131 - MINOR: tcp: Support TCP keepalive parameters customization
3132 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
3133 - MINOR: lists: rename some MT_LIST operations to clarify them
3134 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
3135 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
3136 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
3137 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
3138 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
3139 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
3140 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
3141 - MINOR: connection: Set the SNI on server connections before installing the mux
3142 - MINOR: connection: Set new connection as private on reuse never
3143 - MINOR: connection: Add a wrapper to mark a connection as private
3144 - MEDIUM: connection: Add private connections synchronously in session server list
3145 - MINOR: connection: Use a dedicated function to look for a session's connection
3146 - MINOR: connection: Set the conncetion target during its initialisation
3147 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
3148 - MINOR: server: Factorize code to deal with reuse of server idle connections
3149 - MINOR: server: Factorize code to deal with connections removed from an idle list
3150 - CLEANUP: connection: remove unused field idle_time from the connection struct
3151 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
3152 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
3153 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
3154 - MINOR: backend: Add sample fetches to get the server's weight
3155 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
3156 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
3157 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
3158 - BUG/MINOR: backend: fix potential null deref on srv_conn
3159 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
3160 - MEDIUM: udp: adds minimal proto udp support for message listeners.
3161 - MEDIUM: log/sink: re-work and merge of build message API.
3162 - MINOR: log: adds syslog udp message handler and parsing.
3163 - MEDIUM: log: adds log forwarding section.
3164 - MINOR: log: adds counters on received syslog messages.
3165 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
3166 - BUG/MEDIUM: server: resolve state file handle leak on reload
3167 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
3168 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
3169 - BUILD: config: address build warning on raspbian+rpi4
3170 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
3171 - BUILD: config: fix again bugs gcc warnings on calloc
3172
Willy Tarreau33205c22020-07-07 16:35:28 +020031732020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02003174 - [RELEASE] Released version 2.3-dev0
3175 - MINOR: version: back to development, update status message
3176
31772020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02003178 - exact copy of 2.2.0
3179
Willy Tarreau3a00c912020-07-07 16:33:14 +020031802020/07/07 : 2.2.0
3181 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
3182 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
3183 - BUILD: tools: make resolve_sym_name() return a const
3184 - CLEANUP: auth: fix useless self-include of auth-t.h
3185 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
3186 - CLEANUP: assorted typo fixes in the code and comments
3187 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
3188 - DOC: fix tune.ssl.keylog sample fetches array
3189 - BUG/MINOR: ssl: check conn in keylog sample fetch
3190 - DOC: configuration: various typo fixes
3191 - MINOR: log: Remove unused case statement during the log-format string parsing
3192 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
3193 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
3194 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
3195 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
3196 - MINOR: mux-h1: Improve traces about the splicing
3197 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
3198 - BUG/MEDIUM: connection: Don't consider new private connections as available
3199 - BUG/MINOR: connection: See new connection as available only on reuse always
3200 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
3201 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
3202 - DOC: update INSTALL with new compiler versions
3203 - DOC: minor update to coding style file
3204 - MINOR: version: mention that it's an LTS release now
3205
Willy Tarreau62f11a52020-07-04 07:10:24 +020032062020/07/04 : 2.2-dev12
3207 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
3208 - MINOR: cli: make "show sess" stop at the last known session
3209 - CLEANUP: buffers: remove unused buffer_wq_lock lock
3210 - BUG/MEDIUM: buffers: always allocate from the local cache first
3211 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
3212 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
3213 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
3214 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
3215 - REORG: buffer: rename buffer.c to dynbuf.c
3216 - REORG: includes: create tinfo.h for the thread_info struct
3217 - CLEANUP: pool: only include the type files from types
3218 - MINOR: pools: move the LRU cache heads to thread_info
3219 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
3220 - MINOR: stats: add 3 new output values for the per-server idle conn state
3221 - MINOR: activity: add per-thread statistics on FD takeover
3222 - BUG/MINOR: server: start cleaning idle connections from various points
3223 - MEDIUM: server: improve estimate of the need for idle connections
3224 - MINOR: stats: add the estimated need of concurrent connections per server
3225 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
3226 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
3227 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
3228 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
3229 - BUG/MINOR: server: always count one idle slot for current thread
3230 - MEDIUM: server: use the two thresholds for the connection release algorithm
3231 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
3232 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
3233 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
3234 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
3235 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
3236 - MINOR: pools: increase MAX_BASE_POOLS to 64
3237 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
3238 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
3239 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
3240 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
3241 - BUG/MINOR: proxy: always initialize the trash in show servers state
3242 - MINOR: cli/proxy: add a new "show servers conn" command
3243 - MINOR: server: skip servers with no idle conns earlier
3244 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
3245 - MEDIUM: server: add a new pool-low-conn server setting
3246 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
3247 - MINOR: backend: don't always takeover from the same threads
3248 - MINOR: sched: make sched->task_list_size atomic
3249 - MEDIUM: sched: create a new TASK_KILLED task flag
3250 - MEDIUM: sched: implement task_kill() to kill a task
3251 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
3252 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
3253 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
3254 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
3255 - CLEANUP: connections: rename the toremove_lock to takeover_lock
3256 - MEDIUM: connections: Don't use a lock when moving connections to remove.
3257 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
3258 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
3259 - MINOR: config: add a new tune.idle-pool.shared global setting.
3260 - MINOR: 51d: silence a warning about null pointer dereference
3261 - MINOR: debug: add a new "debug dev memstats" command
3262 - MINOR: log-format: allow to preserve spacing in log format strings
3263 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
3264 - BUG/MAJOR: sched: make sure task_kill() always queues the task
3265 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
3266 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
3267 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
3268 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
3269 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
3270 - BUG/MINOR: log: missing timezone on iso dates.
3271 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
3272 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
3273 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
3274 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
3275 - BUG/MINOR: http_act: don't check capture id in backend (2)
3276 - BUILD: makefile: disable threads by default on OpenBSD
3277 - BUILD: peers: fix build warning with gcc 4.2.1
3278 - CI: cirrus-ci: exclude slow reg-tests
3279
Willy Tarreau4462af82020-06-26 22:01:04 +020032802020/06/26 : 2.2-dev11
3281 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
3282 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
3283 - BUG/MINOR: spoe: correction of setting bits for analyzer
3284 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
3285 - MINOR: cfgparse: Warn on truncated lines / files
3286 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
3287 - MINOR: debug: add a new DEBUG_FD build option
3288 - BUG/MINOR: tasks: make sure never to exceed max_processed
3289 - MINOR: task: add a new pointer to current tasklet queue
3290 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
3291 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
3292 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
3293 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
3294 - MINOR: ssl: free bind_conf_node in crtlist_free()
3295 - MINOR: ssl: free the crtlist and the ckch during the deinit()
3296 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
3297 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
3298 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
3299 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
3300 - MINOR: tasks: make current_queue an index instead of a pointer
3301 - MINOR: tasks: add a mask of the queues with active tasklets
3302 - MINOR: tasks: pass the queue index to run_task_from_list()
3303 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
3304 - MEDIUM: tasks: add a tune.sched.low-latency option
3305 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
3306 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
3307 - MINOR: tools: make parse_line() always terminate the args list
3308 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
3309 - MINOR: cfgparse: sanitize the output a little bit
3310 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
3311 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
3312 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
3313 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
3314 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
3315 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
3316 - MINOR: spoe: Don't systematically create new applets if processing rate is low
3317 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
3318 - BUILD: fix ssl_sample.c when building against BoringSSL
3319 - CI: travis-ci: switch BoringSSL builds to ninja
3320 - CI: extend spellchecker whitelist
3321 - DOC: assorted typo fixes in the documentation
3322 - CLEANUP: assorted typo fixes in the code and comments
3323 - MINOR: http: Add support for http 413 status
3324 - REGTEST: ssl: tests the ssl_f_* sample fetches
3325 - REGTEST: ssl: add some ssl_c_* sample fetches test
3326 - DOC: ssl: update the documentation of "commit ssl cert"
3327 - BUG/MINOR: cfgparse: correctly deal with empty lines
3328 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
3329
Willy Tarreaudc0936c2020-06-19 21:43:26 +020033302020/06/19 : 2.2-dev10
3331 - BUILD: include: add sys/types before netinet/tcp.h
3332 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
3333 - BUILD: Remove nowarn for warnings that do not trigger
3334 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
3335 - BUILD: Re-enable -Wimplicit-fallthrough
3336 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
3337 - BUILD: thread: add parenthesis around values of locking macros
3338 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
3339 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
3340 - CI: travis-ci: use "-O1" for clang builds
3341 - MINOR: haproxy: Add void deinit_and_exit(int)
3342 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
3343 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
3344 - BUILD: compression: make gcc 10 happy with free_zlib()
3345 - BUILD: atomic: add string.h for memcpy() on ARM64
3346 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
3347 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
3348 - BUILD: haproxy: mark deinit_and_exit() as noreturn
3349 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
3350 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
3351 - MINOR: tools: add a new configurable line parse, parse_line()
3352 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
3353 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
3354 - MINOR: http: do not close connections anymore after internal responses
3355 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
3356 - BUG/MINOR: spoe: add missing key length check before checking key names
3357 - MINOR: version: put the compiler version output into version.c not haproxy.c
3358 - MINOR: compiler: always define __has_feature()
3359 - MINOR: version: report the presence of the compiler's address sanitizer
3360 - BUILD: Fix build by including haproxy/global.h
3361 - BUG/MAJOR: connection: always disable ready events once reported
3362 - CLEANUP: activity: remove unused counter fd_lock
3363 - DOC: fd: make it clear that some fields ordering must absolutely be respected
3364 - MINOR: activity: report the number of times poll() reports I/O
3365 - MINOR: activity: rename confusing poll_* fields in the output
3366 - MINOR: fd: Fix a typo in a coment.
3367 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
3368 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
3369 - MINOR: activity: group the per-loop counters at the top
3370 - MINOR: activity: rename the "stream" field to "stream_calls"
3371 - MEDIUM: fd: refine the fd_takeover() migration lock
3372 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
3373 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
3374 - MINOR: peers: do not use localpeer as an array anymore
3375 - MEDIUM: peers: add the "localpeer" global option
3376 - MEDIUM: fd: add experimental support for edge-triggered polling
3377 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
3378 - MINOR: haproxy: process signals before runnable tasks
3379 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
3380 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
3381 - BUG/MINOR: cli: allow space escaping on the CLI
3382 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
3383 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
3384 - REGTEST: http-rules: test spaces in ACLs
3385 - REGTEST: http-rules: test spaces in ACLs with master CLI
3386 - BUG/MAJOR: init: properly compute the default global.maxpipes value
3387 - MEDIUM: map: make the "clear map" operation yield
3388 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
3389 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
3390 - BUG/MINOR: systemd: Wait for network to be online
3391 - DOC: configuration: Unindent non-code sentences in the protobuf example
3392 - DOC: configuration: http-check send was missing from matrix
3393
Willy Tarreau1385c882020-06-11 10:22:10 +020033942020/06/11 : 2.2-dev9
3395 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
3396 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
3397 - MINOR: checks: Remove dead code from process_chk_conn()
3398 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
3399 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
3400 - MINOR: lua: Use vars_unset_by_name_ifexist()
3401 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
3402 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
3403 - MINOR: lua: Make `set_var()` and `unset_var()` return success
3404 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
3405 - MEDIUM: ring: new section ring to declare custom ring buffers.
3406 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
3407 - REGTESTS: Require the version 2.2 to execute lua/set_var
3408 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
3409 - MINOR: checks: Remove useless tests on the connection and conn-stream
3410 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
3411 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
3412 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
3413 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
3414 - MINOR: pools: compute an estimate of each pool's average needed objects
3415 - MEDIUM: pools: directly free objects when pools are too much crowded
3416 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
3417 - MINOR: http-ana: Make the function http_reply_to_htx() public
3418 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
3419 - MINOR: http-rules: Use an action function to eval http-request auth rules
3420 - CLEANUP: http: Remove unused HTTP message templates
3421 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
3422 - MINOR: checks: I/O callback function only rely on the data layer wake callback
3423 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
3424 - BUG/MEDIUM: logs: fix trailing zeros on log message.
3425 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
3426 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
3427 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
3428 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
3429 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
3430 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
3431 - MINOR: ring: re-work ring attach generic API.
3432 - BUG/MINOR: error on unknown statement in ring section.
3433 - MEDIUM: ring: add server statement to forward messages from a ring
3434 - MEDIUM: ring: add new srv statement to support octet counting forward
3435 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
3436 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
3437 - BUILD: sink: address build warning on 32-bit architectures
3438 - BUG/MINOR: peers: fix internal/network key type mapping.
3439 - CLEANUP: regex: remove outdated support for regex actions
3440 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
3441 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
3442 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
3443 - DOC: add a line about comments in crt-list
3444 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
3445 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
3446 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
3447 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
3448 - BUG/MINOR: init: -x can have a parameter starting with a dash
3449 - BUG/MINOR: init: -S can have a parameter starting with a dash
3450 - BUG/MEDIUM: mworker: fix the reload with an -- option
3451 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
3452 - BUG/MINOR: mworker: fix a memleak when execvp() failed
3453 - MINOR: sample: Add secure_memcmp converter
3454 - REORG: ebtree: move the C files from ebtree/ to src/
3455 - REORG: ebtree: move the include files from ebtree to include/import/
3456 - REORG: ebtree: clean up remains of the ebtree/ directory
3457 - REORG: include: create new file haproxy/api-t.h
3458 - REORG: include: create new file haproxy/api.h
3459 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
3460 - CLEANUP: include: remove common/config.h
3461 - CLEANUP: include: remove unused template.h
3462 - REORG: include: move MIN/MAX from tools.h to compat.h
3463 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
3464 - CLEANUP: include: remove unused common/tools.h
3465 - REORG: include: move the base files from common/ to haproxy/
3466 - REORG: include: move version.h to haproxy/
3467 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
3468 - REORG: include: move openssl-compat.h from common/ to haproxy/
3469 - REORG: include: move ist.h from common/ to import/
3470 - REORG: include: move the BUG_ON() code to haproxy/bug.h
3471 - REORG: include: move debug.h from common/ to haproxy/
3472 - CLEANUP: debug: drop unused function p_malloc()
3473 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
3474 - REORG: include: move istbuf.h to haproxy/
3475 - REORG: include: split mini-clist into haproxy/list and list-t.h
3476 - REORG: threads: extract atomic ops from hathreads.h
3477 - CLEANUP: threads: remove a few needless includes of hathreads.h
3478 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
3479 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
3480 - REORG: include: move time.h from common/ to haproxy/
3481 - REORG: include: move integer manipulation functions from standard.h to intops.h
3482 - CLEANUP: include: remove excessive includes of common/standard.h
3483 - REORG: include: move freq_ctr to haproxy/
3484 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
3485 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
3486 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
3487 - MINOR: memory: don't let __pool_get_first() pick from the cache
3488 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
3489 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
3490 - MEDIUM: memory: make local pools independent on lockless pools
3491 - REORG: include: move common/memory.h to haproxy/pool.h
3492 - REORG: include: move common/chunk.h to haproxy/chunk.h
3493 - REORG: include: move activity to haproxy/
3494 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
3495 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
3496 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
3497 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
3498 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
3499 - REORG: include: move common/ticks.h to haproxy/ticks.h
3500 - REORG: include: split common/http.h into haproxy/http{,-t}.h
3501 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
3502 - REORG: include: move common/h1.h to haproxy/h1.h
3503 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
3504 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
3505 - REORG: include: move common/h2.h to haproxy/h2.h
3506 - REORG: include: move common/fcgi.h to haproxy/
3507 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
3508 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
3509 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
3510 - REORG: include: move shctx to haproxy/shctx{,-t}.h
3511 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
3512 - REORG: include: move fd.h to haproxy/fd{,-t}.h
3513 - REORG: include: move ring to haproxy/ring{,-t}.h
3514 - REORG: include: move sink.h to haproxy/sink{,-t}.h
3515 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
3516 - CLEANUP: include: remove empty raw_sock.h
3517 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
3518 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
3519 - REORG: include: move compression.h to haproxy/compression{,-t}.h
3520 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
3521 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
3522 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
3523 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
3524 - REORG: include: move action.h to haproxy/action{,-t}.h
3525 - REORG: include: move arg.h to haproxy/arg{,-t}.h
3526 - REORG: include: move auth.h to haproxy/auth{,-t}.h
3527 - REORG: include: move dns.h to haproxy/dns{,-t}.h
3528 - REORG: include: move flt_http_comp.h to haproxy/
3529 - REORG: include: move counters.h to haproxy/counters-t.h
3530 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
3531 - REORG: include: move capture.h to haproxy/capture{,-t}.h
3532 - REORG: include: move frontend.h to haproxy/frontend.h
3533 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
3534 - REORG: include: move http_rules.h to haproxy/http_rules.h
3535 - CLEANUP: include: remove unused mux_pt.h
3536 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
3537 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
3538 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
3539 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
3540 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
3541 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
3542 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
3543 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
3544 - REORG: include: move listener.h to haproxy/listener{,-t}.h
3545 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
3546 - REORG: include: move map to haproxy/map{,-t}.h
3547 - REORG: include: move payload.h to haproxy/payload.h
3548 - REORG: include: move sample.h to haproxy/sample{,-t}.h
3549 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
3550 - REORG: include: move vars.h to haproxy/vars{,-t}.h
3551 - REORG: include: split global.h into haproxy/global{,-t}.h
3552 - REORG: include: move task.h to haproxy/task{,-t}.h
3553 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
3554 - REORG: include: move signal.h to haproxy/signal{,-t}.h
3555 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
3556 - REORG: include: move connection.h to haproxy/connection{,-t}.h
3557 - REORG: include: move checks.h to haproxy/check{,-t}.h
3558 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
3559 - REORG: include: move peers.h to haproxy/peers{,-t}.h
3560 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
3561 - REORG: include: move session.h to haproxy/session{,-t}.h
3562 - REORG: include: move trace.h to haproxy/trace{,-t}.h
3563 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
3564 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
3565 - REORG: move applet.h to haproxy/applet{,-t}.h
3566 - REORG: include: move stats.h to haproxy/stats{,-t}.h
3567 - REORG: include: move cli.h to haproxy/cli{,-t}.h
3568 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
3569 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
3570 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
3571 - REORG: include: move channel.h to haproxy/channel{,-t}.h
3572 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
3573 - REORG: include: move filters.h to haproxy/filters{,-t}.h
3574 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
3575 - REORG: include: move log.h to haproxy/log{,-t}.h
3576 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
3577 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
3578 - REORG: include: move backend.h to haproxy/backend{,-t}.h
3579 - REORG: include: move queue.h to haproxy/queue{,-t}.h
3580 - REORG: include: move server.h to haproxy/server{,-t}.h
3581 - REORG: include: move stream.h to haproxy/stream{,-t}.h
3582 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
3583 - CLEANUP: hpack: export debug functions and move inlines to .h
3584 - REORG: check: move the e-mail alerting code to mailers.c
3585 - REORG: check: move tcpchecks away from check.c
3586 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
3587 - REORG: check: extract the external checks from check.{c,h}
3588 - CLEANUP: include: don't include stddef.h directly
3589 - CLEANUP: include: don't include proxy-t.h in global-t.h
3590 - CLEANUP: include: move sample_data out of sample-t.h
3591 - REORG: include: move the error reporting functions to from log.h to errors.h
3592 - BUILD: reorder objects in the Makefile for faster builds
3593 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
3594 - CLEANUP: include: make atomic.h part of the base API
3595 - REORG: include: move MAX_THREADS to defaults.h
3596 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
3597 - CLEANUP: include: tree-wide alphabetical sort of include files
3598 - REORG: include: make list-t.h part of the base API
3599 - REORG: dgram: rename proto_udp to dgram
3600
Willy Tarreau73b943b2020-05-22 16:19:04 +020036012020/05/22 : 2.2-dev8
3602 - MINOR: checks: Improve report of unexpected errors for expect rules
3603 - MEDIUM: checks: Add matching on log-format string for expect rules
3604 - DOC: Fix req.body and co documentation to be accurate
3605 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
3606 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
3607 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
3608 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
3609 - MINOR: checks/sample: Remove unnecessary tests on the sample session
3610 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
3611 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
3612 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
3613 - MINOR: checks: Support log-format string to set the body for HTTP send rules
3614 - DOC: Be more explicit about configurable check ok/error/timeout status
3615 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
3616 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
3617 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
3618 - REGTESTS: make the http-check-send test require version 2.2
3619 - BUG/MINOR: http-ana: fix NTLM response parsing again
3620 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
3621 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
3622 - MINOR: cfgparse: Improve error message for invalid \x sequences
3623 - CI: travis-ci: enable arm64 builds again
3624 - MEDIUM: ssl: increase default-dh-param to 2048
3625 - CI: travis-ci: skip pcre2 on arm64 build
3626 - CI: travis-ci: extend the build time for SSL to 60 minutes
3627 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
3628 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
3629 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
3630 - CLEANUP: remove THREAD_LOCAL from config.h
3631 - CI: travis-ci: upgrade LibreSSL versions
3632 - DOC: assorted typo fixes in the documentation
3633 - CI: extend spellchecker whitelist
3634 - CLEANUP: assorted typo fixes in the code and comments
3635 - MAJOR: contrib: porting spoa_server to support python3
3636 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
3637 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
3638 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
3639 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
3640 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
3641 - MINOR: sample: Add digest and hmac converters
3642 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
3643 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
3644 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
3645 - BUG/MINOR: pollers: remove uneeded free in global init
3646 - CLEANUP: select: enhance readability in init
3647 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
3648 - MINOR: soft-stop: let the first stopper only signal other threads
3649 - BUILD: select: only declare existing local labels to appease clang
3650 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
3651 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
3652 - DOC: retry-on can only be used with mode http
3653 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
3654 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
3655 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
3656 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
3657 - REORG: ssl: move macros and structure definitions to ssl_sock.h
3658 - CLEANUP: ssl: remove the shsess_* macros
3659 - REORG: move the crt-list structures in their own .h
3660 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
3661 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
3662 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
3663 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
3664 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
3665 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
3666 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
3667 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
3668 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
3669 - MINOR: ssl: remove static keyword in some SSL utility functions
3670 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
3671 - REORG: ssl: move sample fetches to src/ssl_sample.c
3672 - REORG: ssl: move utility functions to src/ssl_utils.c
3673 - DOC: ssl: update MAINTAINERS file
3674 - CI: travis-ci: switch arm64 builds to use openssl from distro
3675 - MINOR: stats: Prepare for more accurate moving averages
3676 - MINOR: stats: Expose native cum_req metric for a server
3677 - MEDIUM: stats: Enable more accurate moving average calculation for stats
3678 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
3679 - BUILD: ssl: include errno.h in ssl_crtlist.c
3680 - CLEANUP: acl: remove unused assignment
3681 - DOC/MINOR: halog: Add long help info for ic flag
3682 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
3683 - DOC: SPOE is no longer experimental
3684 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
3685 - MINOR: config: Don't dump keywords if argument is NULL
3686 - MEDIUM: checks: Make post-41 the default mode for mysql checks
3687 - BUG/MINOR: logs: prevent double line returns in some events.
3688 - MEDIUM: sink: build header in sink_write for log formats
3689 - MEDIUM: logs: buffer targets now rely on new sink_write
3690 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
3691 - MEDIUM: hpack: use a pool for the hpack table
3692 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
3693 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
3694 - MINOR: applet: adopt the wait list entry from the CLI
3695 - MINOR: ring: make the applet code not depend on the CLI
3696 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
3697 - CI: travis-ci: fix libslz download URL
3698 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
3699 - CLEANUP: http_ana: Remove unused TXN flags
3700 - BUG/MINOR: http-rules: Mark http return rules as final
3701 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
3702 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
3703 - MINOR: http-rules: Use http_reply structure for http return rules
3704 - MINOR: http-htx: Use a dedicated function to release http_reply objects
3705 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
3706 - MINOR: http-htx: Use a dedicated function to check http reply validity
3707 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
3708 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
3709 - MINOR: http-htx: Store default error messages in a global http reply array
3710 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
3711 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
3712 - MINOR: proxy: Add references on http replies for proxy error messages
3713 - MINOR: http-htx: Use http reply from the http-errors section
3714 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
3715 - MEDIUM: http-ana: Use http replies for HTTP error messages
3716 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
3717 - MINOR: htx: Add a function to copy a buffer in an HTX message
3718 - CLEANUP: channel: Remove channel_htx_copy_msg() function
3719 - MINOR: http-ana: Add a function to write an http reply in an HTX message
3720 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
3721 - DOC: Fix "errorfile" description in the configuration manual
3722 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
3723 - BUILD: hpack: make sure the hpack table can still be built standalone
3724 - CONTRIB: hpack: make use of the simplified standalone HPACK API
3725 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
3726
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020037272020/05/05 : 2.2-dev7
3728 - MINOR: version: Show uname output in display_version()
3729 - CI: run weekly OpenSSL "no-deprecated" builds
3730 - CLEANUP: log: fix comment of parse_logformat_string()
3731 - DOC: Improve documentation on http-request set-src
3732 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
3733 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
3734 - MINOR: ssl: add ssl-skip-self-issued-ca global option
3735 - BUG/MINOR: ssl: default settings for ssl server options are not used
3736 - MINOR: config: add a global directive to set default SSL curves
3737 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
3738 - DOC: internals: update the SSL architecture schema
3739 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
3740 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
3741 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
3742 - DOC: option logasap does not depend on mode
3743 - MEDIUM: memory: make pool_gc() run under thread isolation
3744 - MINOR: contrib: make the peers wireshark dissector a plugin
3745 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
3746 - BUG/MINOR: check: Update server address and port to execute an external check
3747 - MINOR: mini-clist: Add functions to iterate backward on a list
3748 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
3749 - MINOR: server: respect warning and alert semantic
3750 - BUG/MINOR: checks: Respect the no-check-ssl option
3751 - BUG/MEDIUM: server/checks: Init server check during config validity check
3752 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
3753 - BUG/MINOR: checks: chained expect will not properly wait for enough data
3754 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
3755 - MINOR: checks: Use an enum to describe the tcp-check rule type
3756 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
3757 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
3758 - MINOR: checks: simplify tcp expect config parser
3759 - MINOR: checks: add min-recv tcp-check expect option
3760 - MINOR: checks: add linger option to tcp connect
3761 - MINOR: checks: define a tcp expect type
3762 - MEDIUM: checks: rewrite tcp-check expect block
3763 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
3764 - MINOR: checks: add rbinary expect match type
3765 - MINOR: checks: Simplify functions to get step id and comment
3766 - MEDIUM: checks: capture groups in expect regexes
3767 - MINOR: checks: Don't use a static tcp rule list head
3768 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
3769 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
3770 - MINOR: checks: Set the tcp-check rule index during parsing
3771 - MINOR: checks: define tcp-check send type
3772 - MINOR: checks: define a tcp-check connect type
3773 - MEDIUM: checks: Add implicit tcp-check connect rule
3774 - MAJOR: checks: Refactor and simplify the tcp-check loop
3775 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
3776 - MINOR: checks/vars: Add a check scope for variables
3777 - MEDIUM: checks: Parse custom action rules in tcp-checks
3778 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
3779 - MINOR: checks: Add the sni option for tcp-check connect rules
3780 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
3781 - MINOR: checks: Add the alpn option for tcp-check connect rules
3782 - MINOR: ssl: Export a generic function to parse an alpn string
3783 - MINOR: checks: Add the default option for tcp-check connect rules
3784 - MINOR: checks: Add the addr option for tcp-check connect rule
3785 - MEDIUM: checks: Support expression to set the port
3786 - MEDIUM: checks: Support log-format strings for tcp-check send rules
3787 - MINOR: log: Don't depends on a stream to process samples in log-format string
3788 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
3789 - MEDIUM: checks: Add a shared list of tcp-check rules
3790 - MINOR: sample: add htonl converter
3791 - MINOR: sample: add cut_crlf converter
3792 - MINOR: sample: add ltrim converter
3793 - MINOR: sample: add rtrim converter
3794 - MINOR: checks: Use a name for the healthcheck status enum
3795 - MINOR: checks: Add option to tcp-check expect rules to customize error status
3796 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
3797 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
3798 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
3799 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
3800 - MINOR: checks: Relax the default option for tcp-check connect rules
3801 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
3802 - MINOR: checks: Export the tcpcheck_eval_ret enum
3803 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
3804 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
3805 - MEDIUM: checks: Implement redis check using tcp-check rules
3806 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
3807 - MEDIUM: checks: Implement smtp check using tcp-check rules
3808 - MEDIUM: checks: Implement postgres check using tcp-check rules
3809 - MEDIUM: checks: Implement MySQL check using tcp-check rules
3810 - MEDIUM: checks: Implement LDAP check using tcp-check rules
3811 - MEDIUM: checks: Implement SPOP check using tcp-check rules
3812 - MINOR: server/checks: Move parsing of agent keywords in checks.c
3813 - MINOR: server/checks: Move parsing of server check keywords in checks.c
3814 - MEDIUM: checks: Implement agent check using tcp-check rules
3815 - REGTEST: Adapt regtests about checks to recent changes
3816 - MINOR: Produce tcp-check info message for pure tcp-check rules only
3817 - MINOR: checks: Add an option to set success status of tcp-check expect rules
3818 - MINOR: checks: Improve log message of tcp-checks on success
3819 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
3820 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
3821 - MINOR: proxy/checks: Register a keyword to parse http-check rules
3822 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
3823 - MINOR: proxy/checks: Register a keyword to parse external-check rules
3824 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
3825 - MINOR: checks: Use an indirect string to represent the expect matching string
3826 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
3827 - MINOR: standard: Add my_memspn and my_memcspn
3828 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
3829 - MAJOR: checks: Implement HTTP check using tcp-check rules
3830 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
3831 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
3832 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
3833 - MINOR: checks/obj_type: Add a new object type for checks
3834 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
3835 - MINOR: checks: Use the check as origin when a session is created
3836 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
3837 - MINOR: connection: Add a function to install a mux for a health-check
3838 - MAJOR: checks: Use the best mux depending on the protocol for health checks
3839 - MEDIUM: checks: Implement default TCP check using tcp-check rules
3840 - MINOR: checks: Remove unused code about pure TCP checks
3841 - CLEANUP: checks: Reorg checks.c file to be more readable
3842 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
3843 - MINOR: ist: Add a function to retrieve the ist pointer
3844 - MINOR: checks: Use ist API as far as possible
3845 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
3846 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
3847 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
3848 - REGTEST: Add scripts to test based tcp-check health-checks
3849 - Revert "MEDIUM: checks: capture groups in expect regexes"
3850 - DOC: Add documentation about comments for tcp-check and http-check directives
3851 - DOC: Fix the tcp-check and http-check directives layout
3852 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
3853 - MINOR: checks: Support mux protocol definition for tcp and http health checks
3854 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
3855 - MINOR: checks: Support list of status codes on http-check expect rules
3856 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
3857 - REGTEST: Add a script to validate agent checks
3858 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
3859 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
3860 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
3861 - BUG/MINOR: checks/server: use_ssl member must be signed
3862 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
3863 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
3864 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
3865 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
3866 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
3867 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
3868 - BUG/MINOR: checks: Remove wrong variable redeclaration
3869 - BUG/MINOR: checks: Properly handle truncated mysql server messages
3870 - CLEANUP: checks: Remove unused code when ldap server message is parsed
3871 - MINOR: checks: Make the use of the check's server more explicit on connect
3872 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
3873 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
3874 - BUG/MINOR: checks: Don't lose warning on proxy capability
3875 - MINOR: log: Add "Tu" timer
3876 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
3877 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
3878 - REGTEST: ssl: test the client certificate authentication
3879 - DOC: give a more accurate description of what check does
3880 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
3881 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
3882 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
3883 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
3884 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
3885 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
3886 - MINOR: http-htx: Export functions to update message authority and host
3887 - MINOR: checks: Don't support multiple host header for http-check send rule
3888 - MINOR: checks: Skip some headers for http-check send rules
3889 - MINOR: checks: Keep the Host header and the request uri synchronized
3890 - CLEANUP: checks: Fix checks includes
3891 - DOC: Fix send rules in the http-check connect example
3892 - DOC: Add more info about request formatting in http-check send description
3893 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
3894 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
3895 - REGTEST: ssl: improve the "set ssl cert" test
3896 - CLEANUP: ssl: silence a build warning when threads are disabled
3897 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
3898 - MINOR: threads: export the POSIX thread ID in panic dumps
3899 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
3900 - BUG/MEDIUM: shctx: really check the lock's value while waiting
3901 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
3902 - MINOR: stream: report the list of active filters on stream crashes
3903 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
3904 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
3905 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
3906 - BUG/MEDIUM: connections: force connections cleanup on server changes
3907 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
3908 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
3909 - CLEANUP: connections: align function declaration
3910 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
3911 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
3912 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
3913 - MINOR: checks: Add support of payload-based sample fetches
3914 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
3915 - MINOR: checks: Add support of server side ssl sample fetches
3916 - MINOR: checks: Add support of HTTP response sample fetches
3917 - MINOR: http-htx: Support different methods to look for header names
3918 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
3919 - BUG/MINOR: checks: Support multiple HTTP expect rules
3920 - REGTEST: checks: Fix sync condition for agent-check
3921 - MEDIUM: checks: Support matching on headers for http-check expect rules
3922 - MINOR: lua: allow changing port with set_addr
3923 - BUG/MINOR: da: Fix HTX message prefetch
3924 - BUG/MINOR: wurfl: Fix HTX message prefetch
3925 - BUG/MINOR: 51d: Fix HTX message prefetch
3926 - MINOR: ist: add istadv() function
3927 - MINOR: ist: add istissame() function
3928 - MINOR: istbuf: add ist2buf() function
3929 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
3930 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
3931 - DOC: update intro.txt for 2.2
3932 - DOC: intro: add a contacts section
3933
Willy Tarreaud0089302020-04-17 14:19:38 +020039342020/04/17 : 2.2-dev6
3935 - BUG/MINOR: ssl: memory leak when find_chain is NULL
3936 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
3937 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
3938 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
3939 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
3940 - BUG/MINOR: peers: Use after free of "peers" section.
3941 - CI: github actions: add weekly h2spec test
3942 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
3943 - MINOR: build: Fix build in mux_h1
3944 - CLEANUP: remove obsolete comments
3945 - BUG/MEDIUM: dns: improper parsing of aditional records
3946 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
3947 - MINOR: listener: add so_name sample fetch
3948 - MEDIUM: stream: support use-server rules with dynamic names
3949 - MINOR: servers: Add a counter for the number of currently used connections.
3950 - MEDIUM: connections: Revamp the way idle connections are killed
3951 - MINOR: cli: add a general purpose pointer in the CLI struct
3952 - MINOR: ssl: add a list of bind_conf in struct crtlist
3953 - REORG: ssl: move SETCERT enum to ssl_sock.h
3954 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
3955 - REORG: ssl: move some functions above crtlist_load_cert_dir()
3956 - MINOR: ssl: use crtlist_free() upon error in directory loading
3957 - MINOR: ssl: add a list of crtlist_entry in ckch_store
3958 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
3959 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
3960 - MEDIUM: ssl/cli: 'add ssl crt-list' command
3961 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
3962 - BUG/MINOR: ssl: entry->ckch_inst not initialized
3963 - REGTEST: ssl/cli: change test type to devel
3964 - REGTEST: make the PROXY TLV validation depend on version 2.2
3965 - CLEANUP: assorted typo fixes in the code and comments
3966 - BUG/MINOR: stats: Fix color of draining servers on stats page
3967 - DOC: internals: Fix spelling errors in filters.txt
3968 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
3969 - REGTEST: make the unique-id test depend on version 2.0
3970 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
3971 - MINOR: ssl: split the line parsing of the crt-list
3972 - MINOR: ssl/cli: support filters and options in add ssl crt-list
3973 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
3974 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
3975 - REGTEST: ssl: pollute the crt-list file
3976 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
3977 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
3978 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
3979 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
3980 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
3981 - CLEANUP: assorted typo fixes in the code and comments
3982 - DOC: management: add the new crt-list CLI commands
3983 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
3984 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
3985 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
3986 - CI: use better SSL library definition
3987 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
3988 - CI: travis-ci: upgrade openssl to 1.1.1f
3989 - MINOR: ssl: improve the errors when a crt can't be open
3990 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
3991 - CI: adopt openssl download script to download all versions
3992 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
3993 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
3994 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
3995 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
3996 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
3997 - CLEANUP: ssl: use the refcount for the SSL_CTX'
3998 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
3999 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
4000 - CLEANUP: ssl: remove a commentary in struct ckch_inst
4001 - MINOR: ssl: initialize all list in ckch_inst_new()
4002 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
4003 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
4004 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
4005 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
4006 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
4007 - REORG: ssl: move some free/new functions
4008 - MINOR: ssl: crtlist_entry_{new, free}
4009 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
4010 - MINOR: ssl: don't alloc ssl_conf if no option found
4011 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
4012 - BUG/MINOR: peers: Incomplete peers sections should be validated.
4013 - MINOR: init: report in "haproxy -c" whether there were warnings or not
4014 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
4015 - MINOR: init: report the compiler version in haproxy -vv
4016 - CLEANUP: assorted typo fixes in the code and comments
4017 - MINOR: init: report the haproxy version and executable path once on errors
4018 - DOC: Make how "option redispatch" works more explicit
4019 - BUILD: Makefile: add linux-musl to TARGET
4020 - CLEANUP: assorted typo fixes in the code and comments
4021 - CLEANUP: http: Fixed small typo in parse_http_return
4022 - DOC: hashing: update link to hashing functions
4023
Willy Tarreau3328f182020-03-23 09:43:45 +010040242020/03/23 : 2.2-dev5
4025 - CLEANUP: ssl: is_default is a bit in ckch_inst
4026 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
4027 - DOC: ssl: clarify security implications of TLS tickets
4028 - CLEANUP: remove support for Linux i686 vsyscalls
4029 - CLEANUP: drop support for USE_MY_ACCEPT4
4030 - CLEANUP: remove support for USE_MY_EPOLL
4031 - CLEANUP: remove support for USE_MY_SPLICE
4032 - CLEANUP: remove the now unused common/syscall.h
4033 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
4034 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
4035 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
4036 - CLEANUP: ssl: separate the directory loading in a new function
4037 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
4038 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
4039 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
4040 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
4041 - BUG/MAJOR: list: fix invalid element address calculation
4042 - BUILD: stream-int: fix a few includes dependencies
4043 - MINOR: mt_lists: Appease gcc.
4044 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
4045 - MINOR: servers: Kill priv_conns.
4046 - MINOR: lists: fix indentation.
4047 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
4048 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
4049 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
4050 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
4051 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
4052 - BUG/MINOR: haproxy/threads: try to make all threads leave together
4053 - Revert "BUILD: travis-ci: enable s390x builds"
4054 - BUILD: travis-ci: enable regular s390x builds
4055 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
4056 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
4057 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
4058 - CLEANUP: connection: Add blank line after declarations in PP handling
4059 - CLEANUP: assorted typo fixes in the code and comments
4060 - CI: add spellcheck github action
4061 - DOC: correct typo in alert message about rspirep
4062 - CI: travis: switch linux builds to clang-9
4063 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
4064 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
4065 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
4066 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
4067 - CLEANUP: connection: Stop directly setting an ist's .ptr
4068 - CI: travis: revert to clang-7 for BoringSSL tests
4069 - BUILD: on ARM, must be linked to libatomic.
4070 - BUILD: makefile: fix regex syntax in ARM platform detection
4071 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
4072 - REORG: ssl: move ssl_sock_load_cert()
4073 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
4074 - MEDIUM: ssl: allow crt-list caching
4075 - MINOR: ssl: directories are loaded like crt-list
4076 - BUG/MINOR: ssl: can't open directories anymore
4077 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
4078 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
4079 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
4080 - MINOR: ssl/cli: show/dump ssl crt-list
4081 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
4082 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
4083 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
4084 - MINOR: tasks: Provide the tasklet to the callback.
4085 - BUG/MINOR: ssl: memleak of struct crtlist_entry
4086 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
4087 - BUILD: makefile: fix expression again to detect ARM platform
4088 - CI: travis: re-enable ASAN on clang
4089 - CI: travis: proper group output redirection together with travis_wait
4090 - DOC: assorted typo fixes in the documentation
4091 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
4092 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
4093 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
4094 - MINOR: ssl/cli: 'new ssl cert' command
4095 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
4096 - MEDIUM: sessions: Don't be responsible for connections anymore.
4097 - MEDIUM: servers: Split the connections into idle, safe, and available.
4098 - MINOR: fd: Implement fd_takeover().
4099 - MINOR: connections: Add a new mux method, "takeover".
4100 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
4101 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
4102 - MEDIUM: connections: Attempt to get idle connections from other threads.
4103 - MEDIUM: mux_h1: Implement the takeover() method.
4104 - MEDIUM: mux_h2: Implement the takeover() method.
4105 - MEDIUM: mux_fcgi: Implement the takeover() method.
4106 - MEDIUM: connections: Kill connections even if we are reusing one.
4107 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
4108 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
4109 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
4110 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
4111 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
4112 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
4113 - CI: run travis-ci builds on push only, skip pull requests
4114 - CI: temporarily disable unstable travis arm64 builds
4115 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
4116 - BUG/MINOR: connections: Make sure we free the connection on failure.
4117 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
4118 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
4119 - BUG/MINOR: connections: Set idle_time before adding to idle list.
4120 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
4121 - REGTEST: increase timeouts on the seamless-reload test
4122 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
4123 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
4124
Willy Tarreau5a753bd2020-03-09 14:57:20 +010041252020/03/09 : 2.2-dev4
4126 - MEDIUM: buffer: remove the buffer_wq lock
4127 - MINOR: ssl: move find certificate chain code to its own function
4128 - MINOR: ssl: resolve issuers chain later
4129 - MINOR: ssl: resolve ocsp_issuer later
4130 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
4131 - BUG/MINOR: h2: reject again empty :path pseudo-headers
4132 - MINOR: wdt: always clear sigev_value to make valgrind happy
4133 - MINOR: epoll: always initialize all of epoll_event to please valgrind
4134 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
4135 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
4136 - BUILD: cirrus-ci: suppress OS version check when installing packages
4137 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
4138 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
4139 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
4140 - MINOR: fd: merge the read and write error bits into RW error
4141 - BUG/MINOR: dns: ignore trailing dot
4142 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
4143 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
4144 - MINOR: mux-h1: Remove useless case-insensitive comparisons
4145 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
4146 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
4147 - MEDIUM: connection: don't stop receiving events in the FD handler
4148 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
4149 - BUG/MINOR: arg: don't reject missing optional args
4150 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
4151 - MINOR: debug: report the task handler's pointer relative to main
4152 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
4153 - MINOR: haproxy: export main to ease access from debugger
4154 - MINOR: haproxy: export run_poll_loop
4155 - MINOR: task: export run_tasks_from_list
4156 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
4157 - MINOR: tools: add new function dump_addr_and_bytes()
4158 - MINOR: tools: add resolve_sym_name() to resolve function pointers
4159 - MINOR: debug: use resolve_sym_name() to dump task handlers
4160 - MINOR: cli: make "show fd" rely on resolve_sym_name()
4161 - MEDIUM: debug: add support for dumping backtraces of stuck threads
4162 - MINOR: debug: call backtrace() once upon startup
4163 - MINOR: ssl: add "ca-verify-file" directive
4164 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
4165 - BUILD: Makefile: include librt before libpthread
4166 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
4167 - MINOR: wdt: do not depend on USE_THREAD
4168 - MINOR: debug: report the number of entries in the backtrace
4169 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
4170 - MINOR: debug: use our own backtrace function on clang+x86_64
4171 - MINOR: debug: dump the whole trace if we can't spot the starting point
4172 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
4173 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
4174 - CLEANUP: contrib/spoa_example: Fix several typos
4175 - BUILD: makefile: do not modify the build options during make reg-tests
4176 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
4177 - MEDIUM: stream-int: make sure to try to immediately validate the connection
4178 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
4179 - MEDIUM: connection: only call ->wake() for connect() without I/O
4180 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
4181 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
4182 - REGTEST: Add unique-id reg-test
4183 - MINOR: stream: Add stream_generate_unique_id function
4184 - MINOR: stream: Use stream_generate_unique_id
4185 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
4186 - MINOR: ssl/cli: support crt-list filters
4187 - MINOR: ssl: reach a ckch_store from a sni_ctx
4188 - DOC: fix incorrect indentation of http_auth_*
4189 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
4190 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
4191 - MINOR: ist: Add `IST_NULL` macro
4192 - MINOR: ist: Add `int isttest(const struct ist)`
4193 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
4194 - CLEANUP: Use `isttest()` and `istfree()`
4195 - MINOR: ist: Add `struct ist istdup(const struct ist)`
4196 - MINOR: proxy: Make `header_unique_id` a `struct ist`
4197 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
4198 - OPTIM: startup: fast unique_id allocation for acl.
4199 - DOC: configuration.txt: fix various typos
4200 - DOC: assorted typo fixes in the documentation and Makefile
4201 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
4202 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
4203 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
4204 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
4205 - MINOR: htx: Add a function to return a block at a specific offset
4206 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
4207 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
4208 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
4209 - BUG/MINOR: filters: Forward everything if no data filters are called
4210 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
4211 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
4212 - BUG/MINOR: http-ana: Reset request analysers on a response side error
4213 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
4214 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
4215 - MINOR: lua: Add function to know if a channel is a response one
4216 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
4217 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
4218 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
4219 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
4220 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
4221 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
4222 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
4223 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
4224 - BUG/MINOR: http-rules: Fix a typo in the reject action function
4225 - MINOR: cache/filters: Initialize the cache filter when stream is created
4226 - MINOR: compression/filters: Initialize the comp filter when stream is created
4227 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
4228 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
4229 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
4230 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
4231 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
4232 - BUILD: ssl: include mini-clist.h
4233 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
4234 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
4235 - BUILD: listener: types/listener.h must not include standard.h
4236 - BUG/MEDIUM: random: initialize the random pool a bit better
4237 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
4238 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
4239 - BUILD: cirrus-ci: get rid of unstable freebsd images
4240 - MINOR: tools: add 64-bit rotate operators
4241 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
4242 - MINOR: backend: use a single call to ha_random32() for the random LB algo
4243 - BUG/MINOR: checks/threads: use ha_random() and not rand()
4244 - MINOR: sample: make all bits random on the rand() sample fetch
4245 - MINOR: tools: add a generic function to generate UUIDs
4246 - DOC: fix typo about no-tls-tickets
4247 - DOC: improve description of no-tls-tickets
4248 - DOC: assorted typo fixes in the documentation
4249 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
4250
Willy Tarreau32bf97f2020-02-25 18:14:02 +010042512020/02/25 : 2.2-dev3
4252 - SCRIPTS: announce-release: place the send command in the mail's header
4253 - SCRIPTS: announce-release: allow the user to force to overwrite old files
4254 - SCRIPTS: backport: fix the master branch detection
4255 - BUG/MINOR: http-act: Set stream error flag before returning an error
4256 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
4257 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
4258 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
4259 - DOC: schematic of the SSL certificates architecture
4260 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
4261 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
4262 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
4263 - BUILD: cirrus-ci: workaround "pkg install" bug
4264 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
4265 - BUG/MINOR: connection: correctly retry I/O on signals
4266 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
4267 - BUILD: http_act: cast file sizes when reporting file size error
4268 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
4269 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
4270 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
4271 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
4272 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
4273 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
4274 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
4275 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
4276 - SCRIPTS: make announce-release executable again
4277 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
4278 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
4279 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
4280 - CLEANUP: ssl: remove unused functions in openssl-compat.h
4281 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
4282 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
4283 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
4284 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
4285 - MEDIUM: arg: make make_arg_list() stop after its own arguments
4286 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
4287 - MEDIUM: arg: make make_arg_list() support quotes in arguments
4288 - MINOR: sample: make sample_parse_expr() able to return an end pointer
4289 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
4290 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
4291 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
4292 - BUILD: enable ERR=1 in github cygwin builds
4293 - BUG/MINOR: arg: fix again incorrect argument length check
4294 - MINOR: sample: regsub now supports backreferences
4295 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
4296 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
4297 - MINOR: filters: Forward data only if the last filter forwards something
4298 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
4299 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
4300 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
4301 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
4302 - MINOR: ssl: add "issuers-chain-path" directive.
4303 - REGTESTS: use "command -v" instead of "which"
4304 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
4305 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
4306 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
4307 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
4308 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
4309 - MINOR: checks: do not call conn_xprt_stop_send() anymore
4310 - CLEANUP: epoll: place the struct epoll_event in the stack
4311 - MEDIUM: connection: remove the intermediary polling state from the connection
4312 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
4313 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
4314 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
4315 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
4316 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
4317 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
4318 - MINOR: ist: add an iststop() function
4319 - BUG/MINOR: http: http-request replace-path duplicates the query string
4320 - CLEANUP: sample: use iststop instead of a for loop
4321 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
4322 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
4323 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
4324 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
4325 - BUILD: fix recent build failure on unaligned archs
4326 - MINOR: ssl: load the key from a dedicated file
4327 - BUG/MINOR: ssl: load .key in a directory only after PEM
4328 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
4329 - CLEANUP: conn: Do not pass a pointer to likely
4330 - CLEANUP: net_helper: Do not negate the result of unlikely
4331 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
4332 - CLEANUP: cfgparse: Fix type of second calloc() parameter
4333 - BUILD: ssl: only pass unsigned chars to isspace()
4334 - BUILD: general: always pass unsigned chars to is* functions
4335 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
4336 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
4337 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
4338 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
4339 - CLEANUP: stick-tables: use read_u32() to display a node's key
4340 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
4341 - MINOR: pattern: fix all remaining strict aliasing issues
4342 - CLEANUP: lua: fix aliasing issues in the address matching code
4343 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
4344 - BUILD: makefile: re-enable strict aliasing
4345 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
4346 - MINOR: compiler: add new alignment macros
4347 - BUILD: ebtree: improve architecture-specific alignment
4348 - MINOR: config: mark global.debug as deprecated
4349 - BUILD: travis-ci: enable s390x builds
4350 - MINOR: ssl/cli: 'show ssl cert' displays the chain
4351 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
4352 - MINOR: ssl/cli: reorder 'show ssl cert' output
4353 - CLEANUP: ssl: move issuer_chain tree and definition
4354 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
4355
Willy Tarreau4c47d912020-02-07 04:12:19 +010043562020/02/07 : 2.2-dev2
4357 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
4358 - MEDIUM: cli: Allow multiple filter entries for "show table"
4359 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
4360 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
4361 - BUILD: stick-table: fix build errors introduced by last stick-table change
4362 - BUG/MINOR: cli: Missing arg offset for filter data values.
4363 - MEDIUM: streams: Always create a conn_stream in connect_server().
4364 - MEDIUM: connections: Get ride of the xprt_done callback.
4365 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
4366 - BUILD: CI: move cygwin builds to Github Actions
4367 - MINOR: cli: Report location of errors or any extra data for "show table"
4368 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
4369 - CLEANUP: backend: remove useless test for inexistent connection
4370 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
4371 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
4372 - BUG/MINOR: ssl: increment issuer refcount if in chain
4373 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
4374 - BUG/MINOR: ssl: typo in previous patch
4375 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
4376 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
4377 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
4378 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
4379 - MINOR: stream-int: always report received shutdowns
4380 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
4381 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
4382 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
4383 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
4384 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
4385 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
4386 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
4387 - BUG/MINOR: stktable: report the current proxy name in error messages
4388 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
4389 - MINOR: lua: Add hlua_prepend_path function
4390 - MINOR: lua: Add lua-prepend-path configuration option
4391 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
4392 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
4393 - BUG/MINOR: http-ana: Increment the backend counters on the backend
4394 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
4395 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
4396 - REGTESTS: make the set_ssl_cert test require version 2.2
4397 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
4398 - MINOR: ssl: Remove dead code.
4399 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
4400 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
4401 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
4402 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
4403 - BUILD: CI: disable slow regtests on Travis
4404 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
4405 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
4406 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
4407 - BUG/MINOR: dns: allow 63 char in hostname
4408 - MINOR: proxy: clarify number of connections log when stopping
4409 - DOC: word converter ignores delimiters at the start or end of input string
4410 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
4411 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
4412 - MEDIUM: pipe/thread: reduce the locking overhead
4413 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
4414 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
4415 - MINOR: tasks: move the list walking code to its own function
4416 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
4417 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
4418 - OPTIM: task: refine task classes default CPU bandwidth ratios
4419 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
4420 - MINOR: task: permanently flag tasklets waking themselves up
4421 - MINOR: task: make sched->current also reflect tasklets
4422 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
4423 - OPTIM: task: readjust CPU bandwidth distribution since last update
4424 - MINOR: task: don't set TASK_RUNNING on tasklets
4425 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
4426 - MINOR: memory: Only init the pool spinlock once.
4427 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
4428 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
4429 - MINOR: ssl: ssl-load-extra-files configure loading of files
4430 - SCRIPTS: add a new "backport" script to simplify long series of backports
4431 - BUG/MINOR: ssl: we may only ignore the first 64 errors
4432 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
4433 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
4434 - CLEANUP: hpack: remove a redundant test in the decoder
4435 - CLEANUP: peers: Remove unused static function `free_dcache`
4436 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
4437 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
4438 - CONTRIB: debug: add the possibility to decode the value as certain types only
4439 - CONTRIB: debug: support reporting multiple values at once
4440 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
4441 - MINOR: global: Set default tune.maxrewrite value during global structure init
4442 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
4443 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
4444 - MINOR: htx: Add a function to append an HTX message to another one
4445 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
4446 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
4447 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
4448 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
4449 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
4450 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
4451 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
4452 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
4453 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
4454 - MINOR: http-ana: Add a function for forward internal responses
4455 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
4456 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
4457 - MEDIUM: http-rules: Add the return action to HTTP rules
4458 - MEDIUM: http-rules: Support extra headers for HTTP return actions
4459 - CLEANUP: lua: Remove consistency check for sample fetches and actions
4460 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
4461 - MINOR: lua: Get the action return code on the stack when an action finishes
4462 - MINOR: lua: Create the global 'act' object to register all action return codes
4463 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
4464 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
4465 - REGTESTS: Add reg tests for the HTTP return action
4466 - REGTESTS: Add a reg test for http-after-response rulesets
4467 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
4468 - MINOR: acl: Warn when an ACL is named 'or'
4469 - CONTRIB: debug: also support reading values from stdin
4470 - SCRIPTS: backport: use short revs and resolve the initial commit
4471 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
4472
Willy Tarreau71f95fa2020-01-22 10:34:58 +010044732020/01/22 : 2.2-dev1
4474 - DOC: this is development again
4475 - MINOR: version: this is development again, update the status
4476 - SCRIPTS: update create-release to fix the changelog on new branches
4477 - CLEANUP: ssl: Clean up error handling
4478 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
4479 - BUG/MINOR: h1: Don't test the host header during response parsing
4480 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
4481 - DOC: Clarify behavior of server maxconn in HTTP mode
4482 - MINOR: ssl: deduplicate ca-file
4483 - MINOR: ssl: compute ca-list from deduplicate ca-file
4484 - MINOR: ssl: deduplicate crl-file
4485 - CLEANUP: dns: resolution can never be null
4486 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
4487 - DOC: ssl/cli: set/commit/abort ssl cert
4488 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
4489 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
4490 - BUG/MINOR: stats: Fix HTML output for the frontends heading
4491 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
4492 - DOC: clarify matching strings on binary fetches
4493 - DOC: Fix ordered list in summary
4494 - DOC: move the "group" keyword at the right place
4495 - MEDIUM: init: prevent process and thread creation at runtime
4496 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
4497 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
4498 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
4499 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
4500 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
4501 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
4502 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
4503 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
4504 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
4505 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
4506 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
4507 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
4508 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
4509 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
4510 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
4511 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
4512 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
4513 - BUG/MINOR: listener: also clear the error flag on a paused listener
4514 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
4515 - MINOR: listener: make the wait paths cleaner and more reliable
4516 - MINOR: listener: split dequeue_all_listener() in two
4517 - REORG: listener: move the global listener queue code to listener.c
4518 - DOC: document the listener state transitions
4519 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
4520 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
4521 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
4522 - DOC: listeners: add a few missing transitions
4523 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
4524 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
4525 - DOC: proxies: HAProxy only supports 3 connection modes
4526 - DOC: remove references to the outdated architecture.txt
4527 - BUG/MINOR: log: fix minor resource leaks on logformat error path
4528 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
4529 - BUG/MINOR: listener: do not immediately resume on transient error
4530 - BUG/MINOR: server: make "agent-addr" work on default-server line
4531 - BUG/MINOR: listener: fix off-by-one in state name check
4532 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
4533 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
4534 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
4535 - REGTEST: Add an HTX reg-test to check an edge case
4536 - DOC: clarify the fact that replace-uri works on a full URI
4537 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
4538 - BUG/MINOR: sample: always check converters' arguments
4539 - MINOR: sample: Validate the number of bits for the sha2 converter
4540 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
4541 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
4542 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
4543 - MINOR: debug: support logging to various sinks
4544 - MINOR: http: add a new "replace-path" action
4545 - REGTEST: ssl: test the "set ssl cert" CLI command
4546 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
4547 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
4548 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
4549 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
4550 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
4551 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
4552 - REGTEST: make the "set ssl cert" require version 2.1
4553 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
4554 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
4555 - BUG/MINOR: state-file: do not store duplicates in the global tree
4556 - BUG/MINOR: state-file: do not leak memory on parse errors
4557 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
4558 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
4559 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
4560 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
4561 - BUILD: travis-ci: reenable address sanitizer for clang builds
4562 - BUG/MINOR: checks: refine which errno values are really errors.
4563 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
4564 - CLEANUP: connection: conn->xprt is never NULL
4565 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
4566 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
4567 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
4568 - MINOR: connection: check for connection validation earlier
4569 - MINOR: connection: remove the double test on xprt_done_cb()
4570 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
4571 - MINOR: poller: do not call the IO handler if the FD is not active
4572 - OPTIM: epoll: always poll for recv if neither active nor ready
4573 - OPTIM: polling: do not create update entries for FD removal
4574 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
4575 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
4576 - BUILD: CI: modernize cirrus-ci
4577 - MINOR: config: disable busy polling on old processes
4578 - MINOR: ssl: Remove unused variable "need_out".
4579 - BUG/MINOR: h1: Report the right error position when a header value is invalid
4580 - BUG/MINOR: proxy: Fix input data copy when an error is captured
4581 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
4582 - BUG/MINOR: channel: inject output data at the end of output
4583 - BUG/MEDIUM: session: do not report a failure when rejecting a session
4584 - MEDIUM: dns: implement synchronous send
4585 - MINOR: raw_sock: make sure to disable polling once everything is sent
4586 - MINOR: http: Add 410 to http-request deny
4587 - MINOR: http: Add 404 to http-request deny
4588 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
4589 - BUILD: cirrus-ci: choose proper openssl package name
4590 - BUG/MAJOR: listener: do not schedule a task-less proxy
4591 - CLEANUP: server: remove unused err section in server_finalize_init
4592 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
4593 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
4594 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
4595 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
4596 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
4597 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
4598 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
4599 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
4600 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
4601 - REGTEST: mcli/mcli_start_progs: start 2 programs
4602 - BUG/MEDIUM: mworker: remain in mworker mode during reload
4603 - DOC: clarify crt-base usage
4604 - CLEANUP: compression: remove unused deinit_comp_ctx section
4605 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
4606 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
4607 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
4608 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
4609 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
4610 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
4611 - CLEANUP: cli: deduplicate the code in _getsocks
4612 - BUG/MINOR: stream: don't mistake match rules for store-request rules
4613 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
4614 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
4615 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
4616 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
4617 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
4618 - BUILD: pattern: include errno.h
4619 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
4620 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
4621 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
4622 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
4623 - REORG: stream/backend: move backend-specific stuff to backend.c
4624 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
4625 - MEDIUM: connection: merge the send_wait and recv_wait entries
4626 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
4627 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
4628 - MEDIUM: mux-h1: merge recv_wait and send_wait
4629 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
4630 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
4631 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
4632 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
4633 - DOC: Fix copy and paste mistake in http-response replace-value doc
4634 - BUG/MINOR: cache: Fix leak of cache name in error path
4635 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
4636 - BUG/MINOR: 51d: Fix bug when HTX is enabled
4637 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
4638 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
4639 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
4640 - DOC: Add a section to document the internal sample fetches
4641 - MINOR: mux-h1: Inherit send flags from the upper layer
4642 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
4643 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
4644 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
4645 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
4646 - MEDIUM: http-rules: Register an action keyword for all http rules
4647 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
4648 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
4649 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
4650 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
4651 - MINOR: counters: Add a counter to report internal processing errors
4652 - MEDIUM: http-ana: Properly handle internal processing errors
4653 - MINOR: http-rules: Add a rule result to report internal error
4654 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
4655 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
4656 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
4657 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
4658 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
4659 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
4660 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
4661 - MINOR: counters: Review conditions to increment counters from analysers
4662 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
4663 - MINOR: http-rules: Handle all message rewrites the same way
4664 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
4665 - MEDIUM: http-rules: Enable the strict rewriting mode by default
4666 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
4667 - MINOR: actions: Add a function pointer to release args used by actions
4668 - MINOR: actions: Regroup some info about HTTP rules in the same struct
4669 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
4670 - MINOR: actions: Rename the act_flag enum into act_opt
4671 - MINOR: actions: Add flags to configure the action behaviour
4672 - MINOR: actions: Use an integer to set the action type
4673 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
4674 - MINOR: http-rules: Make replace-header and replace-value custom actions
4675 - MINOR: http-rules: Make set-header and add-header custom actions
4676 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
4677 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
4678 - MEDIUM: http-rules: Make early-hint custom actions
4679 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
4680 - MINOR: tcp-rules: Make tcp-request capture a custom action
4681 - MINOR: http-rules: Add release functions for existing HTTP actions
4682 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
4683 - MINOR: tcp-rules: Add release functions for existing TCP actions
4684 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
4685 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
4686 - MINOR: http-htx: Add functions to create HTX redirect message
4687 - MINOR: config: Use dedicated function to parse proxy's errorfiles
4688 - MINOR: config: Use dedicated function to parse proxy's errorloc
4689 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
4690 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
4691 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
4692 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
4693 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
4694 - MINOR: http-rules: Support an optional status on deny rules for http reponses
4695 - MINOR: http-rules: Use same function to parse request and response deny actions
4696 - MINOR: http-ana: Add an error message in the txn and send it when defined
4697 - MEDIUM: http-rules: Support an optional error message in http deny rules
4698 - REGTEST: Add a strict rewriting mode reg test
4699 - REGEST: Add reg tests about error files
4700 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
4701 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
4702 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
4703 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
4704 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
4705 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
4706 - BUILD: CI: introduce ARM64 builds
4707 - BUILD: ssl: more elegant anti-replay feature presence check
4708 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
4709 - MEDIUM: dns: use Additional records from SRV responses
4710 - CLEANUP: Consistently `unsigned int` for bitfields
4711 - CLEANUP: pattern: remove the pat_time definition
4712 - BUG/MINOR: http_act: don't check capture id in backend
4713 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
4714
Willy Tarreau2e077f82019-11-25 20:36:16 +010047152019/11/25 : 2.2-dev0
4716 - exact copy of 2.1.0
4717
Willy Tarreaue54b43a2019-11-25 19:47:40 +010047182019/11/25 : 2.1.0
4719 - BUG/MINOR: init: fix set-dumpable when using uid/gid
4720 - MINOR: init: avoid code duplication while setting identify
4721 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
4722 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
4723 - MINOR: peers: Alway show the table info for disconnected peers.
4724 - MINOR: peers: Add TX/RX heartbeat counters.
4725 - MINOR: peers: Add debugging information to "show peers".
4726 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
4727 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
4728 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
4729 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
4730 - BUILD/MINOR: ssl: fix compiler warning about useless statement
4731 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
4732 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
4733 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
4734 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
4735 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
4736 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
4737 - DOC: Update http-buffer-request description to remove the part about chunks
4738 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
4739 - DOC: internal: document the init calls
4740 - MEDIUM: dns: Add resolve-opts "ignore-weight"
4741 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
4742 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
4743 - MINOR: ssl/cli: display warning during 'commit ssl cert'
4744 - MINOR: version: report the version status in "haproxy -v"
4745 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
4746 - DOC: Add documentation about the use-service action
4747 - MINOR: ssl: fix possible null dereference in error handling
4748 - BUG/MINOR: ssl: fix curve setup with LibreSSL
4749 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
4750 - CLEANUP: ssl: check if a transaction exists once before setting it
4751 - BUG/MINOR: cli: fix out of bounds in -S parser
4752 - MINOR: ist: add ist_find_ctl()
4753 - BUG/MAJOR: h2: reject header values containing invalid chars
4754 - BUG/MAJOR: h2: make header field name filtering stronger
4755 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
4756 - MINOR: h2: add a function to report H2 error codes as strings
4757 - MINOR: mux-h2/trace: report the connection and/or stream error code
4758 - SCRIPTS: create-release: show the correct origin name in suggested commands
4759 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
4760 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
4761 - BUILD: reorder the objects in the makefile
4762 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
4763 - MINOR: version: indicate that this version is stable
4764
Willy Tarreau84681322019-11-15 18:49:37 +010047652019/11/15 : 2.1-dev5
4766 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
4767 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
4768 - BUG/MINOR: ssl/cli: fix an error when a file is not found
4769 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
4770 - DOC: fix date and http_date keywords syntax
4771 - MINOR: peers: Add "log" directive to "peers" section.
4772 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
4773 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
4774 - MINOR: flt_trace: Rename macros to print trace messages
4775 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
4776 - MEDIUM: stream/trace: Register a new trace source with its events
4777 - MINOR: doc: http-reuse connection pool fix
4778 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
4779 - MINOR: http-ana: Remove the unused function http_reset_txn()
4780 - BUG/MINOR: action: do-resolve now use cached response
4781 - BUG: dns: timeout resolve not applied for valid resolutions
4782 - DOC: management: fix typo on "cache_lookups" stats output
4783 - BUG/MINOR: stream: init variables when the list is empty
4784 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
4785 - BUG/MINOR: queue/threads: make the queue unlinking atomic
4786 - BUG/MEDIUM: Make sure we leave the session list in session_free().
4787 - CLEANUP: session: slightly simplify idle connection cleanup logic
4788 - MINOR: memory: also poison the area on freeing
4789 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
4790 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
4791 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
4792 - BUILD: contrib/da: remove an "unused" warning
4793 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
4794 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
4795 - MINOR: freq_ctr: Make the sliding window sums thread-safe
4796 - MINOR: stream: Remove the lock on the proxy to update time stats
4797 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
4798 - MINOR: stats: Report max times in addition of the averages for sessions
4799 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
4800 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
4801 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
4802 - DOC: Add missing stats fields in the management manual
4803 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
4804 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
4805 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
4806 - MINOR: sink: Set the default max length for a message to BUFSIZE
4807 - MINOR: ring: make the parse function automatically set the handler/release
4808 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
4809 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
4810
Willy Tarreau1753cb52019-11-03 15:43:10 +010048112019/11/03 : 2.1-dev4
4812 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
4813 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
4814 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
4815 - DOC: remove obsolete section about header manipulation
4816 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
4817 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
4818 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
4819 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
4820 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
4821 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
4822 - BUILD/MINOR: ssl: shut up a build warning about format truncation
4823 - BUILD: do not disable -Wformat-truncation anymore
4824 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
4825 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
4826 - MINOR: mux: Add a new method to get informations about a mux.
4827 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
4828 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
4829 - MINOR: doc: fix busy-polling performance reference
4830 - MINOR: config: allow no set-dumpable config option
4831 - MINOR: init: always fail when setrlimit fails
4832 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
4833 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
4834 - REGTEST: vtest can now enable mcli with its own flag
4835 - BUG/MINOR: config: Update cookie domain warn to RFC6265
4836 - MINOR: sample: add us/ms support to date/http_date
4837 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
4838 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
4839 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
4840 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
4841 - BUG/MINOR: stats: properly check the path and not the whole URI
4842 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
4843 - BUG/MINOR: ssl: ckch->chain must be initialized
4844 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
4845 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
4846 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
4847 - MINOR: backend: Add srv_name sample fetche
4848 - DOC: Add GitHub issue config.yml
4849
Willy Tarreauc70df532019-10-25 15:48:53 +020048502019/10/25 : 2.1-dev3
4851 - MINOR: mux-h2/trace: missing conn pointer in demux full message
4852 - MINOR: mux-h2: add a per-connection list of blocked streams
4853 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
4854 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
4855 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
4856 - BUG/MINOR: peers: crash on reload without local peer.
4857 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
4858 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
4859 - MINOR: htx: Adapt htx_dump() to be used from traces
4860 - MINOR: mux-h1/trace: register a new trace source with its events
4861 - MINOR: proxy: Store http-send-name-header in lower case
4862 - MINOR: http: Remove headers matching the name of http-send-name-header option
4863 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
4864 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
4865 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
4866 - MINOR: fcgi: Add function to get the string representation of a record type
4867 - MINOR: mux-fcgi/trace: Register a new trace source with its events
4868 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
4869 - DOC: clarify some points around http-send-name-header's behavior
4870 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
4871 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
4872 - DOC: fix typo in Prometheus exporter doc
4873 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
4874 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
4875 - MINOR: http: Add a function to get the authority into a URI
4876 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
4877 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
4878 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
4879 - MEDIUM: h2: make the request parser rebuild a complete URI
4880 - MINOR: h2: report in the HTX flags when the request has an authority
4881 - MEDIUM: mux-h2: do not map Host to :authority on output
4882 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
4883 - MINOR: stats: mention in the help message support for "json" and "typed"
4884 - MINOR: stats: get rid of the ST_CONVDONE flag
4885 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
4886 - MINOR: stats: always merge the uri_auth flags into the appctx flags
4887 - MINOR: stats: set the appctx flags when initializing the applet only
4888 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
4889 - MINOR: stats: make stats_dump_fields_json() directly take flags
4890 - MINOR: stats: uniformize the calling convention of the dump functions
4891 - MINOR: stats: support the "desc" output format modifier for info and stat
4892 - MINOR: stats: prepare to add a description with each stat/info field
4893 - MINOR: stats: make "show stat" and "show info"
4894 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
4895 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
4896 - BUILD: stats: fix missing '=' sign in array declaration
4897 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
4898 - MINOR: list: add new macro MT_LIST_BEHEAD
4899 - MEDIUM: task: Split the tasklet list into two lists.
4900 - MINOR: h2: Document traps to be avoided on multithread.
4901 - MINOR: lists: Try to use local variables instead of macro arguments.
4902 - MINOR: lists: Fix alignement of \ when relevant.
4903 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
4904 - MINOR: ssl: crt-list do ckchn_lookup
4905 - REORG: ssl: rename ckch_node to ckch_store
4906 - REORG: ssl: move structures to ssl_sock.h
4907 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
4908 - MINOR: ssl: initialize explicitly the sni_ctx trees
4909 - BUG/MINOR: ssl: abort on sni allocation failure
4910 - BUG/MINOR: ssl: free the sni_keytype nodes
4911 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
4912 - MEDIUM: ssl: introduce the ckch instance structure
4913 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
4914 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
4915 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
4916 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
4917 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
4918 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
4919 - MINOR: ssl: load the sctl in/from the ckch
4920 - MINOR: ssl: load the ocsp in/from the ckch
4921 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
4922 - BUG/MINOR: ssl: fix build without SSL
4923 - BUG/MINOR: ssl: fix build without multi-cert bundles
4924 - BUILD: ssl: wrong #ifdef for SSL engines code
4925 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
4926 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
4927 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
4928 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
4929 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
4930 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
4931 - BUG/MINOR: mux-h1: Capture ignored parsing errors
4932 - MINOR: h1: Reject requests with different occurrences of the header host
4933 - MINOR: h1: Reject requests if the authority does not match the header host
4934 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
4935 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
4936 - BUG/MINOR: WURFL: fix send_log() function arguments
4937 - BUG/MINOR: ssl: fix error messages for OCSP loading
4938 - BUG/MINOR: ssl: can't load ocsp files
4939 - MINOR: version: make the version strings variables, not constants
4940 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
4941 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
4942 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
4943 - BUILD: travis-ci: limit build to branches "master" and "next"
4944 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
4945 - BUILD/SMALL: threads: enable threads on osx
4946 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
4947 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
4948 - BUG/MINOR: cache: also cache absolute URIs
4949 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
4950 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
4951 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
4952 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
4953 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
4954 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
4955 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
4956 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
4957 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
4958 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
4959 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
4960 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
4961 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
4962 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
4963 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
4964 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
4965 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
4966 - CLEANUP: bind: handle warning label on bind keywords parsing.
4967 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
4968 - BUG/MINOR: mworker/cli: reload fail with inherited FD
4969 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
4970 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
4971 - BUG/MINOR: cache: alloc shctx after check config
4972 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
4973 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
4974 - REGTESTS: make seamless-reload depend on 1.9 and above
4975 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
4976 - BUG/MINOR: dns: allow srv record weight set to 0
4977 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
4978 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
4979 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
4980 - BUG/MINOR: mux-h2: do not emit logs on backend connections
4981 - CLEANUP: ssl: remove old TODO commentary
4982 - CLEANUP: ssl: fix SNI/CKCH lock labels
4983 - MINOR: ssl: OCSP functions can load from file or buffer
4984 - MINOR: ssl: load sctl from buf OR from a file
4985 - MINOR: ssl: load issuer from file or from buffer
4986 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
4987 - BUG/MINOR: ssl/cli: fix looking up for a bundle
4988 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
4989 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
4990 - MINOR: ssl: copy a ckch from src to dst
4991 - MINOR: ssl: new functions duplicate and free a ckch_store
4992 - MINOR: ssl/cli: assignate a new ckch_store
4993 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
4994 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
4995 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
4996 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
4997 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
4998 - MINOR: tcp: avoid confusion in time parsing init
4999 - MINOR: debug: add a new "debug dev stream" command
5000 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
5001 - REORG: move CLI access level definitions to cli.h
5002 - MINOR: cli: add an expert mode to hide dangerous commands
5003 - MINOR: debug: make most debug CLI commands accessible in expert mode
5004 - MINOR: stats/debug: maintain a counter of debug commands issued
5005 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
5006
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020050072019/10/01 : 2.1-dev2
5008 - DOC: management: document reuse and connect counters in the CSV format
5009 - DOC: management: document cache_hits and cache_lookups in the CSV format
5010 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
5011 - MINOR: applet: make appctx use their own pool
5012 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
5013 - BUG/MEDIUM: http/htx: unbreak option http_proxy
5014 - BUG/MINOR: backend: do not try to install a mux when the connection failed
5015 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
5016 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
5017 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
5018 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
5019 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
5020 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
5021 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
5022 - MINOR: proto_htx: Add the function htx_return_srv_error()
5023 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
5024 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
5025 - DOC: htx: Update comments in HTX files
5026 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
5027 - MINOR: htx: Deduce the number of used blocks from tail and head values
5028 - MINOR: htx: Use an array of char to store HTX blocks
5029 - MINOR: htx: Slightly update htx_dump() to report better messages
5030 - DOC: htx: Add internal documentation about the HTX
5031 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
5032 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
5033 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
5034 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
5035 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
5036 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
5037 - MINOR: config: Remove tests on the option 'http-use-htx'
5038 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
5039 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
5040 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
5041 - MINOR: cache: Remove tests on the option 'http-use-htx'
5042 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
5043 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
5044 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
5045 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
5046 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
5047 - MINOR: http_act: Remove code relying on the legacy HTTP mode
5048 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
5049 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
5050 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
5051 - MINOR: stats: Remove code relying on the legacy HTTP mode
5052 - MAJOR: filters: Remove code relying on the legacy HTTP mode
5053 - MINOR: stream: Remove code relying on the legacy HTTP mode
5054 - MAJOR: http: Remove the HTTP legacy code
5055 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
5056 - MINOR: proto_http: Remove unused http txn flags
5057 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
5058 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
5059 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
5060 - CLEANUP: proto_http: Remove unecessary includes and comments
5061 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
5062 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
5063 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
5064 - MINOR: proxy: Remove support of the option 'http-tunnel'
5065 - DOC: config: Update as a result of the legacy HTTP removal
5066 - MEDIUM: config: Remove parsing of req* and rsp* directives
5067 - MINOR: proxy: Remove the unused list of block rules
5068 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
5069 - DOC: config: Remove unsupported req* and rsp* keywords
5070 - MINOR: global: Preset tune.max_http_hdr to its default value
5071 - MINOR: http: Don't store raw HTTP errors in chunks anymore
5072 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
5073 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
5074 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
5075 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
5076 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
5077 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
5078 - MINOR: connection: add conn_get_src() and conn_get_dst()
5079 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
5080 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
5081 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
5082 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
5083 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
5084 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
5085 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
5086 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
5087 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
5088 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
5089 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
5090 - MINOR: connection: add new src and dst fields
5091 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
5092 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
5093 - MINOR: lua: switch to conn->dst for a connection's target address
5094 - MINOR: peers: use conn->dst for the peer's target address
5095 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
5096 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
5097 - MINOR: proxy: switch to conn->src in error snapshots
5098 - MINOR: session: use conn->src instead of conn->addr.from
5099 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
5100 - MINOR: unix: use conn->dst for the target address in ->connect()
5101 - MINOR: sockpair: use conn->dst for the target address in ->connect()
5102 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
5103 - MINOR: checks: replace conn->addr.to with conn->dst
5104 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
5105 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
5106 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
5107 - MINOR: connection: create a new pool for struct sockaddr_storage
5108 - MEDIUM: connection: make sure all address producers allocate their address
5109 - MAJOR: connection: remove the addr field
5110 - MINOR: connection: don't use clear_addr() anymore, just release the address
5111 - MINOR: stream: add a new target_addr entry in the stream structure
5112 - MAJOR: stream: store the target address into s->target_addr
5113 - MINOR: peers: now remove the remote connection setup code
5114 - MEDIUM: lua: do not allocate the remote connection anymore
5115 - MEDIUM: backend: always release any existing prior connection in connect_server()
5116 - MEDIUM: backend: remove impossible cases from connect_server()
5117 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
5118 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
5119 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
5120 - BUG/MINOR: http_htx: Support empty errorfiles
5121 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
5122 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
5123 - BUG/MINOR: proxy: always lock stop_proxy()
5124 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
5125 - BUILD: threads: add the definition of PROTO_LOCK
5126 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
5127 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
5128 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
5129 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
5130 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
5131 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
5132 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
5133 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
5134 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
5135 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
5136 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
5137 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
5138 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
5139 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
5140 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
5141 - MEDIUM: ssl: split the loading of the certificates
5142 - MEDIUM: ssl: lookup and store in a ckch_node tree
5143 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
5144 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
5145 - MINOR: ssl: use STACK_OF for chain certs
5146 - MINOR: ssl: add extra chain compatibility
5147 - MINOR: ssl: check private key consistency in loading
5148 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
5149 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
5150 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
5151 - MAJOR: fd: Get rid of the fd cache.
5152 - MEDIUM: pollers: Remember the state for read and write for each threads.
5153 - MEDIUM: mux-h2: don't try to read more than needed
5154 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
5155 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
5156 - BUG/MINOR: debug: fix a small race in the thread dumping code
5157 - MINOR: wdt: also consider that waiting in the thread dumper is normal
5158 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
5159 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
5160 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
5161 - BUG/MINOR: ssl: fix ressource leaks on error
5162 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
5163 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
5164 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
5165 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
5166 - BUG/MINOR: stream-int: also update analysers timeouts on activity
5167 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
5168 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
5169 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
5170 - DOC: Add 'Question.md' issue template, discouraging asking questions
5171 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
5172 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
5173 - BUILD: travis-ci: enable daily Coverity scan
5174 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
5175 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
5176 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
5177 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
5178 - BUG/MINOR: mux-h2: always send stream window update before connection's
5179 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
5180 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
5181 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
5182 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
5183 - MINOR: cache: add method to cache hash
5184 - MINOR: cache: allow caching of OPTIONS request
5185 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
5186 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
5187 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
5188 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
5189 - CLEANUP: buffer: replace b_drop() with b_free()
5190 - CLEANUP: task: move the cpu_time field to the task-only part
5191 - MINOR: cli: add two new states to print messages on the CLI
5192 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
5193 - CLEANUP: cli: replace all occurrences of manual handling of return messages
5194 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
5195 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
5196 - BUG/MINOR: lua: fix setting netfilter mark
5197 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
5198 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
5199 - BUG/MINOR: stats: Wait the body before processing POST requests
5200 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
5201 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
5202 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
5203 - MINOR: debug: indicate the applet name when the task is task_run_applet()
5204 - MINOR: tools: add append_prefixed_str()
5205 - MINOR: lua: export applet and task handlers
5206 - MEDIUM: debug: make the thread dump code show Lua backtraces
5207 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
5208 - MINOR: list: add LIST_SPLICE() to merge one list into another
5209 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
5210 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
5211 - MINOR: sink: create definitions a minimal code for event sinks
5212 - MINOR: sink: add a support for file descriptors
5213 - MINOR: trace: start to create a new trace subsystem
5214 - MINOR: trace: add allocation of buffer-sized trace buffers
5215 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
5216 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
5217 - MINOR: trace/cli: add "show trace" to report trace state and statistics
5218 - MINOR: trace: implement a very basic trace() function
5219 - MINOR: trace: add the file name and line number in the prefix
5220 - MINOR: trace: make trace() now also take a level in argument
5221 - MINOR: trace: implement a call to a decode function
5222 - MINOR: trace: add per-level macros to produce traces
5223 - MINOR: trace: add a definition of typed arguments to trace()
5224 - MINOR: trace: make sure to always stop the locking when stopping or pausing
5225 - MINOR: trace: add the possibility to lock on some arguments
5226 - MINOR: trace: parse the "lock" argument to trace
5227 - MINOR: trace: retrieve useful pointers and enforce lock-on
5228 - DOC: management: document the "trace" and "show trace" commands
5229 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
5230 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
5231 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
5232 - DOC: fixed typo in management.txt
5233 - BUG/MINOR: mworker: disable SIGPROF on re-exec
5234 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
5235 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
5236 - MINOR: backend: Add srv_queue converter
5237 - MINOR: sink: set the fd-type sinks to non-blocking
5238 - MINOR: tools: add a function varint_bytes() to report the size of a varint
5239 - MINOR: buffer: add functions to read/write varints from/to buffers
5240 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
5241 - MINOR: sink: now call the generic fd write function
5242 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
5243 - MINOR: ring: add a ring_write() function
5244 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
5245 - MINOR: sink: add support for ring buffers
5246 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
5247 - MINOR: sink: now report the number of dropped events on output
5248 - MINOR: trace: support a default callback for the source
5249 - MINOR: trace: extend the source location to 13 chars
5250 - MINOR: trace: show thread number and source name in the trace
5251 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
5252 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
5253 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
5254 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
5255 - MINOR: trace: change the "payload" level to "data" and move it
5256 - MINOR: trace: prepend the function name for developer level traces
5257 - MINOR: trace: also report the trace level in the output
5258 - MINOR: trace: change the detail_level to per-source verbosity
5259 - MINOR: mux-h2/trace: register a new trace source with its events
5260 - MINOR: mux-h2/trace: add the default decoding callback
5261 - MEDIUM: mux-h2/trace: add lots of traces all over the code
5262 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
5263 - MINOR: mux-h2/trace: add a new verbosity level "clean"
5264 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
5265 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
5266 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
5267 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
5268 - CLEANUP: mux-h2/trace: lower-case event names
5269 - MINOR: trace: extend default event names to 12 chars
5270 - BUG/MINOR: ring: fix the way watchers are counted
5271 - MINOR: cli: extend the CLI context with a list and two offsets
5272 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
5273 - MEDIUM: ring: implement a wait mode for watchers
5274 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
5275 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
5276 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
5277 - CLEANUP: fd: remove leftovers of the fdcache
5278 - MINOR: fd: add a new "initialized" bit in the fdtab struct
5279 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
5280 - MEDIUM: log: use the new generic fd_write_frag_line() function
5281 - MINOR: log: add a target type instead of hacking the address family
5282 - MEDIUM: log: add support for logging to a ring buffer
5283 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
5284 - MINOR: build: add linux-glibc-legacy build TARGET
5285 - BUG/MEDIUM: peers: local peer socket not bound.
5286 - BUILD: connection: silence gcc warning with extra parentheses
5287 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
5288 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
5289 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
5290 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
5291 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
5292 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
5293 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
5294 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
5295 - MEDIUM: fd: remove the FD_EV_POLLED status bit
5296 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
5297 - MINOR: fd: make updt_fd_polling() a normal function
5298 - CONTRIB: debug: add new program "poll" to test poll() events
5299 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
5300 - BUG/MINOR: checks: start sending the request right after connect()
5301 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
5302 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
5303 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
5304 - BUILD: CI: add basic CentOS 6 cirrus build
5305 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
5306 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
5307 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
5308 - MEDIUM: fd: mark the FD as ready when it's inserted
5309 - MINOR: fd: add two new calls fd_cond_{recv,send}()
5310 - MEDIUM: connection: enable reading only once the connection is confirmed
5311 - MINOR: fd: add two flags ERR and SHUT to describe FD states
5312 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
5313 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
5314 - MINOR: stats: report the number of idle connections for each server
5315 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
5316 - BUILD/MINOR: auth: enabling for osx
5317 - BUG/MINOR: listener: Fix a possible null pointer dereference
5318 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
5319 - MINOR: stats: Add JSON export from the stats page
5320 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
5321 - MINOR: sample: Add UUID-fetch
5322 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
5323 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
5324 - BUG/MINOR: backend: Fix a possible null pointer dereference
5325 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
5326 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
5327 - BUILD: CI: temporarily disable ASAN
5328 - MINOR: htx: Add a flag on HTX message to report processing errors
5329 - MINOR: mux-h1: Report a processing error during output processing
5330 - MINOR: http-ana: Handle HTX errors first during message analysis
5331 - MINOR: http-ana: Remove err_state field from http_msg
5332 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
5333 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
5334 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
5335 - MINOR: istbuf: Add the function b_isteqi()
5336 - MINOR: log: Provide a function to emit a log for an application
5337 - MINOR: http: Add function to parse value of the header Status
5338 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
5339 - MINOR: h1-htx: Use the same function to copy message payload in all cases
5340 - MINOR: muxes/htx: Ignore pseudo header during message formatting
5341 - MINOR: fcgi: Add code related to FCGI protocol
5342 - MEDIUM: fcgi-app: Add FCGI application and filter
5343 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
5344 - MINOR: doc: Add documentation about the FastCGI support
5345 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
5346 - BUILD: CI: install golang-1.13 when building BoringSSL
5347 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
5348 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
5349 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
5350 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
5351 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
5352 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
5353 - MEDIUM: list: Separate "locked" list from regular list.
5354 - MINOR: mt_lists: Add new macroes.
5355 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
5356 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
5357 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
5358 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
5359 - TESTS: Add a stress-test for mt_lists.
5360 - BUILD: travis-ci: add PCRE2, SLZ build
5361 - BUG/MINOR: build: fix event ports (Solaris)
5362 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
5363 - OPTIM: listeners: use tasklets for the multi-queue rings
5364 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
5365 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
5366 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
5367 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
5368 - CLEANUP: task: remove impossible test
5369 - CLEANUP: task: cache the task_per_thread pointer
5370 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
5371 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
5372 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
5373 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
5374 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
5375 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
5376 - MINOR: h2/trace: report the frame type when known
5377 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
5378 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
5379 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
5380 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
5381 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
5382 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
5383 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
5384 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
5385 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
5386 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
5387 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
5388 - BUG/MEDIUM: spoe: Use a different engine-id per process
5389 - MINOR: spoe: Improve generation of the engine-id
5390 - MINOR: spoe: Support the async mode with several threads
5391 - MINOR: http: Add server name header from HTTP multiplexers
5392 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
5393 - MINOR: stats: Add the support of float fields in stats
5394 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
5395 - DOC: Fix documentation about the cli command to get resolver stats
5396 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
5397 - BUG/MINOR: stats: Add a missing break in a switch statement
5398 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
5399 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
5400 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
5401 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
5402 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
5403 - DOC: replace utf-8 quotes by ascii ones
5404 - BUG/MEDIUM: fd: HUP is an error only when write is active
5405 - BUG/MINOR: action: do-resolve does not yield on requests with body
5406 - Revert "MINOR: cache: allow caching of OPTIONS request"
5407
Willy Tarreaudb514072019-07-16 19:15:28 +020054082019/07/16 : 2.1-dev1
5409 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
5410 - DOC: this is a development branch again.
5411 - MEDIUM: Make 'block' directive fatal
5412 - MEDIUM: Make 'redispatch' directive fatal
5413 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
5414 - MEDIUM: Remove 'option independant-streams'
5415 - MINOR: sample: Add sha2([<bits>]) converter
5416 - MEDIUM: server: server-state global file stored in a tree
5417 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
5418 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
5419 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
5420 - MINOR: htx: Add the function htx_change_blk_value_len()
5421 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
5422 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
5423 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
5424 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
5425 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
5426 - BUILD: mworker: silence two printf format warnings around getpid()
5427 - BUILD: makefile: use :space: instead of digits to count commits
5428 - BUILD: makefile: adjust the sed expression of "make help" for solaris
5429 - BUILD: makefile: do not rely on shell substitutions to determine git version
5430 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
5431 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
5432 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
5433 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
5434 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
5435 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
5436 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
5437 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
5438 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
5439 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
5440 - BUG/MINOR: log: Detect missing sampling ranges in config
5441 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
5442 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
5443 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
5444 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
5445 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
5446 - BUG/MINOR: mworker/cli: don't output a \n before the response
5447 - BUG/MEDIUM: checks: unblock signals in external checks
5448 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
5449 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
5450 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
5451 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
5452 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
5453 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
5454 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
5455 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
5456 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
5457 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
5458 - BUG/MEDIUM: servers: Authorize tfo in default-server.
5459 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
5460 - MINOR: server: Add "no-tfo" option.
5461 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
5462 - MINOR: action: Add the return code ACT_RET_DONE for actions
5463 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
5464 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
5465 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
5466 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
5467 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
5468 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
5469 - DOC: contrib: spoa_server Add some hints for building spoa_server
5470 - DOC: Fix typo in intro.txt
5471 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
5472 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
5473 - MINOR: pools: release the pool's lock during the malloc/free calls
5474 - MINOR: pools: always pre-initialize allocated memory outside of the lock
5475 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
5476 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
5477 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
5478 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
5479 - BUG/MEDIUM: da: cast the chunk to string.
5480 - DOC: Fix typos and grammer in configuration.txt
5481 - CLEANUP: proto_tcp: Remove useless header inclusions.
5482 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
5483 - MINOR: task: introduce work lists
5484 - BUG/MAJOR: listener: fix thread safety in resume_listener()
5485 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
5486 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
5487 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
5488 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
5489 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
5490 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
5491 - MEDIUM: mworker-prog: Add user/group options to program section
5492 - REGTESTS: checks: tcp-check connect to multiple ports
5493 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
5494
Willy Tarreau9dc6b972019-06-16 21:49:47 +020054952019/06/16 : 2.1-dev0
5496 - exact copy of 2.0.0
5497
Willy Tarreauba236302019-06-16 20:00:26 +020054982019/06/16 : 2.0.0
5499 - MINOR: fd: Don't use atomic operations when it's not needed.
5500 - DOC: mworker-prog: documentation for the program section
5501 - MINOR: http: add a new "http-request replace-uri" action
5502 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
5503 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
5504 - MINOR: mworker: change formatting in uptime field of "show proc"
5505 - MINOR: mworker: add the HAProxy version in "show proc"
5506 - MINOR: doc: Remove -Ds option in man page
5507 - MINOR: doc: add master-worker in the man page
5508 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
5509 - BUILD: Silence gcc warning about unused return value
5510 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
5511 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
5512 - MINOR: doc: update the manpage and usage message about -S
5513 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
5514 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
5515 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
5516 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
5517 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
5518 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
5519 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
5520 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
5521 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
5522 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
5523 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
5524 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
5525 - MINOR: h2: Set flags about the request's scheme on the start-line
5526 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
5527 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
5528 - MEDIUM: server: server-state only rely on server name
5529 - CLEANUP: connection: rename the wait_event.task field to .tasklet
5530 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
5531 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
5532 - DOC: add some environment variables in section 2.3
5533 - BUILD: makefile: clarify the "help" output and list options
5534 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
5535 - BUG: tasks: fix bug introduced by latest scheduler cleanup
5536 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
5537 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
5538 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
5539 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
5540 - BUILD: makefile: further clarify the "help" output and list targets
5541 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
5542 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
5543 - DOC: update few references to the linux* targets and change them to linux-glibc
5544 - BUILD: makefile: detect and reject recently removed linux targets
5545 - BUILD: makefile: enable linux namespaces by default on linux
5546 - BUILD: makefile: enable TFO on linux platforms
5547 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
5548 - DOC: small updates to the CONTRIBUTING file
5549 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
5550 - CLEANUP: removed obsolete examples an move a few to better places
5551 - DOC: Fix typos in CONTRIBUTING
5552 - DOC: update the outdated ROADMAP file
5553 - DOC: create a BRANCHES file to explain the life cycle
5554 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
5555 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
5556 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
5557 - BUILD: tools: work around an internal compiler bug in gcc-3.4
5558 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
5559 - BUILD: makefile: enable USE_RT on Solaris
5560 - BUILD: makefile: do not use echo -n
5561 - DOC: mention a few common build errors in the INSTALL file
5562
Willy Tarreauca3551f2019-06-11 19:28:00 +020055632019/06/11 : 2.0-dev7
5564 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
5565 - MINOR: tools: add new bitmap manipulation functions
5566 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
5567 - MINOR: chunks: Make sure trash_size is only set once.
5568 - Revert "MINOR: chunks: Make sure trash_size is only set once."
5569 - MINOR: threads: serialize threads initialization
5570 - MINOR peers: data structure simplifications for server names dictionary cache.
5571 - DOC: peers: Update for dictionary cache entries for peers protocol.
5572 - MINOR: dict: Store the length of the dictionary entries.
5573 - MINOR: peers: A bit of optimization when encoding cached server names.
5574 - MINOR: peers: Optimization for dictionary cache lookup.
5575 - MEDIUM: tools: improve time format error detection
5576 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
5577 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
5578 - MINOR: threads: avoid clearing harmless twice in thread_release()
5579 - MEDIUM: threads: add thread_sync_release() to synchronize steps
5580 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
5581 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
5582 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
5583 - MEDIUM: init/threads: don't use spinlocks during the init phase
5584 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
5585 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
5586 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
5587 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
5588 - MINOR: htx: Add the function htx_move_blk_before()
5589 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
5590 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
5591 - MINOR: http: turn default error files to HTTP/1.1
5592 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
5593 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
5594 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
5595 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
5596 - MINOR: contrib/spoa_server: Add random IP score
5597 - DOC/MINOR: contrib/spoa_server: Fix typo in README
5598
Willy Tarreaub57f1092019-06-07 06:12:59 +020055992019/06/07 : 2.0-dev6
5600 - BUG/MEDIUM: connection: fix multiple handshake polling issues
5601 - MINOR: connection: also stop receiving after a SOCKS4 response
5602 - MINOR: mux-h1: don't try to recv() before the connection is ready
5603 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
5604 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
5605 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
5606 - CONTRIB: debug: add 4 missing connection/conn_stream flags
5607 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
5608 - MINOR: server: increase the default pool-purge-delay to 5 seconds
5609 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
5610 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
5611 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
5612 - BUILD: task: fix a build warning when threads are disabled
5613 - CLEANUP: peers: Remove tabs characters.
5614 - CLEANUP: peers: Replace hard-coded values by macros.
5615 - BUG/MINOR: peers: Wrong stick-table update message building.
5616 - MINOR: dict: Add dictionary new data structure.
5617 - MINOR: peers: Add a LRU cache implementation for dictionaries.
5618 - MINOR: stick-table: Add "server_name" new data type.
5619 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
5620 - MINOR: proxy: Add a "server by name" tree to proxy.
5621 - MINOR: server: Add a dictionary for server names.
5622 - MINOR: stream: Stickiness server lookup by name.
5623 - MINOR: peers: Make peers protocol support new "server_name" data type.
5624 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
5625 - REGTEST: Add a basic server by name stickiness reg test.
5626 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
5627 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
5628 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
5629 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
5630 - BUILD: travis-ci improvements
5631 - MINOR: SSL: add client/server random sample fetches
5632 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
5633 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
5634 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
5635 - MEDIUM: mux-h1: refactor output processing
5636 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
5637 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
5638 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
5639 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
5640 - MEDIUM: htx: Add the parsing of trailers of chunked messages
5641 - MINOR: htx: Don't use end-of-data blocks anymore
5642 - BUG/MINOR: mux-h1: Don't send more data than expected
5643 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
5644 - BUG/MINOR: peers: Wrong "server_name" decoding.
5645 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
5646 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
5647 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
5648 - MEDIUM: ssl: Handle subscribe by itself.
5649 - MINOR: ssl: Make ssl_sock_handshake() static.
5650 - MINOR: connections: Add a new xprt method, remove_xprt.
5651 - MINOR: connections: Add a new xprt method, add_xprt().
5652 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
5653 - MEDIUM: connections: Remove CONN_FL_SOCK*
5654 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
5655 - BUG/MINOR: peers: Wrong server name parsing.
5656 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
5657 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
5658 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
5659 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
5660 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
5661 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
5662 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
5663 - MEDIUM: stream: re-arrange the connection setup status reporting
5664 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
5665 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
5666 - MEDIUM: stream: rearrange the events to remove the loop
5667 - MEDIUM: stream: only loop on flags relevant to the analysers
5668 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
5669 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
5670 - BUILD: peers: fix a build warning about an incorrect intiialization
5671 - BUG/MINOR: time: make sure only one thread sets global_now at boot
5672 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
5673
Willy Tarreauabc874e2019-06-02 12:06:08 +020056742019/06/02 : 2.0-dev5
5675 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
5676 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
5677 - BUILD: watchdog: condition it to USE_RT
5678 - MINOR: raw_sock: report global traffic statistics
5679 - MINOR: stats: report the global output bit rate in human readable form
5680 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
5681 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
5682 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
5683 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
5684 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
5685 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
5686 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
5687 - DOC: fix typos
5688 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
5689 - OPTIM: freq-ctr: don't take the date lock for most updates
5690 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
5691 - CLEANUP: debug: remove the TRACE() macro
5692 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
5693 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
5694 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
5695 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
5696 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
5697 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
5698 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
5699 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
5700 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
5701 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
5702 - BUILD: ssl: fix latest LibreSSL reg-test error
5703 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
5704 - MINOR: cli/activity: add 3 general purpose counters in development mode
5705 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
5706 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
5707 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
5708 - MEDIUM: config: now alert when two servers have the same name
5709 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
5710 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
5711 - MINOR: htx: Store the head position instead of the wrap one
5712 - MINOR: htx: Store start-line block's position instead of address of its payload
5713 - MINOR: htx: Add functions to get the first block of an HTX message
5714 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
5715 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
5716 - CLEANUP: htx: Remove unused function htx_get_stline()
5717 - MINOR: http/htx: Use sl_pos directly to replace the start-line
5718 - MEDIUM: http/htx: Perform analysis relatively to the first block
5719 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
5720 - MINOR: htx: Add function htx_get_max_blksz()
5721 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
5722 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
5723 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
5724 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
5725 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
5726 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
5727 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
5728 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
5729 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
5730 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
5731 - MEDIUM: htx: 1xx messages are now part of the final reponses
5732 - MINOR: channel/htx: Add function to forward headers of an HTX message
5733 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
5734 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
5735 - MEDIUM: htx: Store the first block position instead of the start-line one
5736 - MINOR: stats/htx: don't use the first block position but the head one
5737 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
5738 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
5739 - MEDIUM: filters/htx: Filter body relatively to the first block
5740 - MINOR: htx: Optimize htx_drain() when all data are drained
5741 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
5742 - MINOR: htx: remove the unused function htx_find_blk()
5743 - MINOR: htx: Remove support of pseudo headers because it is unused
5744 - BUG/MEDIUM: http: fix "http-request reject" when not final
5745 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
5746 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
5747 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
5748 - MINOR: htx: make htx_add_data() return the transmitted byte count
5749 - MEDIUM: htx: make htx_add_data() never defragment the buffer
5750 - MINOR: activity: write totals on the "show activity" output
5751 - MINOR: activity: report totals and average separately
5752 - MEDIUM: poller: separate the wait time from the wake events
5753 - MINOR: activity: report the number of failed pool/buffer allocations
5754 - MEDIUM: buffers: relax the buffer lock a little bit
5755 - MINOR: task: turn the WQ lock to an RW_LOCK
5756 - MEDIUM: task: don't grab the WR lock just to check the WQ
5757 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
5758 - MEDIUM: sessions: Introduce session flags.
5759 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
5760 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
5761 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
5762 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
5763 - MEDIUM: tasks: Get rid of active_tasks_mask.
5764 - MEDIUM: connection: Upstream SOCKS4 proxy support
5765 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
5766 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
5767
Willy Tarreau56740692019-05-22 20:48:33 +020057682019/05/22 : 2.0-dev4
5769 - BUILD: enable freebsd builds on cirrus-ci
5770 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
5771 - MEDIUM: Make 'option forceclose' actually warn
5772 - MEDIUM: Make 'resolution_pool_size' directive fatal
5773 - DOC: management: place "show activity" at the right place
5774 - MINOR: cli/activity: show the dumping thread ID starting at 1
5775 - MINOR: task: export global_task_mask
5776 - MINOR: cli/debug: add a thread dump function
5777 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
5778 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
5779 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
5780 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
5781 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
5782 - BUG/MINOR: debug: don't check the call date on tasklets
5783 - MINOR: thread: implement ha_thread_relax()
5784 - MINOR: task: put barriers after each write to curr_task
5785 - MINOR: task: always reset curr_task when freeing a task or tasklet
5786 - MINOR: stream: detach the stream from its own task on stream_free()
5787 - MEDIUM: debug/threads: implement an advanced thread dump system
5788 - REGTEST: extend the check duration on tls_health_checks and mark it slow
5789 - DOC: fix "successful" typo
5790 - MINOR: init: setenv HAPROXY_CFGFILES
5791 - MINOR: threads/init: synchronize the threads startup
5792 - MEDIUM: init/mworker: make the pipe register function a regular initcall
5793 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
5794 - CLEANUP: threads: remove the now unused START_LOCK label
5795 - MINOR: init/threads: make the global threads an array of structs
5796 - MINOR: threads: add each thread's clockid into the global thread_info
5797 - CLEANUP: stream: remove an obsolete debugging test
5798 - MINOR: tools: add dump_hex()
5799 - MINOR: debug: implement ha_panic()
5800 - MINOR: debug/cli: add some debugging commands for developers
5801 - MINOR: tools: provide a may_access() function and make dump_hex() use it
5802 - MINOR: debug: make ha_panic() report threads starting at 1
5803 - REORG: compat: move some integer limit definitions from standard.h to compat.h
5804 - REORG: threads: move the struct thread_info from global.h to hathreads.h
5805 - MINOR: compat: make sure to always define clockid_t
5806 - MINOR: threads: always place the clockid in the struct thread_info
5807 - MINOR: threads: add a thread-local thread_info pointer "ti"
5808 - MINOR: time: move the cpu, mono, and idle time to thread_info
5809 - MINOR: time: add a function to retrieve another thread's cputime
5810 - MINOR: debug: report each thread's cpu usage in "show thread"
5811 - BUILD: threads: only assign the clock_id when supported
5812 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
5813 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
5814 - MAJOR: polling: add event ports support (Solaris)
5815 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
5816 - CLEANUP: time: refine the test on _POSIX_TIMERS
5817 - MINOR: compat: define a new empty type empty_t for non-implemented fields
5818 - CLEANUP: time: switch clockid_t to empty_t when not available
5819 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
5820 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
5821 - MINOR: debug: switch to SIGURG for thread dumps
5822 - CLEANUP: threads: really move thread_info to hathreads.c
5823 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
5824 - CLEANUP: debug: always report harmless/want_rdv even without threads
5825 - MINOR: threads: implement ha_tkill() and ha_tkillall()
5826 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
5827 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
5828 - MINOR: debug: dump streams when an applet, iocb or stream is known
5829 - MINOR: threads: add a "stuck" flag to the thread_info struct
5830 - MINOR: threads: add a timer_t per thread in thread_info
5831 - MAJOR: watchdog: implement a thread lockup detection mechanism
5832 - MINOR: stream: remove the cpu time detection from process_stream()
5833 - MINOR: connection: report the mux names in "haproxy -vv"
5834 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
5835 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
5836 - MINOR: WURFL: call header_retireve_callback() in dummy library
5837 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
5838 - MINOR: WURFL: shows log messages during module initialization
5839 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
5840 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
5841 - MEDIUM: WURFL: HTX awareness.
5842 - MINOR: WURFL: module version bump to 2.0
5843 - MINOR: WURFL: do not emit warnings when not configured
5844 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
5845 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
5846 - BUILD: travis: add sanitizers to travis-ci builds
5847 - BUILD: time: remove the test on _POSIX_C_SOURCE
5848 - CLEANUP: build: rename some build macros to use the USE_* ones
5849 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
5850 - BUG/MEDIUM: dns: make the port numbers unsigned
5851 - MEDIUM: config: deprecate the antique req* and rsp* commands
5852
Willy Tarreaua257a9b2019-05-15 16:51:48 +020058532019/05/15 : 2.0-dev3
5854 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
5855 - CLEANUP: peers: remove useless annoying tabulations.
5856 - CLEANUP: peers: replace timeout constants by macros.
5857 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
5858 - DOC: The option httplog is no longer valid in a backend.
5859 - DOC: peers: Peers protocol documentation update.
5860 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
5861 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
5862 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
5863 - BUILD: Makefile: remove outdated support for dlmalloc
5864 - BUILD: Makefile: consider a variable's origin and not its value for the options list
5865 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
5866 - BUILD: Makefile: shorten default settings declaration
5867 - BUILD: Makefile: clean up the target declarations
5868 - BUILD: report the whole feature set with their status in haproxy -vv
5869 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
5870 - REGTEST: script: make the script use the new features list
5871 - REGTEST: script: remove platform-specific assigments of OPTIONS
5872 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
5873 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
5874 - BUILD/MINOR: listener: Silent a few signedness warnings.
5875 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
5876 - BUG/MEDIUM: mworker: don't free the wrong child when not found
5877 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
5878 - BUG/MAJOR: checks: segfault during tcpcheck_main
5879 - BUILD: makefile: work around an old bug in GNU make-3.80
5880 - BUILD: makefile: work around another bug in make 3.80
5881 - BUILD: http: properly mark some struct as extern
5882 - BUILD: chunk: properly declare pool_head_trash as extern
5883 - BUILD: cache: avoid a build warning with some compilers/linkers
5884 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
5885 - MINOR: tools: add an unsetenv() implementation
5886 - BUILD: re-implement an initcall variant without using executable sections
5887 - BUILD: use inttypes.h instead of stdint.h
5888 - BUILD: connection: fix naming of ip_v field
5889 - BUILD: makefile: fix build of IPv6 header on aix51
5890 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
5891 - BUILD: define unsetenv on AIX 5.1
5892 - BUILD: Makefile: disable shared cache on AIX 5.1
5893 - MINOR: ssl: Add aes_gcm_dec converter
5894 - REORG: mworker: move serializing functions to mworker.c
5895 - REORG: mworker: move signals functions to mworker.c
5896 - REORG: mworker: move IPC functions to mworker.c
5897 - REORG: mworker: move signal handlers and related functions
5898 - REORG: mworker: move mworker_cleanlisteners to mworker.c
5899 - MINOR: mworker: calloc mworker_proc structures
5900 - MINOR: mworker: don't use children variable anymore
5901 - MINOR: cli: export cli_parse_default() definition in cli.h
5902 - REORG: mworker/cli: move CLI functions to mworker.c
5903 - MEDIUM: mworker-prog: implement program for master-worker
5904 - MINOR: mworker/cli: show programs in 'show proc'
5905 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
5906 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
5907 - MINOR: cli: export HAPROXY_CLI environment variable
5908 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
5909 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
5910 - REGTEST: http-capture/h00000: Relax a regex matching the log message
5911 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
5912 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
5913 - REGTEST: log/b00000: Be sure the client always hits its timeout
5914 - REGTEST: lua/b00003: Relax the regex matching the log message
5915 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
5916 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
5917 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
5918 - BUG/MEDIUM: htx: fix random premature abort of data transfers
5919 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
5920 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
5921 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
5922 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
5923 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
5924 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
5925 - MINOR: skip get_gmtime where tm is unused
5926 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
5927 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
5928 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
5929 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
5930 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
5931 - BUG/MINOR: listener: renice the accept ring processing task
5932 - MINOR: cli/listener: report the number of accepts on "show activity"
5933 - MINOR: cli/activity: report the accept queue sizes in "show activity"
5934 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
5935 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
5936 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
5937 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
5938 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
5939 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
5940 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
5941 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
5942 - MINOR: mux-h1: Simplify handling of 1xx responses
5943 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
5944 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
5945 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
5946 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
5947 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
5948 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
5949 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
5950 - MINOR: stream: Set a flag when the stream uses the HTX
5951 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
5952 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
5953 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
5954 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
5955 - MEDIUM: muxes: Add an optional input buffer during mux initialization
5956 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
5957 - MEDIUM: muxes: Be prepared to don't own connection during the release
5958 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
5959 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
5960 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
5961 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
5962 - MAJOR: htx: Enable the HTX mode by default for all proxies
5963 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
5964 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
5965 - CLEANUP: task: do not export rq_next anymore
5966 - MEDIUM: tasks: improve fairness between the local and global queues
5967 - MEDIUM: tasks: only base the nice offset on the run queue depth
5968 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
5969 - BUG/MEDIUM: map: Fix memory leak in the map converter
5970 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
5971 - BUILD: task/thread: fix single-threaded build of task.c
5972 - BUILD: cli/threads: fix build in single-threaded mode
5973 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
5974 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
5975 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
5976 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
5977 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
5978 - BUILD: address a few cases of "static <type> inline foo()"
5979 - BUILD: do not specify "const" on functions returning structs or scalars
5980 - BUILD: htx: fix a used uninitialized warning on is_cookie2
5981 - MINOR: peers: Add a new command to the CLI for peers.
5982 - DOC: update for "show peers" CLI command.
5983 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
5984 - MEDIUM: mworker: store the leaving state of a process
5985 - MEDIUM: mworker-prog: implements 'option start-on-reload'
5986 - CLEANUP: mworker: remove the type field in mworker_proc
5987 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
5988 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
5989 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
5990 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
5991 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
5992 - BUG/MINOR: mworker: mworker_kill should apply on every children
5993 - BUG/MINOR: mworker: don't exit with an ambiguous value
5994 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
5995 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
5996 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
5997 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
5998 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
5999 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
6000 - MINOR: mux-h1: Handle read0 during TCP splicing
6001 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
6002 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
6003 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
6004 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
6005 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
6006 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
6007 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
6008 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
6009 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
6010 - BUG/MEDIUM: applets: Don't use task_in_rq().
6011 - BUG/MAJOR: task: make sure never to delete a queued task
6012 - MINOR: task/thread: factor out a wake-up condition
6013 - CLEANUP: task: remain consistent when using the task's handler
6014 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
6015 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
6016 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
6017 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
6018 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
6019 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
6020 - BUG/MINOR: mworker: disable busy polling in the master process
6021 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
6022 - MEDIUM: ssl: Give ssl_sock its own context.
6023 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
6024 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
6025 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
6026 - MEDIUM: ssl: provide our own BIO.
6027 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
6028 - MINOR: peers: adds counters on show peers about tasks calls.
6029 - MEDIUM: enable travis-ci builds
6030 - MINOR: fd: Add a counter of used fds.
6031 - MEDIUM: connections: Add a way to control the number of idling connections.
6032 - BUG/MEDIUM: maps: only try to parse the default value when it's present
6033 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
6034 - REGTEST: Missing REQUIRE_VERSION declarations.
6035 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
6036 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
6037 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
6038 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
6039 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
6040 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
6041 - MINOR: gcc: Fix a silly gcc warning in connect_server()
6042 - MINOR: ssl/cli: async fd io-handlers printable on show fd
6043 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
6044 - BUILD: add USE_WURFL to the list of known build options
6045 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
6046 - BUILD: wurfl: build fix for 1.9/2.0 code base
6047 - CLEANUP: wurfl: removed deprecated methods
6048 - DOC: wurfl: added point of contact in MAINTAINERS file
6049 - MINOR: wurfl: enabled multithreading mode
6050 - MINOR: contrib: dummy wurfl library
6051 - MINOR: dns: dns_requester structures are now in a memory pool
6052 - MINOR: dns: move callback affection in dns_link_resolution()
6053 - MINOR: obj_type: new object type for struct stream
6054 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
6055 - MINOR: log: Extract some code to send syslog messages.
6056 - REGTEST: replace LEVEL option by a more human readable one.
6057 - REGTEST: rename the reg test files.
6058 - REGTEST: adapt some reg tests after renaming.
6059 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
6060 - BUG/MAJOR: stream: Missing DNS context initializations.
6061 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
6062 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
6063 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
6064 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
6065 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
6066 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
6067 - CLEANUP: task: report calls as unsigned in show sess
6068 - MINOR: tasks/activity: report the context switch and task wakeup rates
6069 - MINOR: stream: measure and report a stream's call rate in "show sess"
6070 - MINOR: applet: measure and report an appctx's call rate in "show sess"
6071 - BUILD: extend Travis CI config to support more platforms
6072 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
6073 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
6074 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
6075 - BUILD: travis: remove the "allow_failures" entry
6076 - BUG/MINOR: activity: always initialize the profiling variable
6077 - MINOR: activity: make the profiling status per thread and not global
6078 - MINOR: activity: enable automatic profiling turn on/off
6079 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
6080 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
6081 - MINOR: connection: make the debugging helper functions safer
6082 - MINOR: stream/debug: make a stream dump and crash function
6083 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
6084 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
6085 - MEDIUM: streams: measure processing time and abort when detecting bugs
6086 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
6087 - MEDIUM: da: HTX mode support.
6088 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
6089 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
6090 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
6091 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
6092 - DOC: contrib/modsecurity: Typos and fix the reject example
6093 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
6094 - MINOR: log: Add "sample" new keyword to "log" lines.
6095 - MINOR: log: Enable the log sampling and load-balancing feature.
6096 - DOC: log: Document the sampling and load-balancing logging feature.
6097 - REGTEST: Add a new reg test for log load-balancing feature.
6098 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
6099 - REGTEST: Make this reg test be Linux specific.
6100 - CLEANUP: task: move the task_per_thread definition to task.h
6101 - MINOR: activity: report context switch counts instead of rates
6102 - MINOR: threads: Implement HA_ATOMIC_LOAD().
6103 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
6104 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
6105 - MINOR: config: Test validity of tune.maxaccept during the config parsing
6106 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
6107 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
6108 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
6109 - BUG/MINOR: haproxy: fix rule->file memory leak
6110 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
6111 - BUG/MINOR: checks: free memory allocated for tasklets
6112 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
6113 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
6114 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
6115 - MINOR: threads: flatten the per-thread cpu-map
6116 - MINOR: init/threads: remove the useless tids[] array
6117 - MINOR: init/threads: make the threads array global
6118 - BUG/MEDIUM: ssl: Use the early_data API the right way.
6119 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
6120 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
6121 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
6122 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
6123 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
6124 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
6125 - BUG/MINOR: logs/threads: properly split the log area upon startup
6126 - BUILD: extend travis-ci matrix
6127 - CLEANUP: Remove appsession documentation
6128 - DOC: Fix typo in keyword matrix
6129 - BUILD: remove "build_libressl" duplicate declaration
6130 - BUILD: travis-ci: get back to osx without openssl support
6131 - BUILD: enable several LibreSSL hacks, including
6132 - BUILD: temporarily mark LibreSSL builds as allowed to fail
6133 - BUILD: travis: TMPDIR replacement.
6134 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
6135 - MINOR: doc: Document allow-0rtt on the server line.
6136 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
6137 - MEDIUM: proto: Change the prototype of the connect() method.
6138 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
6139 - MINOR: config: Extract the code of "stick-table" line parsing.
6140 - BUILD/MINOR: stick-table: Compilation fix.
6141 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
6142 - MINOR: stick-tables: Add peers process binding computing.
6143 - MINOR: stick-table: Add prefixes to stick-table names.
6144 - MINOR: peers: Do not emit global stick-table names.
6145 - DOC: Update for "table" lines in "peers" section.
6146 - REGTEST: Add reg tests for "table" lines in "peers" sections.
6147 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
6148 - REGTEST: make the tls_health_checks test much faster
6149 - REGTEST: make the "table in peers" test require v2.0
6150 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
6151 - BUG/MEDIUM: h2/htx: always fail on too large trailers
6152 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
6153 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
6154 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
6155 - REGTEST: Flag some slow reg tests.
6156 - REGTEST: Reg tests file renaming.
6157 - REGTEST: Wrong renaming for one reg test.
6158 - REGTEST: Wrong assumption in IP:port logging test.
6159 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
6160 - MINOR: systemd: Use the variables from /etc/default/haproxy
6161 - MINOR: systemd: Make use of master socket in systemd unit
6162 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
6163 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
6164 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
6165 - CLEANUP: task: remove unneeded tests before task_destroy()
6166 - MINOR: mworker: support a configurable maximum number of reloads
6167 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
6168 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
6169 - BUG/MINOR: mux-h1: Fix the parsing of trailers
6170 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
6171 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
6172 - MINOR: htx: Don't try to append a trailer block with the previous one
6173 - MINOR: htx: Remove support for unused OOB HTX blocks
6174 - BUILD: travis-ci bugfixes and improvements
6175 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
6176 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
6177 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
6178 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
6179 - BUILD: ssl: make libressl use its own version numbers
6180 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
6181 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
6182 - BUILD: ssl: fix libressl build again after aes-gcm-enc
6183 - REORG: ssl: move openssl-compat from proto to common
6184 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
6185 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
6186 - CLEANUP: ssl: make inclusion of openssl headers safe
6187 - BUILD: add BoringSSL to travis-ci build matrix
6188 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
6189 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
6190 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
6191 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
6192 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
6193 - MEDIUM: streams: Add a new http action, disable-l7-retry.
6194 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
6195 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
6196 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
6197 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
6198 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
6199 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
6200 - BUILD: threads: fix again the __ha_cas_dw() definition
6201 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
6202 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
6203 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
6204 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
6205 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
6206 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
6207 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
6208 - BUG/MAJOR: ssl: segfault upon an heartbeat request
6209 - MINOR: spoa-server: Clone the v1.7 spoa-example project
6210 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
6211 - MINOR: spoa-server: Externalise debug functions
6212 - MINOR: spoe-server: rename "worker" functions
6213 - MINOR: spoa-server: Replace the thread init system by processes
6214 - MINOR: spoa-server: With debug mode, start only one process
6215 - MINOR: spoa-server: Allow registering external processes
6216 - MINOR: spoa-server: Allow registering message processors
6217 - MINOR: spoa-server: Load files
6218 - MINOR: spoa-server: Prepare responses
6219 - MINOR: spoa-server: Execute registered callbacks
6220 - MINOR: spoa-server: Add Lua processing
6221 - MINOR: spoa-server: Add python
6222 - MINOR/DOC: spoe-server: Add documentation
6223 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
6224 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
6225 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
6226 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
6227 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
6228 - CLEANUP: connection: remove the handle field from the wait_event struct
6229 - BUG/MINOR: log: Wrong log format initialization.
6230 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
6231 - BUG/MINOR: mworker: use after free when the PID not assigned
6232 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
6233 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
6234 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
6235 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
6236 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
6237 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
6238 - MINOR: mux-h2: add macros to check multiple stream states at once
6239 - MINOR: mux-h2: stop relying on CS_FL_REOS
6240 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
6241 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
6242 - MINOR: debug: add a new BUG_ON macro
6243 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
6244 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
6245 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
6246 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
6247
Willy Tarreau6e893b92019-03-26 05:40:51 +010062482019/03/26 : 2.0-dev2
6249 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
6250 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
6251 - MINOR: lists: Implement locked variations.
6252 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
6253 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
6254 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
6255 - MINOR: cfgparse: Add a cast to make gcc happier.
6256 - BUG/MEDIUM: standard: Wrong reallocation size.
6257 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
6258 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
6259 - MAJOR: config: disable support for nbproc and nbthread in parallel
6260 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
6261 - MAJOR: listener: do not hold the listener lock in listener_accept()
6262 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
6263 - MINOR: tools: implement functions to look up the nth bit set in a mask
6264 - MINOR: listener: pre-compute some thread counts per bind_conf
6265 - MINOR: listener: implement multi-queue accept for threads
6266 - MAJOR: listener: use the multi-queue for multi-thread listeners
6267 - MINOR: activity: add accept queue counters for pushed and overflows
6268 - MINOR: config: add global tune.listener.multi-queue setting
6269 - MAJOR: threads: enable one thread per CPU by default
6270 - DOC: update management.txt to reflect that threads are used by default
6271 - BUG/MINOR: config: don't over-count the global maxsock value
6272 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
6273 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
6274 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
6275 - MINOR: list: make the delete and pop operations idempotent
6276 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
6277 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
6278 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
6279 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
6280 - MINOR: listener: introduce listener_backlog() to report the backlog value
6281 - MINOR: listener: do not needlessly set l->maxconn
6282 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
6283 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
6284 - MINOR: peers: Add a message for heartbeat.
6285 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
6286 - BUG/MINOR: init: never lower rlim_fd_max
6287 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
6288 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
6289 - MINOR: init: make the maxpipe computation more accurate
6290 - MINOR: init: move some maxsock updates earlier
6291 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
6292 - REGTEST: fix a spurious "nbthread 4" in the connection test
6293 - DOC: update the text related to the global maxconn value
6294 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
6295 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
6296 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
6297 - MINOR: htx: unconditionally handle parsing errors in requests or responses
6298 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
6299 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
6300 - MINOR: sample: Code factorization "ungrpc" converter.
6301 - MINOR: sample: Rework gRPC converter code.
6302 - CLEANUP: wurfl: remove dead, broken and unmaintained code
6303 - MINOR: config: relax the range checks on cpu-map
6304 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
6305 - MINOR: sample: Extract some protocol buffers specific code.
6306 - DOC: Remove tabs and fixed punctuation.
6307 - MINOR: sample: Add a protocol buffers specific converter.
6308 - REGTEST: Peers reg tests.
6309 - REGTEST: Enable reg tests with HEAD HTTP method usage.
6310 - MINOR: lists: add a LIST_DEL_INIT() macro
6311 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
6312 - MINOR: listener: improve incoming traffic distribution
6313 - MINOR: tools: implement my_flsl()
6314 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
6315 - CLEANUP: listener: remove old thread bit mapping
6316 - MINOR: listener: move thr_idx from the bind_conf to the listener
6317 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
6318 - BUG/MAJOR: config: Wrong maxconn adjustment.
6319 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
6320 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
6321 - MINOR: fd: Remove debugging code.
6322 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
6323 - MINOR: threads: Implement __ha_barrier_atomic*.
6324 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
6325 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
6326 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
6327 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
6328 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
6329 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
6330 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
6331 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
6332 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
6333 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
6334 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
6335 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
6336 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
6337 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
6338 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
6339 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
6340 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
6341 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
6342 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
6343 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
6344 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
6345 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
6346 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
6347 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
6348 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
6349 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
6350 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
6351 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
6352 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
6353 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
6354 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
6355 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
6356 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
6357 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
6358 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
6359 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
6360 - MEDIUM: list: Remove useless barriers.
6361 - MEDIUM: list: Use _HA_ATOMIC_*
6362 - MEDIUM: connections: Use _HA_ATOMIC_*
6363 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
6364 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
6365 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
6366 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
6367 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
6368 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
6369 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
6370 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
6371 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
6372 - MINOR: stats: Move stuff about the stats status codes in stats files
6373 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
6374 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
6375 - BUILD: listener: shut up a build warning when threads are disabled
6376 - BUILD: Makefile: allow the reg-tests target to be verbose
6377 - BUILD: Makefile: resolve LEVEL before calling run-regtests
6378 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
6379 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
6380 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
6381 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
6382 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
6383 - MINOR: muxes: Report the Last read with a dedicated flag
6384 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
6385 - BUILD: tools: fix a build warning on some 32-bit archs
6386 - MINOR: init: report the list of optionally available services
6387 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
6388 - BUG/MINOR: cache: Fully consume large requests in the cache applet
6389 - BUG/MINOR: stats: Fully consume large requests in the stats applet
6390 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
6391 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
6392 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
6393 - MINOR: stats/cache: Handle the header Expect when applets are registered
6394 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
6395 - CLEANUP: cache: don't export http_cache_applet anymore
6396 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
6397 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
6398 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
6399 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
6400 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
6401 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
6402 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
6403 - CLEANUP: mux-h2: add some comments to help understand the code
6404 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
6405 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
6406 - BUG/MEDIUM: h2: Try to be fair when sending data.
6407 - BUG/MINOR: proto-http: Don't forward request body anymore on error
6408 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
6409 - MINOR: connection: and new flag to mark end of input (EOI)
6410 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
6411 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
6412 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
6413 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
6414 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
6415 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
6416 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
6417 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
6418 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
6419 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
6420 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
6421 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
6422 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
6423 - CONTRIB: debug: report the CS and CF's EOI flags
6424 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
6425
Willy Tarreau6c1b6672019-02-26 16:43:49 +010064262019/02/26 : 2.0-dev1
6427 - MINOR: mux-h2: only increase the connection window with the first update
6428 - REGTESTS: remove the expected window updates from H2 handshakes
6429 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
6430 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
6431 - MEDIUM: mux-h2: remove padlen during headers phase
6432 - MINOR: h2: add a bit-based frame type representation
6433 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
6434 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
6435 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
6436 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
6437 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
6438 - MINOR: buffers: add a new b_move() function
6439 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
6440 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
6441 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
6442 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
6443 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
6444 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
6445 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
6446 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
6447 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
6448 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
6449 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
6450 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
6451 - MEDIUM: servers: Be smarter when switching connections.
6452 - MEDIUM: sessions: Keep track of which connections are idle.
6453 - MINOR: payload: add sample fetch for TLS ALPN
6454 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
6455 - MINOR: channel: Add the function channel_add_input
6456 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
6457 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
6458 - BUG/MAJOR: htx: Return the good block address after a defrag
6459 - MINOR: lb: allow redispatch when using consistent hash
6460 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
6461 - BUG/MEDIUM: mux-h2: always restart reading if data are available
6462 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
6463 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
6464 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
6465 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
6466 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
6467 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
6468 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
6469 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
6470 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
6471 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
6472 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
6473 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
6474 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
6475 - MINOR: mux-h2: remove a misleading and impossible test
6476 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
6477 - MINOR: mux-h2: check for too many streams only for idle streams
6478 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
6479 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
6480 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
6481 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
6482 - MINOR: htx: add a new function to add a block without filling it
6483 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
6484 - MEDIUM: mux-h2: pass trailers to HTX
6485 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
6486 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
6487 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
6488 - MINOR: h1: make the H1 headers block parser able to parse headers only
6489 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
6490 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
6491 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
6492 - MINOR: mux-h1: Add the subscription events in "show fd" command
6493 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
6494 - BUG/MINOR: cache/htx: Be sure to count partial trailers
6495 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
6496 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
6497 - MINOR: connections: Remove a stall comment.
6498 - BUG/MEDIUM: cli: make "show sess" really thread-safe
6499 - BUILD: add a new file "version.c" to carry version updates
6500 - MINOR: stream/htx: add the HTX flags output in "show sess all"
6501 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
6502 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
6503 - BUG/MINOR: lua: bad args are returned for Lua actions
6504 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
6505 - MINOR: htx: Add an helper function to get the max space usable for a block
6506 - MINOR: channel/htx: Add HTX version for some helper functions
6507 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
6508 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
6509 - DOC: regtest: make it clearer what the purpose of the "broken" series is
6510 - REGTEST: mailers: add new test for 'mailers' section
6511 - REGTEST: Add a reg test for health-checks over SSL/TLS.
6512 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
6513 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
6514 - BUG/MINOR: compression: Disable it if another one is already in progress
6515 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
6516 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
6517 - REGTEST: Add some informatoin to test results.
6518 - MINOR: htx: Add a function to truncate all blocks after a specific offset
6519 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
6520 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
6521 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
6522 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
6523 - DOC: http-request cache-use / http-response cache-store expects cache name
6524 - REGTEST: "capture (request|response)" regtest.
6525 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
6526 - REGTEST: filters: add compression test
6527 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
6528 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
6529 - DOC: Be a bit more explicit about allow-0rtt security implications.
6530 - MINOR: mux-h1: make the mux_h1_ops struct static
6531 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
6532 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
6533 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
6534 - REGTESTS: test case for map_regm commit 271022150d
6535 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
6536 - REGTESTS: Basic tests for using maps to redirect requests / select backend
6537 - DOC: REGTESTS README varnishtest -Dno-htx= define.
6538 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
6539 - MINOR: checks: Store the proxy in checks.
6540 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
6541 - REGTEST: Switch to vtest.
6542 - REGTEST: Adapt reg test doc files to vtest.
6543 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
6544 - BUG/MINOR: base64: dec func ignores padding for output size checking
6545 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
6546 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
6547 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
6548 - BUG/MINOR: backend: balance uri specific options were lost across defaults
6549 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
6550 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
6551 - MINOR: backend: make headers and RDP cookie also use arg_str/len
6552 - MINOR: backend: add new fields in lbprm to store more LB options
6553 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
6554 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
6555 - MINOR: backend: move hash_balance_factor out of chash
6556 - MEDIUM: backend: move all LB algo parameters into an union
6557 - MINOR: backend: make the random algorithm support a number of draws
6558 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
6559 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
6560 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
6561 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
6562 - DOC: add a missing space in the documentation for bc_http_major
6563 - REGTEST: checks basic stats webpage functionality
6564 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
6565 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
6566 - DOC: add github issue templates
6567 - MINOR: cfgparse: Extract some code to be re-used.
6568 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
6569 - CLEANUP: cfgparse: Code reindentation.
6570 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
6571 - MINOR: cfgparse: Rework peers frontend init.
6572 - MINOR: cfgparse: Simplication.
6573 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
6574 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
6575 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
6576 - DOC: peers: SSL/TLS documentation for "peers"
6577 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
6578 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
6579 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
6580 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
6581 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
6582 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
6583 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
6584 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
6585 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
6586 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
6587 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
6588 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
6589 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
6590 - MINOR: h2: declare new sets of frame types
6591 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
6592 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
6593 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
6594 - BUG/MINOR: hpack: return a compression error on invalid table size updates
6595 - MINOR: server: make sure pool-max-conn is >= -1
6596 - BUG/MINOR: stream: take care of synchronous errors when trying to send
6597 - CLEANUP: server: fix indentation mess on idle connections
6598 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
6599 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
6600 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
6601 - MINOR: server: add a max-reuse parameter
6602 - MINOR: mux-h2: always consider a server's max-reuse parameter
6603 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
6604 - MINOR: stream: don't wait before retrying after a failed connection reuse
6605 - MEDIUM: h2: always parse and deduplicate the content-length header
6606 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
6607 - CLEANUP: h2: Remove debug printf in mux_h2.c
6608 - MINOR: cfgparse: make the process/thread parser support a maximum value
6609 - MINOR: threads: make MAX_THREADS configurable at build time
6610 - DOC: nbthread is no longer experimental.
6611 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
6612 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
6613 - BUG/MINOR: spoe: corrected fragmentation string size
6614 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
6615 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
6616 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
6617 - SCRIPTS: add the issue tracker URL to the announce script
6618 - MINOR: peers: Extract some code to be reused.
6619 - CLEANUP: peers: Indentation fixes.
6620 - MINOR: peers: send code factorization.
6621 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
6622 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
6623 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
6624 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
6625 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
6626 - CLEANUP: peers: Be more generic.
6627 - MINOR: peers: move error handling to reduce the size of the I/O handler.
6628 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
6629 - MINOR: peers: move send code to reduce the size of the I/O handler.
6630 - CLEANUP: peers: Remove useless statements.
6631 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
6632 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
6633 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
6634 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
6635 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
6636 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
6637 - CLEANUP: mux-h2: remove two useless but misleading assignments
6638 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
6639 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
6640 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
6641 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
6642 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
6643 - BUG/MEDIUM: peers: Handle mux creation failure.
6644 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
6645 - BUG/MEDIUM: compression: Rewrite strong ETags
6646 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
6647 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
6648 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
6649 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
6650 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
6651 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
6652 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
6653 - MINOR: h2: add a generic frame checker
6654 - MEDIUM: mux-h2: check the frame validity before considering the stream state
6655 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
6656 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
6657 - DOC: compression: Update the reasons for disabled compression
6658 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
6659 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
6660 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
6661 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
6662 - BUG/MEDIUM: peers: Peer addresses parsing broken.
6663 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
6664 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
6665 - BUG/MINOR: stream: don't close the front connection when facing a backend error
6666 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
6667 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
6668 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
6669 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
6670 - BUG/MINOR: server: fix logic flaw in idle connection list management
6671 - MINOR: mux-h2: max-concurrent-streams should be unsigned
6672 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
6673 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
6674 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
6675 - MINOR: xref: Add missing barriers.
6676 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
6677 - MINOR: debug: Add an option that causes random allocation failures.
6678 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
6679 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
6680 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
6681 - BUG/MINOR: backend: check srv_conn before dereferencing it
6682 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
6683 - BUG/MEDIUM: mux-h2: always set :authority on request output
6684 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
6685 - BUG/MINOR: threads: fix the process range of thread masks
6686 - BUG/MINOR: config: fix bind line thread mask validation
6687 - CLEANUP: threads: fix misleading comment about all_threads_mask
6688 - CLEANUP: threads: use nbits to calculate the thread mask
6689 - OPTIM: listener: optimize cache-line packing for struct listener
6690 - MINOR: tools: improve the popcount() operation
6691 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
6692 - MINOR: global: add proc_mask() and thread_mask()
6693 - MINOR: config: simplify bind_proc processing using proc_mask()
6694 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
6695 - BUG/MINOR: compression: properly report compression stats in HTX mode
6696 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
6697 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
6698 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
6699 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
6700 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
6701 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
6702 - DOC: ssl: Stop documenting ciphers example to use
6703 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
6704 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
6705 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
6706 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
6707 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
6708 - MINOR: config: make MAX_PROCS configurable at build time
6709 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
6710 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
6711 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
6712 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
6713 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
6714 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
6715 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
6716 - BUG/MAJOR: stream: avoid double free on unique_id
6717 - BUILD/MINOR: stream: avoid a build warning with threads disabled
6718 - BUILD/MINOR: tools: fix build warning in the date conversion functions
6719 - BUILD/MINOR: peers: remove an impossible null test in intencode()
6720 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
6721 - BUG/MEDIUM: peers: Missing peer initializations.
6722 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
6723 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
6724 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
6725 - BUILD/MEDIUM: initcall: Fix build on MacOS.
6726 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
6727 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
6728 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
6729 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
6730 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
6731 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
6732 - MINOR: mux-h2: Set HTX extra value when possible
6733 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
6734 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
6735 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
6736 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
6737 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
6738 - MINOR: fd: add a new my_closefrom() function to close all FDs
6739 - MINOR: checks: use my_closefrom() to close all FDs
6740 - MINOR: fd: implement an optimised my_closefrom() function
6741 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
6742 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
6743 - BUG/MAJOR: listener: Make sure the listener exist before using it.
6744 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
6745 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
6746 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
6747 - MINOR: htx: Add function to drain data from an HTX message
6748 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
6749 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
6750 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
6751 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
6752 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
6753 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
6754 - BUG/MEDIUM: h2: advertise to servers that we don't support push
6755 - MINOR: standard: Add a function to parse uints (dotted notation).
6756 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
6757 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
6758 - MINOR: sample: Add two sample converters for protocol buffers.
6759 - DOC: sample: Add gRPC related documentation.
6760
Willy Tarreaufba74ea2018-12-22 11:19:45 +010067612018/12/22 : 2.0-dev0
6762 - BUG/MAJOR: connections: Close the connection before freeing it.
6763 - REGTEST: Require the option LUA to run lua tests
6764 - REGTEST: script: Process script arguments before everything else
6765 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
6766 - REGTEST: script: Add the option --clean to remove previous log direcotries
6767 - REGTEST: script: Add the option --debug to show logs on standard ouput
6768 - REGTEST: script: Add the option --keep-logs to keep all log directories
6769 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
6770 - REGTEST: script: Print only errors in the results report
6771 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
6772 - REGTEST: Make reg-tests target support argument.
6773 - REGTEST: Fix a typo about barrier type.
6774 - REGTEST: Be less Linux specific with a syslog regex.
6775 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
6776 - REGTEST: Exclude freebsd target for some reg tests.
6777 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
6778 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
6779 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
6780 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
6781 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
6782 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
6783 - MEDIUM: mux_h1: Implement h1_show_fd.
6784 - REGTEST: script: Add support of alternatives in requited options list
6785 - REGTEST: Add a basic test for the compression
6786 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
6787 - REGTEST: A basic test for "http-buffer-request"
6788 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
6789 - MINOR: ssl: Add ssl_sock_set_alpn().
6790 - MEDIUM: checks: Add check-alpn.
6791 - wip
6792
Willy Tarreau82230502018-12-19 19:13:17 +010067932018/12/19 : 1.9.0
6794 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
6795 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
6796 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
6797 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
6798 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
6799 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
6800 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
6801 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
6802 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
6803 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
6804 - MINOR: cli/stream: add the conn_stream in "show sess" output
6805 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
6806 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
6807 - MINOR: objtype: report a few missing types in names and base pointers
6808 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
6809 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
6810 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
6811 - BUG/MINOR: mux-h1: report the correct frontend in error captures
6812 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
6813 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
6814 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
6815 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
6816 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
6817 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
6818 - MINOR: compression: Remove the thread_local variable buf_output
6819 - CLEANUP: connection: rename subscription events values and event field
6820 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
6821 - MINOR: connection: remove an unwelcome dependency on struct stream
6822 - CLEANUP: stream-int: consistently call the si/stream_int functions
6823 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
6824 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
6825 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
6826 - MEDIUM: stream-int: always consider all CS errors on the send side
6827 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
6828 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
6829 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
6830 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
6831 - MINOR: connection: add cs_set_error() to set the error bits
6832 - CLEANUP: mux-h2: make use of cs_set_error()
6833 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
6834 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
6835 - MINOR: cli/show_fd: report that a connection is back or not
6836 - SCRIPTS: add the slack channel URL to the announce script
6837 - CLEANUP: remove my name and address from the copyright banner
6838 - DOC: mention in the readme that 1.9 is a stable version now
6839
Willy Tarreau2a7d6502018-12-16 22:35:06 +010068402018/12/16 : 1.9-dev11
6841 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
6842 - REGTEST/MINOR: remove double body specification for server txresp
6843 - BUG/MEDIUM: connections: Remove error flags when retrying.
6844 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
6845 - REGTEST/MINOR: remove health-check that can make the test fail
6846 - DOC: clarify that check-sni needs an argument.
6847 - DOC: refer to check-sni in the documentation of sni
6848 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
6849 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
6850 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
6851 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
6852 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
6853 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
6854 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
6855 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
6856 - MINOR: hpack: simplify the len to bytes conversion
6857 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
6858 - MINOR: hpack: optimize header encoding for short names
6859 - CONTRIB: hpack: add a compressed stream generator for the encoder
6860 - MEDIUM: hpack: make it possible to encode any static header name
6861 - MINOR: hpack: move the length computation and encoding functions to .h
6862 - MINOR: hpack: provide a function to encode a short indexed header
6863 - MINOR: hpack: provide a function to encode a long indexed header
6864 - MINOR: hpack: provide new functions to encode the ":status" header
6865 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
6866 - MINOR: hpack: provide a function to encode an HTTP method
6867 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
6868 - MINOR: hpack: provide a function to encode an HTTP scheme
6869 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
6870 - MINOR: hpack: provide a function to encode an HTTP path
6871 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
6872 - REGTEST: add the HTTP rules test involving HTX processing
6873 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
6874 - MEDIUM: cli: rework the CLI proxy parser
6875 - MINOR: cli: parse prompt command in the CLI proxy
6876 - MINOR: cli: implements 'quit' in the CLI proxy
6877 - BUG/MINOR: cli: wait for payload data even without prompt
6878 - MEDIUM: cli: handle payload in CLI proxy
6879 - MINOR: cli: use pcli_flags for prompt activation
6880 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
6881 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
6882 - MINOR: cache: Register the cache as a data filter only if response is cacheable
6883 - MEDIUM: cache/htx: Add the HTX support into the cache
6884 - MINOR: cache: Improve and simplify the cache configuration check
6885 - MINOR: filters: Export the name of known filters
6886 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
6887 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
6888 - REORG: htx: merge types+proto into common/htx.h
6889 - REORG: http: create http_msg.c to place there some legacy HTTP parts
6890 - REORG: h1: move legacy http functions to http_msg.c
6891 - REORG: h1: move the h1_state definition to proto_http
6892 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
6893 - REORG: h1: merge types+proto into common/h1.h
6894 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
6895 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
6896 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
6897 - BUG/MINOR: mux-h2: refrain from muxing during the preface
6898 - BUG/MINOR: mux-h2: advertise a larger connection window size
6899 - DOC: master CLI documentation in management.txt
6900 - MINOR: mux-h2: avoid copying large blocks into full buffers
6901 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
6902 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
6903 - MINOR: cli: change 'show proc' output of old processes
6904 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
6905 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
6906 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
6907 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
6908 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
6909 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
6910 - REGTEST: the cache regtest requires haproxy 1.9
6911 - MEDIUM: cli: store CLI level in the appctx
6912 - MEDIUM: cli: show and change CLI permissions
6913 - CLEANUP: cli: use dedicated define instead of appctx ones
6914 - MEDIUM: cli: handle CLI level from the master CLI
6915 - BUG/MEDIUM: cli: handle correctly prefix and payload
6916 - BUILD: Makefile: Implements the help target
6917 - REGTESTS: adjust the http-rules regtest to support window updates
6918 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
6919 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
6920 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
6921 - MEDIUM: mux: Add an optional "reset" method.
6922 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
6923 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
6924 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
6925 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
6926 - MEDIUM: htx: Try to take a connection over if it has no owner.
6927 - REGTEST: Reg testing improvements.
6928 - REGTEST: Add a first test for health-checks.
6929 - REGTEST: Reg test for "check" health-check option.
6930 - REGTEST: level 1 health-check test 2.
6931 - REGTEST: Add miscellaneous reg tests for health-checks.
6932 - REGTEST: add a few HTTP messaging tests
6933 - MINOR: lb: make the leastconn algorithm more accurate
6934 - REGTEST: fix missing space in checks/s00001
6935 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
6936 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
6937 - MINOR: connection: realign empty buffers in muxes, not transport layers
6938 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
6939 - MINOR: backend: count the number of connect and reuse per server and per backend
6940 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
6941 - MINOR: tools: increase the number of ITOA strings to 16
6942 - MINOR: cache: report the number of cache lookups and cache hits
6943 - MEDIUM: tasks: check the global task mask instead of the thread number
6944 - MINOR: mworker: set all_threads_mask and pid_bit to 1
6945 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
6946 - BUG/MINOR: stats: Parse post data for HTX streams
6947 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
6948 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
6949 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
6950 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
6951 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
6952 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
6953 - MINOR: lua: Remove useless check on the messages state in HTTP functions
6954 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
6955 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
6956 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
6957 - MINOR: cli: implements 'reload' on master CLI
6958 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
6959 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
6960 - BUG/MAJOR: backend: only update server's counters when the server exists
6961 - MINOR: tools: preset the port of fd-based "sockets" to zero
6962 - BUG/MINOR: log: fix logging to both FD and IP
6963 - REGTEST: Add a reg test for HTTP cookies.
6964 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
6965 - BUILD: thread: properly report multi-thread support
6966 - BUG/MINOR: logs: leave startup-logs global and not per-thread
6967 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
6968 - BUG/MAJOR: compression/cache: Make it really works with these both filters
6969 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
6970 - MEDIUM: proxy: Set http-reuse safe as default.
6971 - MEDIUM: servers: Add a command to limit the number of idling connections.
6972 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
6973 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
6974 - MEDIUM: mux: provide the session to the init() and attach() method.
6975 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
6976 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
6977 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
6978 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
6979 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
6980 - MINOR: pools: Cast to volatile int * instead of int *.
6981 - MINOR: debug: make the ABORT_NOW macro use a volatile int
6982 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
6983 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
6984 - DOC: clarify the agent-check status line syntax
6985 - BUG/MAJOR: hpack: fix length check for short names encoding
6986 - DOC: split the README into README + INSTALL
6987
Willy Tarreau72e92272018-12-08 16:20:55 +010069882018/12/08 : 1.9-dev10
6989 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
6990 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
6991 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
6992 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
6993 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
6994 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
6995 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
6996 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
6997 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
6998 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
6999 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
7000 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
7001 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
7002 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
7003 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
7004 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
7005 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
7006 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
7007 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
7008 - BUG/MEDIUM: h1: Correctly report used data with no len.
7009 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
7010 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
7011 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
7012 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
7013 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
7014 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
7015 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
7016 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
7017 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
7018 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
7019 - MEDIUM: channel/htx: Add functions for forward HTX data
7020 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
7021 - CLEANUP: htx: Fix indentation here and there in HTX files
7022 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
7023 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
7024 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
7025 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
7026 - BUG/MEDIUM: mworker: stop every tasks in the master
7027 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
7028 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
7029 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
7030 - MINOR: stream-int: add a new blocking condition on the remote connection
7031 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
7032 - BUG/MEDIUM: lua: block on remote connection establishment
7033 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
7034 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
7035 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
7036 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
7037 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
7038 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
7039 - REGTEST: Move LUA reg test 4 to level 1.
7040 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
7041 - MEDIUM: ist: always turn header names to lower case
7042 - MINOR: h2: don't turn HTX header names to lower case anymore
7043 - MEDIUM: ist: use local conversion arrays to case conversion
7044 - MINOR: htx: switch to case sensitive search of lower case header names
7045 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
7046 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
7047 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
7048 - REGTEST: add a basic test for HTTP rules manipulating headers
7049 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
7050 - MINOR: sample: add bc_http_major
7051 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
7052 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
7053 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
7054 - MINOR: compiler: add a new macro ALREADY_CHECKED()
7055 - BUILD: h2: mark the start line already checked to avoid warnings
7056 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
7057
Willy Tarreauda7e3be2018-12-02 19:31:37 +010070582018/12/02 : 1.9-dev9
7059 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
7060 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
7061 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
7062 - MINOR: compression: always create the compression pool
7063 - BUG/MEDIUM: mworker: fix FD leak upon reload
7064 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
7065 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
7066 - MINOR: initcall: introduce a way to register init functions to call at boot
7067 - MINOR: init: process all initcalls in order at boot time
7068 - MEDIUM: init: convert all trivial registration calls to initcalls
7069 - MINOR: thread: provide a set of lock initialisers
7070 - MINOR: threads: add new macros to declare self-initializing locks
7071 - MEDIUM: init: use self-initializing spinlocks and rwlocks
7072 - MINOR: initcall: apply initcall to all register_build_opts() calls
7073 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
7074 - MINOR: initcall: use initcalls for section parsers
7075 - MINOR: memory: add a callback function to create a pool
7076 - MEDIUM: init: use initcall for all fixed size pool creations
7077 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
7078 - MEDIUM: initcall: use initcalls for a few initialization functions
7079 - MEDIUM: memory: make the pool cache an array and not a thread_local
7080 - MINOR: ssl: free ctx when libssl doesn't support NPN
7081 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
7082 - MINOR: h2: make struct h2_ops static
7083 - BUG/MEDIUM: mworker: avoid leak of client socket
7084 - REORG: mworker: declare master variable in global.h
7085 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
7086 - CLEANUP: http: Fix typo in init_http's comment
7087 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
7088 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
7089 - REGTEST/MINOR: script: add run-regtests.sh script
7090 - REGTEST: Add a basic test for the cache.
7091 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
7092 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
7093 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
7094 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
7095 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
7096 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
7097 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
7098 - REGTEST: Fix several issues.
7099 - REGTEST: lua: check socket functionality from a lua-task
7100 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
7101 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
7102 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
7103 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
7104 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
7105 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
7106 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
7107 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
7108 - MAJOR: sessions: Store multiple outgoing connections in the session.
7109 - MEDIUM: session: Steal owner-less connections on end of transaction.
7110 - MEDIUM: server: Be smarter about deciding to reuse the last server.
7111 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
7112 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
7113 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
7114 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
7115 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
7116 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
7117 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
7118 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
7119 - BUG/MINOR: connection: report mux modes when HTX is supported
7120 - MINOR: htx: add a function to cut the beginning of a DATA block
7121 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
7122 - MINOR: mux-h1: Implement get_cs_info() callback
7123 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
7124 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
7125 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
7126 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
7127 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
7128 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
7129 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
7130 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
7131 - MINOR: htx: Add function to add an HTX block just before another one
7132 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
7133 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
7134 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
7135 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
7136 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
7137 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
7138 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
7139 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
7140 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
7141 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
7142 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
7143 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
7144 - MINOR: proto_htx: Send valid HTX message to send 30x responses
7145 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
7146 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
7147 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
7148 - MINOR: mux-h1: Capture bad H1 messages
7149 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
7150 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
7151 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
7152 - MEDIUM: compression: Adapt to be compatible with the HTX representation
7153 - MINOR: h2: implement H2->HTX request header frame transcoding
7154 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
7155 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
7156 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
7157 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
7158 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
7159 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
7160 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
7161 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
7162 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
7163 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
7164 - MINOR: listener: the mux_proto entry in the bind_conf is const
7165 - MINOR: connection: create conn_get_best_mux_entry()
7166 - MINOR: server: the mux_proto entry in the server is const
7167 - MINOR: config: make sure to associate the proper mux to bind and servers
7168 - MINOR: hpack: add ":path" to the list of common header fields
7169 - MINOR: h2: add new functions to produce an HTX message from an H2 response
7170 - MINOR: mux-h2: mention that the mux is compatible with both sides
7171 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
7172 - MEDIUM: mux-h2: start to create the outgoing mux
7173 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
7174 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
7175 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
7176 - MEDIUM: mux-h2: Implement h2_attach().
7177 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
7178 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
7179 - MINOR: connection: Fix a comment.
7180 - MINOR: mux: add a "max_streams" method.
7181 - MEDIUM: servers: Add a way to keep idle connections alive.
7182 - CLEANUP: fix typos in the htx subsystem
7183 - CLEANUP: Fix typo in the chunk headers file
7184 - CLEANUP: Fix typos in the h1 subsystem
7185 - CLEANUP: Fix typos in the h2 subsystem
7186 - CLEANUP: Fix a typo in the mini-clist header
7187 - CLEANUP: Fix a typo in the proto_htx subsystem
7188 - CLEANUP: Fix typos in the proto_tcp subsystem
7189 - CLEANUP: Fix a typo in the signal subsystem
7190 - CLEANUP: Fix a typo in the session subsystem
7191 - CLEANUP: Fix a typo in the queue subsystem
7192 - CLEANUP: Fix typos in the shctx subsystem
7193 - CLEANUP: Fix typos in the socket pair protocol subsystem
7194 - CLEANUP: Fix typos in the map management functions
7195 - CLEANUP: Fix typo in the fwrr subsystem
7196 - CLEANUP: Fix typos in the cli subsystem
7197 - CLEANUP: Fix typo in the 51d subsystem
7198 - CLEANUP: Fix a typo in the base64 subsystem
7199 - CLEANUP: Fix a typo in the connection subsystem
7200 - CLEANUP: Fix a typo in the protocol header file
7201 - CLEANUP: Fix a typo in the checks header file
7202 - CLEANUP: Fix typos in the file descriptor subsystem
7203 - CLEANUP: Fix a typo in the listener subsystem
7204 - BUG/MINOR: lb-map: fix unprotected update to server's score
7205 - BUILD: threads: fix minor build warnings when threads are disabled
7206
Willy Tarreau0b936ad2018-11-25 09:16:46 +010072072018/11/25 : 1.9-dev8
7208 - REORG: config: extract the global section parser into cfgparse-global
7209 - REORG: config: extract the proxy parser into cfgparse-listen.c
7210 - BUILD: update the list of supported targets and compilers in makefile and readme
7211 - BUILD: reorder the objects in the makefile
7212 - BUILD: Makefile: make "V=1" show some of the commands that are executed
7213 - BUILD: Makefile: add the quiet mode to a few more targets
7214 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
7215 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
7216 - MINOR: cli: format `show proc` to be more readable
7217 - MINOR: cli: displays uptime in `show proc`
7218 - MINOR: cli: show master information in 'show proc'
7219 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
7220 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
7221 - BUG/MINOR: mux-h1: Enable keep-alive on server side
7222 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
7223 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
7224 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
7225 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
7226 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
7227 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
7228 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
7229 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
7230 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
7231 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
7232 - MEDIUM: mworker: wait mode use standard init code path
7233 - MINOR: log: introduce ha_notice()
7234 - MINOR: mworker: use ha_notice to announce a new worker
7235 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
7236 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
7237 - MEDIUM: signal: signal_unregister() removes every handlers
7238 - BUG/MEDIUM: mworker: unregister the signals of main()
7239 - MINOR: cli: add a few missing includes in proto/cli.h
7240 - REORG: time/activity: move activity measurements to activity.{c,h}
7241 - MINOR: activity: report the average loop time in "show activity"
7242 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
7243 - MEDIUM: tasks: collect per-task CPU time and latency
7244 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
7245 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
7246 - BUG/MINOR: cli: Fix memory leak
7247 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
7248 - MINOR: poller: move the call of tv_update_date() back to the pollers
7249 - MINOR: polling: add an option to support busy polling
7250 - MINOR: server: Add "alpn" and "npn" keywords.
7251 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
7252 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
7253 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
7254 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
7255 - REGTEST: add the option to test only a specific set of files
7256 - REGTEST: add a test for connections to a "dispatch" address
7257 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
7258 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
7259 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
7260 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
7261 - MEDIUM: servers: Store the connection in the SI until we have a mux.
7262 - BUG/MEDIUM: h2: wake the processing task up after demuxing
7263 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
7264
Willy Tarreau5c0e41b2018-11-18 22:33:00 +010072652018/11/18 : 1.9-dev7
7266 - BUILD: cache: fix a build warning regarding too large an integer for the age
7267 - CLEANUP: fix typos in the comments of the Makefile
7268 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
7269 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
7270 - CLEANUP: fix typos in comments for contrib/spoa_example
7271 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
7272 - DOC: Fix typos in README and CONTRIBUTING
7273 - MINOR: log: slightly improve error message syntax on log failure
7274 - DOC: logs: the format directive was missing from the second log part
7275 - MINOR: log: report the number of dropped logs in the stats
7276 - MEDIUM: log: add support for logging to existing file descriptors
7277 - MEDIUM: log: support a new "short" format
7278 - MEDIUM: log: add a new "raw" format
7279 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
7280 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
7281 - MINOR: namespaces: don't build namespace.c if disabled
7282 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
7283 - MINOR: http: Add new "early-hint" http-request action.
7284 - MINOR: http: Make new "early-hint" http-request action really be parsed.
7285 - MINOR: http: Implement "early-hint" http request rules.
7286 - MINOR: doc: Add information about "early-hint" http-request action.
7287 - DOC: early-hints: fix truncated line.
7288 - MINOR: mworker: only close std{in,out,err} in daemon mode
7289 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
7290 - BUG/MEDIUM: Make sure stksess is properly aligned.
7291 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
7292 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
7293 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
7294 - CONTRIB: debug: fix build related to conn_stream flags change
7295 - REGTEST: fix scripts 1 and 3 to accept development version
7296 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
7297 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
7298 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
7299 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
7300 - MEDIUM: jobs: support unstoppable jobs for soft stop
7301 - MEDIUM: listeners: support unstoppable listener
7302 - MEDIUM: cli: worker socketpair is unstoppable
7303 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
7304 - MINOR: stream: move the conn_stream specific calls to the stream-int
7305 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
7306 - CLEANUP: h2: minimum documentation for recent API changes
7307 - MINOR: mux: implement a get_first_cs() method
7308 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
7309 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
7310 - MINOR: stream-int: expand the flags to 32-bit
7311 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
7312 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
7313 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
7314 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
7315 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
7316 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
7317 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
7318 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
7319 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
7320 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
7321 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
7322 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
7323 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
7324 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
7325 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
7326 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
7327 - MEDIUM: connections: Wait until the connection is established to try to recv.
7328 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
7329 - MINOR: mux: Add a new "avail_streams" method.
7330 - MINOR: mux: Add a destroy() method.
7331 - MINOR: sessions: Start to store the outgoing connection in sessions.
7332 - MAJOR: connections: Detach connections from streams.
7333 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
7334 - MINOR: htx: Add proto_htx.c file
7335 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
7336 - MINOR: http: Add standalone functions to parse a start-line or a header
7337 - MINOR: http: Call http_send_name_header with the stream instead of the txn
7338 - MINOR: conn_stream: Add a flag to notify the SI some data were received
7339 - MINOR: http: Add macros to check if a stream uses the HTX representation
7340 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
7341 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
7342 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
7343 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
7344 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
7345 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
7346 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
7347 - MINOR: proto_htx: Add some functions to handle HTX messages
7348 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
7349 - MINOR: http_htx: Add functions to replace part of the start-line
7350 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
7351 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
7352 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
7353 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
7354 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
7355 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
7356 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
7357 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
7358 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
7359 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
7360 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
7361 - MINOR: proto_htx: Add functions htx_send_name_header
7362 - MINOR: proto_htx: Add functions htx_perform_server_redirect
7363 - MINOR: proto_htx: Add functions to handle the stats applet
7364 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
7365 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
7366 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
7367 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
7368 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
7369 - MINOR: http_fetch: Add smp_prefetch_htx
7370 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
7371 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
7372 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
7373 - MINOR: stream: Don't reset sov value with HTX messages
7374 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
7375 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
7376 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
7377 - CLEANUP: Fix some typos in the haproxy subsystem
7378 - CLEANUP: Fix typos in the dns subsystem
7379 - CLEANUP: Fix typos in the pattern subsystem
7380 - CLEANUP: fix 2 typos in the xxhash subsystem
7381 - CLEANUP: fix a few typos in the comments of the server subsystem
7382 - CLEANUP: fix a misspell in tests/filltab25.c
7383 - CLEANUP: fix a typo found in the stream subsystem
7384 - CLEANUP: fix typos in comments in ebtree
7385 - CLEANUP: fix typos in reg-tests
7386 - CLEANUP: fix typos in the comments of the vars subsystem
7387 - CLEANUP: fix typos in the hlua_fcn subsystem
7388 - CLEANUP: fix typos in the proto_http subsystem
7389 - CLEANUP: fix typos in the proxy subsystem
7390 - CLEANUP: fix typos in the ssl_sock subsystem
7391 - DOC: Fix typos in different subsections of the documentation
7392 - DOC: fix a few typos in the documentation
7393 - MINOR: Fix an error message thrown when we run out of memory
7394 - MINOR: Fix typos in error messages in the proxy subsystem
7395 - MINOR: fix typos in the examples files
7396 - CLEANUP: Fix a typo in the stats subsystem
7397 - CLEANUP: Fix typos in the acl subsystem
7398 - CLEANUP: Fix typos in the cache subsystem
7399 - CLEANUP: Fix typos in the cfgparse subsystem
7400 - CLEANUP: Fix typos in the filters subsystem
7401 - CLEANUP: Fix typos in the http subsystem
7402 - CLEANUP: Fix typos in the log subsystem
7403 - CLEANUP: Fix typos in the peers subsystem
7404 - CLEANUP: Fix typos in the regex subsystem
7405 - CLEANUP: Fix typos in the sample subsystem
7406 - CLEANUP: Fix typos in the spoe subsystem
7407 - CLEANUP: Fix typos in the standard subsystem
7408 - CLEANUP: Fix typos in the stick_table subsystem
7409 - CLEANUP: Fix typos in the task subsystem
7410 - MINOR: Fix typo in error message in the standard subsystem
7411 - CLEANUP: fix typos in the comments of hlua
7412 - MINOR: Fix typo in the error 500 output of hlua
7413 - MINOR: Fix a typo in a warning message in the spoe subsystem
7414
Willy Tarreau96079492018-11-11 10:43:39 +010074152018/11/11 : 1.9-dev6
7416 - BUG/MEDIUM: tools: fix direction of my_ffsl()
7417 - BUG/MINOR: cli: forward the whole command on master CLI
7418 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
7419 - MINOR: compat: automatically detect support for crypt_r()
7420 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
7421 - DOC: split the http-request actions in their own section
7422 - DOC: split the http-response actions in their own section
7423 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
7424 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
7425 - MINOR: stats: report the number of active jobs and listeners in "show info"
7426 - MINOR: stats: report the number of active peers in "show info"
7427 - MINOR: stats: report the number of currently connected peers
7428 - MINOR: cli: show the number of reload in 'show proc'
7429 - MINOR: cli: can't connect to the target CLI
7430 - MEDIUM: mworker: does not create the CLI proxy when no listener
7431 - MINOR: mworker: displays more information when leaving
7432 - MEDIUM: mworker: exit with the incriminated exit code
7433 - MINOR: mworker: displays a message when a worker is forked
7434 - MEDIUM: mworker: leave when the master die
7435 - CLEANUP: stream-int: retro-document si_cs_io_cb()
7436 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
7437 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
7438 - BUG/MEDIUM: cli: crash when trying to access a worker
7439 - DOC: restore note about "independant" typo
7440 - MEDIUM: stream: implement stream_buf_available()
7441 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
7442 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
7443 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
7444 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
7445 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
7446 - MINOR: stream-int: make it clear that si_ops cannot be null
7447 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
7448 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
7449 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
7450 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
7451 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
7452 - MINOR: stream-int: replace si_update() with si_update_both()
7453 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
7454 - CLEANUP: stream-int: remove the now unused si->update() function
7455 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
7456 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
7457 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
7458
Willy Tarreaubddf2922018-10-28 20:39:31 +010074592018/10/28 : 1.9-dev5
7460 - BUILD: Makefile: add the new ERR variable to force -Werror
7461 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
7462 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
7463 - CLEANUP: http: Remove the unused function http_find_header
7464 - MINOR: h1: Export some functions parsing the value of some HTTP headers
7465 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
7466 - MINOR: proxy: add a new option "http-use-htx"
7467 - BUG/MEDIUM: pools: fix the minimum allocation size
7468 - MINOR: shctx: Shared objects block by block allocation.
7469 - MINOR: cache: Larger HTTP objects caching.
7470 - MINOR: shctx: Add a maximum object size parameter.
7471 - MINOR: cache: Add "max-object-size" option.
7472 - DOC: Update about the cache support for big objects.
7473 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
7474 - BUG/MINOR: cache: Wrong usage of shctx_init().
7475 - BUG/MINOR: ssl: Wrong usage of shctx_init().
7476 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
7477 - MINOR: shctx: Change max. object size type to unsigned int.
7478 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
7479 - CLEANUP: tools: fix misleading comment above function LIM2A
7480 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
7481 - BUG/MINOR: only mark connections private if NTLM is detected
7482 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
7483 - MINOR: stream: don't prune variables if the list is empty
7484 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
7485 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
7486 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
7487 - MEDIUM: stream: don't try to send first in process_stream()
7488 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
7489 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
7490 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
7491 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
7492 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
7493 - MINOR: mworker: number of reload in the life of a worker
7494 - MEDIUM: mworker: each worker socketpair is a CLI listener
7495 - REORG: mworker: move struct mworker_proc to global.h
7496 - MINOR: server: export new_server() function
7497 - MEDIUM: mworker: move proc_list gen before proxies startup
7498 - MEDIUM: mworker: add proc_list in global.h
7499 - MEDIUM: mworker: proxy for the master CLI
7500 - MEDIUM: mworker: create CLI listeners from argv[]
7501 - MEDIUM: cli: disable some keywords in the master
7502 - MEDIUM: mworker: find the server ptr using a CLI prefix
7503 - MEDIUM: cli: 'show proc' displays processus
7504 - MEDIUM: cli: implement 'mode cli' proxy analyzers
7505 - MINOR: cli: displays sockpair@ in "show cli sockets"
7506 - MEDIUM: cli: enable "show cli sockets" for the master
7507 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
7508 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
7509 - MEDIUM: mworker: stop the master proxy in the workers
7510 - MEDIUM: channel: reorder the channel analyzers for the cli
7511 - MEDIUM: cli: write a prompt for the CLI proxy of the master
7512 - MINOR: cli: helper to write an response message and close
7513 - MINOR: cache: Add "Age" header.
7514 - REGTEST: make the IP+port logging test more reliable
7515 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
7516 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
7517 - BUG/MINOR: backend: assign the wait list after the error check
7518
Willy Tarreau01fbe742018-10-21 20:28:30 +020075192018/10/21 : 1.9-dev4
7520 - BUILD: Allow configuration of pcre-config path
7521 - DOC: clarify force-private-cache is an option
7522 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
7523 - REORG: http: move the code to different files
7524 - REORG: http: move HTTP rules parsing to http_rules.c
7525 - CLEANUP: http: remove some leftovers from recent cleanups
7526 - BUILD: Makefile: add a "make opts" target to simply show the build options
7527 - BUILD: Makefile: speed up compiler options detection
7528 - BUG/MINOR: backend: check that the mux installed properly
7529 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
7530 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
7531 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
7532 - MINOR: ssl: cleanup old openssl API call
7533 - MINOR: ssl: generate-certificates for BoringSSL
7534 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
7535 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
7536 - CLEANUP: haproxy: Remove unused variable
7537 - CLEANUP: h1: Fix debug warnings for h1 headers
7538 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
7539 - MEDIUM: task: perform a single tree lookup per run queue batch
7540 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
7541 - BUG/MINOR: threads: move declaration of capabilities to config.h
7542 - OPTIM: tools: optimize my_ffsl() for x86_64
7543 - BUG/MINOR: h2: null-deref
7544 - BUG/MINOR: checks: queues null-deref
7545 - MINOR: connections: Introduce an unsubscribe method.
7546 - MEDIUM: connections: Change struct wait_list to wait_event.
7547 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
7548 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
7549 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
7550 - MINOR: http: Move comment about some HTTP macros in the right header file
7551 - MINOR: stats: Add missing include
7552 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
7553 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
7554 - MEDIUM: http: Ignore http-tunnel option on backend
7555 - MINOR: http: Use same flag for httpclose and forceclose options
7556 - MINOR: h1: Add EOH marker during headers parsing
7557 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
7558 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
7559 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
7560 - MINOR: log: make sess_log() support sess=NULL
7561 - MINOR: chunk: add chunk_cpy() and chunk_cat()
7562 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
7563 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
7564 - MINOR: h2: don't try to send data before preface
7565 - MINOR: h2: unify the mux init function
7566 - MINOR: h2: retrieve the front proxy from the caller instead of the session
7567 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
7568 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
7569 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
7570 - BUG/MEDIUM: stream: don't crash on out-of-memory
7571 - BUILD: compiler: add a new statement "__unreachable()"
7572 - BUILD: lua: silence some compiler warnings about potential null derefs
7573 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
7574 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
7575 - BUILD: stick-table: make sure not to fail on task_new() during initialization
7576 - BUILD: peers: check allocation error during peers_init_sync()
7577 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
7578 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
7579 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
7580 - MAJOR: tasks: create per-thread wait queues
7581 - OPTIM: tasks: group all tree roots per cache line
7582 - DOC: Fix a few typos
7583 - MINOR: pools: allocate most memory pools from an array
7584 - MINOR: pools: split pool_free() in the lockfree variant
7585 - MEDIUM: pools: implement a thread-local cache for pool entries
7586 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
7587 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
7588 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
7589 - MINOR: lua: all functions calling lua_yieldk() may return
7590 - BUILD: lua: silence some compiler warnings after WILL_LJMP
7591 - BUILD: Makefile: silence an option conflict warning with clang
7592 - MINOR: server: Use memcpy() instead of strncpy().
7593 - CLEANUP: state-file: make the path concatenation code a bit more consistent
7594 - MINOR: build: Disable -Wstringop-overflow.
7595 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
7596 - MINOR: peers: use defines instead of enums to appease clang.
7597 - DOC: fix reference to map files in MAINTAINERS
7598 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
7599 - MINOR: poller: move time and date computation out of the pollers
7600 - BUILD: memory: fix pointer declaration for atomic CAS
7601 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
7602 - MINOR: time: add now_mono_time() and now_cpu_time()
7603 - MEDIUM: time: measure the time stolen by other threads
7604 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7605 - BUILD: compiler: rename __unreachable() to my_unreachable()
7606 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
7607 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7608 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
7609 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
7610 - BUG/MEDIUM: stream: Make sure polling is right on retry.
7611 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
7612 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
7613 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
7614 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
7615 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
7616 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
7617
Willy Tarreau27010f02018-09-29 20:17:33 +020076182018/09/29 : 1.9-dev3
7619 - BUG/MINOR: h1: don't consider the status for each header
7620 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
7621 - MINOR: h1: parse the Connection header field
7622 - DOC: Fix typos in lua documentation
7623 - MINOR: h1: Add H1_MF_XFER_LEN flag
7624 - MINOR: http: add http_hdr_del() to remove a header from a list
7625 - MINOR: h1: add headers to the list after controls, not before
7626 - MEDIUM: h1: better handle transfer-encoding vs content-length
7627 - MEDIUM: h1: deduplicate the content-length header
7628 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
7629 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
7630 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
7631 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
7632 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
7633 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
7634 - MINOR: stream-int: make si_appctx() never fail
7635 - BUILD: ssl_sock: remove build warnings on potential null-derefs
7636 - BUILD: stats: remove build warnings on potential null-derefs
7637 - BUILD: stream: address null-deref build warnings at -Wextra
7638 - BUILD: http: address a couple of null-deref warnings at -Wextra
7639 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
7640 - BUILD: dns: fix null-deref build warning at -Wextra
7641 - BUILD: checks: silence a null-deref build warning at -Wextra
7642 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
7643 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
7644 - BUILD: sockpair: silence a build warning at -Wextra
7645 - BUILD: build with -Wextra and sort out certain warnings
7646 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
7647 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
7648 - DOC: Update configuration doc about the maximum number of stick counters.
7649 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
7650 - MINOR: h2/stream_interface: Reintroduce te wake() method.
7651 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
7652 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
7653 - MEDIUM: lua: Add stick table support for Lua.
7654
Willy Tarreau253006d2018-09-12 18:59:48 +020076552018/09/12 : 1.9-dev2
7656 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
7657 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
7658 - BUG/MEDIUM: servers: check the queues once enabling a server
7659 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
7660 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
7661 - CLEANUP: backend: Move mux install to call it at only one place
7662 - MINOR: conn_stream: add an tx buffer to the conn_stream
7663 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
7664 - MINOR: backend: Try to find the best mux for outgoing connections
7665 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
7666 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
7667 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
7668 - MINOR: mux: Print the list of existing mux protocols during HA startup
7669 - MEDIUM: checks: use the new rendez-vous point to spread check result
7670 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
7671 - MINOR: threads: remove the previous synchronization point
7672 - MAJOR: server: make server state changes synchronous again
7673 - CLEANUP: server: remove the update list and the update lock
7674 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
7675 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
7676 - MINOR: mux: Change get_mux_proto to get an ist as parameter
7677 - MINOR: mux: Improve the message with the list of existing mux protocols
7678 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
7679 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
7680 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
7681 - BUG/MEDIUM: connection/mux: take care of serverless proxies
7682 - MINOR: queue: make sure the pendconn is released before logging
7683 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
7684 - MINOR: queue: store the queue index in the stream when enqueuing
7685 - MINOR: queue: replace the linked list with a tree
7686 - MEDIUM: add set-priority-class and set-priority-offset
7687 - MEDIUM: queue: adjust position based on priority-class and priority-offset
7688 - DOC: update the roadmap about priority queues
7689 - BUG/MINOR: ssl: empty connections reported as errors.
7690 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
7691 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
7692 - MINOR: connections: Get rid of txbuf.
7693 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
7694 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
7695 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
7696 - MINOR: stream_interface: Give stream_interface its own wait_list.
7697 - MINOR: mux_h2: Don't use h2_send() as a callback.
7698 - MINOR: checks: Add event_srv_chk_io().
7699 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
7700 - BUG/MEDIUM: sessions: Don't use t->state.
7701 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
7702 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
7703 - BUG/MINOR: map: fix map_regm with backref
7704 - DOC: dns: explain set server ... fqdn requires resolver
7705 - DOC: add documentation for prio_class and prio_offset sample fetches.
7706 - DOC: ssl: Use consistent naming for TLS protocols
7707 - DOC: update the layering design notes
7708 - MINOR: tasks: Don't special-case when nbthreads == 1
7709 - MINOR: fd cache: And the thread_mask with all_threads_mask.
7710 - BUG/MEDIUM: lua: socket timeouts are not applied
7711 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
7712 - BUG/MEDIUM: server: update our local state before propagating changes
7713 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
7714 - DOC: server/threads: document which functions need to be called with/without locks
7715 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
7716 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
7717 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
7718 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
7719 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
7720 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
7721 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
7722 - BUG/MEDIUM: connection: don't forget to always delete the list's head
7723 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
7724 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
7725 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
7726 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
7727 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
7728 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
7729 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
7730 - BUG/MEDIUM: connection: don't store recv() result into trash.data
7731 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
7732 - MINOR: chunk: remove impossible tests on negative chunk->data
7733 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
7734 - DOC: Fix spelling error in configuration doc
7735 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
7736 - REGTEST/MINOR: Add a new class of regression testing files.
7737 - BUG/MEDIUM: unix: provide a ->drain() function
7738 - MINOR: connection: make conn_sock_drain() work for all socket families
7739 - BUG/MINOR: lua: Bad HTTP client request duration.
7740 - REGEST/MINOR: Add reg testing files.
7741 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
7742 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
7743 - BUG/MEDIUM: lua: reset lua transaction between http requests
7744 - MINOR: add be_conn_free sample fetch
7745 - MINOR: Add srv_conn_free sample fetch
7746 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
7747 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
7748 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
7749 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
7750 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
7751 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
7752 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
7753 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
7754 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
7755 - MINOR: tools: make date2str_log() take some consts
7756 - MINOR: thread: implement HA_ATOMIC_XADD()
7757 - BUG/MINOR: stream: use atomic increments for the request counter
7758 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
7759 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
7760 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
7761 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
7762 - MINOR: log: make the backend fall back to the frontend when there's no stream
7763 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
7764 - MINOR: log: don't unconditionally pick log info from s->logs
7765 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
7766 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
7767 - MINOR: log: do not dereference a null stream to access captures
7768 - MINOR: log: be sure not to dereference a null stream for a target
7769 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
7770 - MINOR: log: use NULL for the unique_id if there is no stream
7771 - MINOR: log: keep a copy of s->flags early to avoid a dereference
7772 - MINOR: log: use zero as the request counter if there is no stream
7773 - MEDIUM: log: make sess_build_logline() support being called with no stream
7774 - MINOR: log: provide a function to emit a log for a session
7775 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
7776 - BUG/MINOR: h1: fix buffer shift after realignment
7777 - MINOR: connection: make the initialization more consistent
7778 - MINOR: connection: add new function conn_get_proxy()
7779 - MINOR: connection: add new function conn_is_back()
7780 - MINOR: log: One const should be enough.
7781 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
7782 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
7783 - MINOR: snapshot: restart on the event ID and not the stream ID
7784 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
7785 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
7786 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
7787 - MINOR: proxy: add a new generic proxy_capture_error()
7788 - MINOR: http: make the HTTP error capture rely on the generic proxy code
7789 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
7790 - REORG: cli: move the "show errors" handler from http to proxy
7791 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
7792 - MEDIUM: snapshots: dynamically allocate the snapshots
7793 - MEDIUM: snapshot: merge the captured data after the descriptor
7794 - MEDIUM: mworker: remove register/unregister signal functions
7795 - MEDIUM: mworker: use the haproxy poll loop
7796 - BUG/MINOR: mworker: no need to stop peers for each proxy
7797 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
7798 - MEDIUM: mworker: block SIGCHLD until the master is ready
7799 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
7800 - MEDIUM: startup: unify signal init between daemon and mworker mode
7801 - MINOR: mworker: don't deinit the poller fd when in wait mode
7802 - MEDIUM: mworker: master wait mode use its own initialization
7803 - MEDIUM: mworker: replace the master pipe by socketpairs
7804 - MINOR: mworker: keep and clean the listeners
7805 - MEDIUM: threads: close the thread-waker pipe during deinit
7806 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
7807 - REORG: http: move the HTTP semantics definitions to http.h/http.c
7808 - REORG: http: move http_get_path() to http.c
7809 - REORG: http: move error codes production and processing to http.c
7810 - REORG: http: move the log encoding tables to log.c
7811 - REORG: http: move some header value processing functions to http.c
7812 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
7813 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
7814 - MEDIUM: protocol: sockpair protocol
7815 - TESTS: add a python wrapper for sockpair@
7816 - BUG/MINOR: server: Crash when setting FQDN via CLI.
7817 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
7818 - BUILD: fix build without thread
7819 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
7820 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
7821 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
7822 - MEDIUM: connections: Get rid of the recv() method.
7823 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
7824 - MEDIUM: h2: always subscribe to receive if allowed.
7825 - MEDIUM: h2: Don't use a wake() method anymore.
7826 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
7827 - MINOR: connections: Add a "handle" field to wait_list.
7828 - MEDIUM: mux_h2: Revamp the send path when blocking.
7829 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
7830 - MINOR: checks: Give checks their own wait_list.
7831 - MINOR: conn_streams: Remove wait_list from conn_streams.
7832 - REORG: h1: create a new h1m_state
7833 - MINOR: h1: add the restart offsets into struct h1m
7834 - MINOR: h1: remove the unused states from h1m_state
7835 - MINOR: h1: provide a distinct init() function for request and response
7836 - MINOR: h1: add a message flag to indicate that a message carries a response
7837 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
7838 - MINOR: h1: properly pre-initialize err_pos to -2
7839 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
7840 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
7841 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
7842 - MEDIUM: h1: make the parser support a pointer to a start line
7843 - MEDIUM: h1: let the caller pass the initial parser's state
7844 - MINOR: h1: make the message parser support a null <hdr> argument
7845 - MEDIUM: h1: support partial message parsing
7846 - MEDIUM: h1: remove the useless H1_MSG_BODY state
7847 - MINOR: h2: store the HTTP status into the H2S, not the H1M
7848 - MINOR: h1: remove the HTTP status from the H1M struct
7849 - MEDIUM: h1: implement the request parser as well
7850 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
7851 - MINOR: connection: pass the proxy when creating a connection
7852 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
7853 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
7854 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
7855
Willy Tarreau65e94d12018-08-02 18:12:50 +020078562018/08/02 : 1.9-dev1
7857 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
7858 - DOC: cache: update sections and fix some typos
7859 - BUILD/MINOR: deviceatlas: enable thread support
7860 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
7861 - BUG/MEDIUM: ssl: don't allocate shctx several time
7862 - BUG/MEDIUM: cache: bad computation of the remaining size
7863 - BUILD: checks: don't include server.h
7864 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
7865 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
7866 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
7867 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
7868 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
7869 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
7870 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
7871 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
7872 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
7873 - MINOR: config: report when "monitor fail" rules are misplaced
7874 - BUG/MINOR: mworker: fix validity check for the pipe FDs
7875 - BUG/MINOR: mworker: detach from tty when in daemon mode
7876 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
7877 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
7878 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
7879 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
7880 - BUG/MINOR: hpack: fix debugging output of pseudo header names
7881 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
7882 - BUG/MINOR: hpack: reject invalid header index
7883 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
7884 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
7885 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
7886 - BUG/MINOR: h2: try to abort closed streams as soon as possible
7887 - BUG/MINOR: h2: ":path" must not be empty
7888 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
7889 - BUG/MINOR: h2: the TE header if present may only contain trailers
7890 - BUG/MEDIUM: h2: enforce the per-connection stream limit
7891 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
7892 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
7893 - BUG/MINOR: h2: properly check PRIORITY frames
7894 - BUG/MINOR: h2: reject response pseudo-headers from requests
7895 - BUG/MEDIUM: h2: remove connection-specific headers from request
7896 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
7897 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
7898 - BUG/MINOR: action: Don't check http capture rules when no id is defined
7899 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
7900 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
7901 - BUG/MEDIUM: mworker: also close peers sockets in the master
7902 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
7903 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
7904 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
7905 - BUG/MEDIUM: h2: fix handling of end of stream again
7906 - MINOR: mworker: Update messages referencing exit-on-failure
7907 - MINOR: mworker: Improve wording in `void mworker_wait()`
7908 - CONTRIB: halog: Add help text for -s switch in halog program
7909 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
7910 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
7911 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
7912 - DOC: notifications: add precisions about thread usage
7913 - BUG/MEDIUM: lua/notification: memory leak
7914 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
7915 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
7916 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
7917 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
7918 - BUG/MEDIUM: h2: work around a connection API limitation
7919 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
7920 - MINOR: h2: store the demux padding length in the h2c struct
7921 - BUG/MEDIUM: h2: support uploading partial DATA frames
7922 - MINOR: h2: don't demand that a DATA frame is complete before processing it
7923 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
7924 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
7925 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
7926 - BUG/MEDIUM: h2: fix stream limit enforcement
7927 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
7928 - MINOR: sample: add len converter
7929 - BUG: MAJOR: lb_map: server map calculation broken
7930 - BUG: MINOR: http: don't check http-request capture id when len is provided
7931 - MINOR: sample: rename the "len" converter to "length"
7932 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
7933 - DOC/MINOR: intro: typo, wording, formatting fixes
7934 - MINOR: netscaler: respect syntax
7935 - MINOR: netscaler: remove the use of cip_magic only used once
7936 - MINOR: netscaler: rename cip_len to clarify its uage
7937 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
7938 - BUG/MAJOR: netscaler: address truncated CIP header detection
7939 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
7940 - MEDIUM: netscaler: do not analyze original IP packet size
7941 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
7942 - MINOR: spoe: add force-set-var option in spoe-agent configuration
7943 - CONTRIB: iprange: Fix compiler warning in iprange.c
7944 - CONTRIB: halog: Fix compiler warnings in halog.c
7945 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
7946 - MINOR: mux: add flags to describe a mux's capabilities
7947 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
7948 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
7949 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
7950 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
7951 - MINOR: http: adjust the list of supposedly cacheable methods
7952 - MINOR: http: update the list of cacheable status codes as per RFC7231
7953 - MINOR: http: start to compute the transaction's cacheability from the request
7954 - BUG/MINOR: http: do not ignore cache-control: public
7955 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
7956 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
7957 - MINOR: http: add a function to check request's cache-control header field
7958 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
7959 - BUG/MEDIUM: cache: replace old object on store
7960 - BUG/MEDIUM: cache: respect the request cache-control header
7961 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
7962 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
7963 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
7964 - BUG/MEDIUM: h2: properly handle and report some stream errors
7965 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
7966 - DOC/MINOR: configuration: typo, formatting fixes
7967 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
7968 - BUG/MEDIUM: mworker: don't close stdio several time
7969 - MINOR: don't close stdio anymore
7970 - BUG/MEDIUM: http: don't automatically forward request close
7971 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
7972 - MINOR: h2: add a function to report pseudo-header names
7973 - DEBUG: hpack: make hpack_dht_dump() expose the output file
7974 - DEBUG: hpack: add more traces to the hpack decoder
7975 - CONTRIB: hpack: add an hpack decoder
7976 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
7977 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
7978 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
7979 - CLEANUP: rbtree: remove
7980 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
7981 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
7982 - DOC: lua: Fix typos in comments of hlua_socket_receive
7983 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
7984 - BUG/MINOR: lua: Fix return value of Socket.settimeout
7985 - MINOR: dns: Handle SRV record weight correctly.
7986 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
7987 - MINOR: hathreads: add support for gcc < 4.7
7988 - BUILD/MINOR: ancient gcc versions atomic fix
7989 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
7990 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
7991 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
7992 - DOC: clarify the scope of ssl_fc_is_resumed
7993 - CONTRIB: debug: fix a few flags definitions
7994 - BUG/MINOR: poll: too large size allocation for FD events
7995 - MINOR: sample: add date_us sample
7996 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
7997 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
7998 - MINOR: global/threads: move cpu_map at the end of the global struct
7999 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
8000 - MINOR: global: add some global activity counters to help debugging
8001 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
8002 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
8003 - BUG/MEDIUM: fd: maintain a per-thread update mask
8004 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
8005 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
8006 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
8007 - BUG/MEDIUM: threads/mworker: fix a race on startup
8008 - BUG/MINOR: mworker: only write to pidfile if it exists
8009 - MINOR: threads: Fix build when we're not compiling with threads.
8010 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
8011 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
8012 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
8013 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
8014 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
8015 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
8016 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
8017 - CLEANUP: sample: Fix comment encoding of sample.c
8018 - CLEANUP: sample: Fix outdated comment about sample casts functions
8019 - BUG/MINOR: sample: Fix output type of c_ipv62ip
8020 - CLEANUP: Fix typo in ARGT_MSK6 comment
8021 - CLEANUP: standard: Use len2mask4 in str2mask
8022 - MINOR: standard: Add str2mask6 function
8023 - MINOR: config: Add support for ARGT_MSK6
8024 - MEDIUM: sample: Add IPv6 support to the ipmask converter
8025 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
8026 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
8027 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
8028 - MINOR: fd: don't report maxfd in alert messages
8029 - MEDIUM: polling: start to move maxfd computation to the pollers
8030 - CLEANUP: fd/threads: remove the now unused fdtab_lock
8031 - MINOR: poll: more accurately compute the new maxfd in the loop
8032 - CLEANUP: fd: remove the unused "new" field
8033 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
8034 - MEDIUM: select: make use of hap_fd_* functions
8035 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
8036 - MEDIUM: select: don't use the old FD state anymore
8037 - MEDIUM: poll: don't use the old FD state anymore
8038 - MINOR: fd: pass the iocb and owner to fd_insert()
8039 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
8040 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
8041 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
8042 - DOC: don't suggest using http-server-close
8043 - MINOR: introduce proxy-v2-options for send-proxy-v2
8044 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
8045 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
8046 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
8047 - MINOR: spoe: Always link a SPOE context with the applet processing it
8048 - MINOR: spoe: Replace sending_rate by a frequency counter
8049 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
8050 - MEDIUM: spoe: Use an ebtree to manage idle applets
8051 - MINOR: spoa_example: Count the number of frames processed by each worker
8052 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
8053 - MINOR: init: make stdout unbuffered
8054 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
8055 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
8056 - MINOR: compiler: introduce offsetoff().
8057 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
8058 - MINOR: threads: add test and set/reset operations
8059 - MINOR: pools/threads: Implement lockless memory pools.
8060 - MAJOR: fd/threads: Make the fdcache mostly lockless.
8061 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
8062 - MAJOR: fd: compute the new fd polling state out of the fd lock
8063 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
8064 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
8065 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
8066 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
8067 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
8068 - MEDIUM: fd: make updt_fd_polling() use atomics
8069 - MEDIUM: poller: use atomic ops to update the fdtab mask
8070 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
8071 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
8072 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
8073 - MINOR: fd: reorder fd_add_to_fd_list()
8074 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
8075 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
8076 - MINOR: init: emit warning when -sf/-sd cannot parse argument
8077 - BUILD: fd/threads: fix breakage build breakage without threads
8078 - DOC: Describe routing impact of using interface keyword on bind lines
8079 - DOC: Mention -Ws in the list of available options
8080 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
8081 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
8082 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
8083 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
8084 - BUILD/MINOR: memory: stdint is needed for uintptr_t
8085 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
8086 - DOC: lua: new prototype for function "register_action()"
8087 - DOC: cfgparse: Warn on option (tcp|http)log in backend
8088 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
8089 - MINOR: sample: add a new "concat" converter
8090 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
8091 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
8092 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
8093 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
8094 - CLEANUP: cfgparse: Remove unused label end
8095 - CLEANUP: spoe: Remove unused label retry
8096 - CLEANUP: h2: Remove unused labels from mux_h2.c
8097 - CLEANUP: pools: Remove unused end label in memory.h
8098 - CLEANUP: standard: Fix typo in IPv6 mask example
8099 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
8100 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
8101 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
8102 - MINOR: stats: display the number of threads in the statistics.
8103 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
8104 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
8105 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
8106 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
8107 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
8108 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
8109 - MINOR: ssl: extract full pkey info in load_certificate
8110 - MINOR: ssl: add ssl_sock_get_pkey_algo function
8111 - MINOR: ssl: add ssl_sock_get_cert_sig function
8112 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
8113 - MINOR: connection: add proxy-v2-options authority
8114 - MINOR: systemd: Add section for SystemD sandboxing to unit file
8115 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
8116 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
8117 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
8118 - MINOR: h2: provide and use h2s_detach() and h2s_free()
8119 - MEDIUM: h2: use a single buffer allocator
8120 - MINOR/BUILD: fix Lua build on Mac OS X
8121 - BUILD/MINOR: fix Lua build on Mac OS X (again)
8122 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
8123 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
8124 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
8125 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
8126 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
8127 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
8128 - CLEANUP: ssl: Remove a duplicated #include
8129 - CLEANUP: cli: Remove a leftover debug message
8130 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
8131 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
8132 - BUG/MINOR: force-persist and ignore-persist only apply to backends
8133 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
8134 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
8135 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
8136 - TESTS: Add a testcase for multi-port + multi-server listener issue
8137 - CLEANUP: dns: remove duplicate code in src/dns.c
8138 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
8139 - BUG/MINOR: cli: Ensure all command outputs end with a LF
8140 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
8141 - BUILD: ssl: Fix build with OpenSSL without NPN capability
8142 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
8143 - BUG/MINOR: lua: return bad error messages
8144 - CLEANUP: lua/syntax: lua is a name and not an acronym
8145 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
8146 - BUG/MINOR: tcp-check: use the server's service port as a fallback
8147 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
8148 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
8149 - BUILD/BUG: enable -fno-strict-overflow by default
8150 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
8151 - DOC: log: more than 2 log servers are allowed
8152 - MINOR: hash: add new function hash_crc32c
8153 - MINOR: proxy-v2-options: add crc32c
8154 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
8155 - REORG: compact "struct server"
8156 - MINOR: samples: add crc32c converter
8157 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
8158 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
8159 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
8160 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
8161 - BUG/MINOR: lua: the function returns anything
8162 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
8163 - CLEANUP: lua: typo fix in comments
8164 - BUILD/MINOR: fix build when USE_THREAD is not defined
8165 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
8166 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
8167 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
8168 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
8169 - BUILD/MINOR: cli: fix a build warning introduced by last commit
8170 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
8171 - MINOR: h2: always call h2s_detach() in h2_detach()
8172 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
8173 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
8174 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
8175 - BUILD/MINOR: threads: always export thread_sync_io_handler()
8176 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
8177 - MINOR: h2: implement a basic "show_fd" function
8178 - MINOR: cli: report cache indexes in "show fd"
8179 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
8180 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
8181 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
8182 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
8183 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
8184 - BUG/MINOR: cache: fix "show cache" output
8185 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
8186 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
8187 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
8188 - BUG/MINOR: spoe: Register the variable to set when an error occurred
8189 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
8190 - MINOR: spoe: Add metrics in to know time spent in the SPOE
8191 - MINOR: spoe: Add options to store processing times in variables
8192 - MINOR: log: move 'log' keyword parsing in dedicated function
8193 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
8194 - MINOR: spoe: Add loggers dedicated to the SPOE agent
8195 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
8196 - MINOR: spoe: use agent's logger to log SPOE messages
8197 - MINOR: spoe: Add counters to log info about SPOE agents
8198 - BUG/MAJOR: cache: always initialize newly created objects
8199 - MINOR: servers: Support alphanumeric characters for the server templates names
8200 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
8201 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
8202 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
8203 - MINOR: proxy: Add fe_defbe fetcher
8204 - MINOR: config: Warn if resolvers has no nameservers
8205 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
8206 - MINOR: cli: Ensure the CLI always outputs an error when it should
8207 - MEDIUM: sample: Extend functionality for field/word converters
8208 - MINOR: export localpeer as an environment variable
8209 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
8210 - BUILD: sample: avoid build warning in sample.c
8211 - BUG/CRITICAL: h2: fix incorrect frame length check
8212 - DOC: lua: update the links to the config and Lua API
8213 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
8214 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
8215 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
8216 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
8217 - MINOR: h2: detect presence of CONNECT and/or content-length
8218 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
8219 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
8220 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
8221 - MEDIUM: cli: Add payload support
8222 - MINOR: map: Add payload support to "add map"
8223 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
8224 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
8225 - MINOR: sample: Add strcmp sample converter
8226 - MINOR: http: Add support for 421 Misdirected Request
8227 - BUG/MINOR: config: disable http-reuse on TCP proxies
8228 - MINOR: ssl: disable SSL sample fetches when unsupported
8229 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
8230 - BUG/MINOR: checks: Fix check->health computation for flapping servers
8231 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
8232 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
8233 - MINOR: backend: implement random-based load balancing
8234 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
8235 - MINOR: lua: Add server name & puid to LUA Server class.
8236 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
8237 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
8238 - BUG/MEDIUM: task: Don't free a task that is about to be run.
8239 - MINOR: fd: Make the lockless fd list work with multiple lists.
8240 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
8241 - MINOR: pollers: move polled_mask outside of struct fdtab.
8242 - BUG/MINOR: lua: schedule socket task upon lua connect()
8243 - BUG/MINOR: lua: ensure large proxy IDs can be represented
8244 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
8245 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
8246 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
8247 - BUG/MEDIUM: ssl: properly protect SSL cert generation
8248 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
8249 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
8250 - BUG/MEDIUM: spoe: Flags are not encoded in network order
8251 - CLEANUP: spoe: Remove unused variables the agent structure
8252 - DOC: spoe: fix a typo
8253 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
8254 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
8255 - DOC: add some description of the pending rework of the buffer structure
8256 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
8257 - MINOR: lua: Improve error message
8258 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
8259 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
8260 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
8261 - BUG/BUILD: threads: unbreak build without threads
8262 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
8263 - BUG/MEDIUM: lua/socket: Length required read doesn't work
8264 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
8265 - MAJOR: tasks: Create a per-thread runqueue.
8266 - MAJOR: tasks: Introduce tasklets.
8267 - MINOR: tasks: Make the number of tasks to run at once configurable.
8268 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
8269 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
8270 - MINOR: http: Log warning if (add|set)-header fails
8271 - DOC: management: add the new wrew stats column
8272 - MINOR: stats: also report the failed header rewrites warnings on the stats page
8273 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
8274 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
8275 - MINOR: task: Also consider the task list size when getting global tasks.
8276 - MINOR: dns: Implement `parse-resolv-conf` directive
8277 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
8278 - MINOR: task/notification: Is notifications registered ?
8279 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
8280 - BUG/MAJOR: lua: Dead lock with sockets
8281 - BUG/MEDIUM: lua/socket: Notification error
8282 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
8283 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
8284 - DOC: contrib/modsecurity: few typo fixes
8285 - DOC: SPOE.txt: fix a typo
8286 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
8287 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
8288 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
8289 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
8290 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
8291 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
8292 - MINOR: task: Fix a compiler warning by adding a cast.
8293 - MINOR: stats: also report the nice and number of calls for applets
8294 - MINOR: applet: assign the same nice value to a new appctx as its owner task
8295 - MINOR: task: Fix compiler warning.
8296 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
8297 - MINOR: tasks: Don't define rqueue if we're building without threads.
8298 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
8299 - MINOR: lua: Increase debug information
8300 - BUG/MEDIUM: threads: handle signal queue only in thread 0
8301 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
8302 - BUG/MINOR: signals: ha_sigmask macro for multithreading
8303 - BUG/MAJOR: map: fix a segfault when using http-request set-map
8304 - DOC: regression testing: Add a short starting guide.
8305 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
8306 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
8307 - BUG/MINOR: lua: Segfaults with wrong usage of types.
8308 - BUG/MAJOR: ssl: Random crash with cipherlist capture
8309 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
8310 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
8311 - MINOR: tests: First regression testing file.
8312 - MINOR: reg-tests: Add reg-tests/README file.
8313 - MINOR: reg-tests: Add a few regression testing files.
8314 - DOC: Add new REGTEST tag info about reg testing.
8315 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
8316 - MINOR: Some spelling cleanup in the comments.
8317 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
8318 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
8319 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
8320 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
8321 - REGTEST/MINOR: Add levels to reg-tests target.
8322 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
8323 - BUG/BUILD: threads: unbreak build without threads
8324 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
8325 - MINOR: stick-tables: make stktable_release() do nothing on NULL
8326 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
8327 - MINOR: startup: change session/process group settings
8328 - MINOR: systemd: consider exit status 143 as successful
8329 - REGTEST/MINOR: Wrong URI syntax.
8330 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
8331 - CLEANUP: dns: inacurate comment about prefered IP score
8332 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
8333 - MINOR: dns: new DNS options to allow/prevent IP address duplication
8334 - REGTEST/MINOR: Unexpected curl URL globling.
8335 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
8336 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
8337 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
8338 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
8339 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
8340 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
8341 - MINOR: tasklet: Set process to NULL.
8342 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
8343 - MINOR: buffer: switch buffer sizes and offsets to size_t
8344 - MINOR: buffer: add a few basic functions for the new API
8345 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
8346 - MINOR: buffer: Add b_set_data().
8347 - MINOR: buffer: introduce b_realign_if_empty()
8348 - MINOR: compression: pass the channel to http_compression_buffer_end()
8349 - MINOR: channel: add a few basic functions for the new buffer API
8350 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
8351 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
8352 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
8353 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
8354 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
8355 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
8356 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
8357 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
8358 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
8359 - MINOR: buffer: remove bi_ptr()
8360 - MINOR: buffer: remove bo_ptr()
8361 - MINOR: buffer: remove bo_end()
8362 - MINOR: buffer: remove bi_end()
8363 - MINOR: buffer: remove bo_contig_data()
8364 - MINOR: buffer: merge b{i,o}_contig_space()
8365 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
8366 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
8367 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
8368 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
8369 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
8370 - MINOR: h2: clarify the fact that the send functions are unsigned
8371 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
8372 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
8373 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
8374 - MINOR: h1: make h1_measure_trailers() use an offset and a count
8375 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
8376 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
8377 - MINOR: buffer: get rid of b_end() and b_to_end()
8378 - MINOR: buffer: make b_getblk_nc() take const pointers
8379 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
8380 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
8381 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
8382 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
8383 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
8384 - MINOR: connection: add a flags argument to rcv_buf()
8385 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
8386 - MINOR: buffer: get rid of b_ptr() and convert its last users
8387 - MINOR: buffer: use b_room() to determine available space in a buffer
8388 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
8389 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
8390 - MINOR: buffer: make bo_putchar() use b_tail()
8391 - MINOR: buffer: replace buffer_full() with channel_full()
8392 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
8393 - MINOR: buffer: replace buffer_pending() with ci_data()
8394 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
8395 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
8396 - MINOR: buffer: use b_orig() to replace most references to b->data
8397 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
8398 - MINOR: channel: remove almost all references to buf->i and buf->o
8399 - MINOR: channel: Add co_set_data().
8400 - MEDIUM: channel: adapt to the new buffer API
8401 - MINOR: checks: adapt to the new buffer API
8402 - MEDIUM: h2: update to the new buffer API
8403 - MINOR: buffer: remove unused bo_add()
8404 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
8405 - MINOR: stats: adapt to the new buffers API
8406 - MINOR: cli: use the new buffer API
8407 - MINOR: cache: use the new buffer API
8408 - MINOR: stream-int: use the new buffer API
8409 - MINOR: stream: use wrappers instead of directly manipulating buffers
8410 - MINOR: backend: use new buffer API
8411 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
8412 - MINOR: filters: convert to the new buffer API
8413 - MINOR: payload: convert to the new buffer API
8414 - MEDIUM: h1: port to new buffer API.
8415 - MINOR: flt_trace: adapt to the new buffer API
8416 - MEDIUM: compression: start to move to the new buffer API
8417 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
8418 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
8419 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
8420 - MAJOR: start to change buffer API
8421 - MINOR: buffer: remove the check for output on b_del()
8422 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
8423 - MINOR: buffer: rename the "data" field to "area"
8424 - MEDIUM: buffers: move "output" from struct buffer to struct channel
8425 - MINOR: buffer: replace bi_fast_delete() with b_del()
8426 - MINOR: buffer: replace b{i,o}_put* with b_put*
8427 - MINOR: buffer: add a new file for ist + buffer manipulation functions
8428 - MINOR: checks: use b_putist() instead of b_putstr()
8429 - MINOR: buffers: remove b_putstr()
8430 - CLEANUP: buffer: minor cleanups to buffer.h
8431 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
8432 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
8433 - MINOR: buffer: rename the data length member to '->data'
8434 - MAJOR: buffer: finalize buffer detachment
8435 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
8436 - MAJOR: chunks: replace struct chunk with struct buffer
8437 - DOC: buffers: document the new buffers API
8438 - DOC: buffers: remove obsolete docs about buffers
8439 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
8440 - MINOR: connections/mux: Add a new "subscribe" method.
8441 - MEDIUM: connections/mux: Revamp the send direction.
8442 - MINOR: connection: simplify subscription by adding a registration function
8443 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
8444 - BUG/MINOR: build: Fix compilation with debug mode enabled
8445 - BUILD: Generate sha256 checksums in publish-release
8446 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
8447 - MINOR: debug: Add checks for conn_stream flags
8448 - MINOR: ist: Add the function isteqi
8449 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
8450 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
8451 - MINOR: buffers: simplify b_contig_space()
8452 - MINOR: buffers: split b_putblk() into __b_putblk()
8453 - MINOR: buffers: add b_xfer() to transfer data between buffers
8454 - DOC: add some design notes about the new layering model
8455 - MINOR: conn_stream: add a new CS_FL_REOS flag
8456 - MINOR: conn_stream: add an rx buffer to the conn_stream
8457 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
8458 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
8459 - MINOR: h2: make each H2 stream support an intermediary input buffer
8460 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
8461 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
8462 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
8463 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
8464 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
8465 - MEDIUM: h2: perform a single call to the data layer in demux()
8466 - MEDIUM: h2: don't call data_cb->recv() anymore
8467 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
8468 - MEDIUM: h2: use the default conn_stream's receive function
8469 - DOC: add more design feedback on the new layering model
8470 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
8471 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
8472 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
8473 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
8474 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
8475 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
8476 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
8477 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
8478 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
8479 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
8480 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
8481 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
8482 - MINOR: queue: centralize dequeuing code a bit better
8483 - MEDIUM: queue: make pendconn_free() work on the stream instead
8484 - DOC: queue: document the expected locking model for the server's queue
8485 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
8486 - MINOR: queue: use a distinct variable for the assigned server and the queue
8487 - MINOR: queue: implement pendconn queue locking functions
8488 - MEDIUM: queue: get rid of the pendconn lock
8489 - MINOR: tasks: Make active_tasks_mask volatile.
8490 - MINOR: tasks: Make global_tasks_mask volatile.
8491 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
8492 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
8493 - BUG/MEDIUM: threads/sync: use sched_yield when available
8494 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
8495 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
8496 - BUG/MINOR: config: stick-table is not supported in defaults section
8497 - BUILD/MINOR: threads: unbreak build with threads disabled
8498 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
8499 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
8500 - MINOR: threads: move "nbthread" parsing to hathreads.c
8501 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
8502 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
8503 - BUILD/MINOR: compiler: fix offsetof() on older compilers
8504 - SCRIPTS: git-show-backports: add missing quotes to "echo"
8505 - MINOR: threads: add more consistency between certain variables in no-thread case
8506 - MEDIUM: hathreads: implement a more flexible rendez-vous point
8507 - BUG/MEDIUM: cli: make "show fd" thread-safe
8508
Willy Tarreaub3066502017-11-26 19:50:17 +010085092017/11/26 : 1.9-dev0
8510
Willy Tarreau0b787922017-11-26 19:25:23 +010085112017/11/26 : 1.8.0
8512 - BUG/MEDIUM: stream: don't automatically forward connect nor close
8513 - BUG/MAJOR: stream: ensure analysers are always called upon close
8514 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
8515 - MEDIUM: mworker: Add systemd `Type=notify` support
8516 - BUG/MEDIUM: cache: free callback to remove from tree
8517 - CLEANUP: cache: remove unused struct
8518 - MEDIUM: cache: enable the HTTP analysers
8519 - CLEANUP: cache: remove wrong comment
8520 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
8521 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
8522 - MINOR: threads/atomic: implement pl_mb() in asm on x86
8523 - MINOR: threads/atomic: implement pl_bts() on non-x86
8524 - MINOR: threads/build: atomic: replace the few inlines with macros
8525 - BUILD: threads/plock: fix a build issue on Clang without optimization
8526 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
8527 - BUILD: compiler: add a new type modifier __maybe_unused
8528 - BUILD: h2: mark some inlined functions "unused"
8529 - BUILD: server: check->desc always exists
8530 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
8531 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
8532 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
8533 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
8534 - BUG/MINOR: systemd: ignore daemon mode
8535 - CONTRIB: spoa_example: allow to compile outside HAProxy.
8536 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
8537 - CONTRIB: spoa_example: remove last dependencies on type "sample"
8538 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
8539 - CLEANUP: cache: reorder includes
8540 - MEDIUM: shctx: use unsigned int for len and block_count
8541 - MEDIUM: cache: "show cache" on the cli
8542 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
8543 - BUG/MEDIUM: cache: refcount forbids to free the objects
8544 - BUG/MEDIUM: cache fix cli_kws structure
8545 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
8546 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
8547 - MINOR: ssl: Don't disable early data handling if we could not write.
8548 - MINOR: pools: prepare functions to override malloc/free in pools
8549 - MINOR: pools: implement DEBUG_UAF to detect use after free
8550 - BUG/MEDIUM: threads/time: fix time drift correction
8551 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
8552 - MINOR: sample: Add "thread" sample fetch
8553 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
8554 - BUG/MINOR: stream: fix tv_request calculation for applets
8555 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
8556 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
8557 - MINOR: ssl: Handle reading early data after writing better.
8558 - MINOR: mux: Make sure every string is woken up after the handshake.
8559 - MEDIUM: cache: store sha1 for hashing the cache key
8560 - MINOR: http: implement the "http-request reject" rule
8561 - MINOR: h2: send RST_STREAM before GOAWAY on reject
8562 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
8563 - MINOR: h2: make use of client-fin timeout after GOAWAY
8564 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
8565 - MINOR: ssl: Handle early data with BoringSSL
8566 - BUG/MEDIUM: stream: always release the stream-interface on abort
8567 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
8568 - MINOR: cache: move the refcount decrease in the applet release
8569 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
8570 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
8571 - MINOR: config: Slightly change how parse_process_number works
8572 - MINOR: config: Export parse_process_number and use it wherever it's applicable
8573 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
8574 - MINOR: config: Add auto-increment feature for cpu-map
8575 - MINOR: config: Support partial ranges in cpu-map directive
8576 - MINOR:: config: Remove thread-map directive
8577 - MINOR: config: Add the threads support in cpu-map directive
8578 - MINOR: config: Add threads support for "process" option on "bind" lines
8579 - MEDIUM: listener: Bind listeners on a thread subset if specified
8580 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
8581 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
8582 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
8583 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
8584 - DOC: update the roadmap file with the latest changes merged in 1.8
8585 - DOC: fix mangled version in peers protocol documentation
8586 - DOC: add initial peers protovol v2.0 documentation.
8587 - DOC: mention William as maintainer of the cache and master-worker
8588 - DOC: add Christopher and Emeric as maintainers of the threads
8589 - MINOR: cache: replace a fprint() by an abort()
8590 - MEDIUM: cache: max-age configuration keyword
8591 - DOC: explain HTTP2 timeout behavior
8592 - DOC: cache: configuration and management
8593 - MAJOR: mworker: exits the master on failure
8594 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
8595 - MINOR: task: keep a pointer to the currently running task
8596 - MINOR: task: align the rq and wq locks
8597 - MINOR: fd: cache-align fdtab and fdcache locks
8598 - MINOR: buffers: cache-align buffer_wq_lock
8599 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
8600 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
8601 - CLEANUP: checks: remove 16 bytes of holes in struct check
8602 - CLEANUP: cache: more efficiently pack the struct cache
8603 - CLEANUP: fd: place the lock at the beginning of struct fdtab
8604 - CLEANUP: pools: align pools on a cache line
8605 - DOC: config: add a few bits about how to configure HTTP/2
8606 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
8607 - BUILD: Makefile: reorder object files by size
8608
Willy Tarreaucfe14662017-11-19 09:55:29 +010086092017/11/19 : 1.8-rc4
8610 - BUG/MEDIUM: cache: does not cache if no Content-Length
8611 - BUILD: thread/pipe: fix build without threads
8612 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
8613 - MINOR: debug/flags: Add missing flags
8614 - MINOR: threads: Use __decl_hathreads to declare locks
8615 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
8616 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
8617 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
8618 - MINOR: ebtree/scope: add a function to find next node from a parent
8619 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
8620 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
8621 - BUG/MEDIUM: cache: use msg->sov to forward header
8622 - MINOR: cache: forward data with headers
8623 - MINOR: cache: disable cache if shctx_row_data_append fail
8624 - BUG/MINOR: threads: tid_bit must be a unsigned long
8625 - CLEANUP: tasks: Remove useless double test on rq_next
8626 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
8627 - MINOR: tools: add a function to dump a scope-aware tree to a file
8628 - MINOR: tools: improve the DOT dump of the ebtree
8629 - MINOR: tools: emphasize the node being worked on in the tree dump
8630 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
8631 - DOC: peers: Add a first version of peers protocol v2.1.
8632 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
8633 - MINOR: mworker: display an accurate error when the reexec fail
8634 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
8635 - BUG/MEDIUM: mworker: does not deinit anymore
8636 - BUG/MEDIUM: mworker: does not close inherited FD
8637 - MINOR: tests: add a python wrapper to test inherited fd
8638 - BUG/MINOR: Allocate the log buffers before the proxies startup
8639 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
8640 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
8641 - MINOR: applets: Use a bitfield to track applets activity per-thread
8642 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
8643 - MEDIUM: applets: Don't process more than 200 active applets at once
8644 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
8645 - MINOR: SSL: Store the ASN1 representation of client sessions.
8646 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
8647 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
8648
Willy Tarreau34650d52017-11-11 09:06:48 +010086492017/11/11 : 1.8-rc3
8650 - BUILD: use MAXPATHLEN instead of NAME_MAX.
8651 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
8652 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
8653 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
8654 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
8655 - CLEANUP: checks: remove return statements in locked functions
8656 - BUG/MINOR: cli: add severity in "set server addr" parser
8657 - CLEANUP: server: get rid of return statements in the CLI parser
8658 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
8659 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
8660 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
8661 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
8662 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
8663 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
8664 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
8665 - BUG/MEDIUM: threads: don't try to free build option message on exit
8666 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
8667 - MINOR: add master-worker in the warning about nbproc
8668 - MINOR: mworker: allow pidfile in mworker + foreground
8669 - MINOR: mworker: write parent pid in the pidfile
8670 - MINOR: mworker: do not store child pid anymore in the pidfile
8671 - MINOR: ebtree: implement the scope-aware functions for eb32
8672 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
8673 - MINOR: ebtree: update the eb32sc parent node's scope on delete
8674 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
8675 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
8676 - MAJOR: task: make use of the scope-aware ebtree functions
8677 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
8678 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
8679 - MINOR: threads: use faster locks for the spin locks
8680 - MINOR: tasks: only visit filled task slots after processing them
8681 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
8682 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
8683 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
8684 - DOC: Add note about encrypted password CPU usage
8685 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
8686 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
8687 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
8688 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
8689 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
8690 - BUG/MEDIUM: h2: fix some wrong error codes on connections
8691 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
8692 - BUILD: enable USE_THREAD for Solaris build.
8693 - BUG/MEDIUM: h2: don't close the connection is there are data left
8694 - MINOR: h2: don't re-enable the connection's task when we're closing
8695 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
8696 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
8697 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
8698 - BUG/MINOR: h2: don't send GOAWAY on failed response
8699 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
8700 - BUG/MINOR: comp: fix compilation warning compiling without compression.
8701 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
8702 - BUG/MAJOR: threads/tasks: fix the scheduler again
8703 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
8704 - MINOR: ssl: Handle session resumption with TLS 1.3
8705 - MINOR: ssl: Spell 0x10101000L correctly.
8706 - MINOR: ssl: Handle sending early data to server.
8707 - BUILD: ssl: fix build of backend without ssl
8708 - BUILD: shctx: do not depend on openssl anymore
8709 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
8710 - BUG/MEDIUM: h2: reject non-3-digit status codes
8711 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
8712 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
8713 - BUG/MEDIUM: h2: split the function to send RST_STREAM
8714 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
8715 - MINOR: tools: don't use unlikely() in hex2i()
8716 - BUG/MEDIUM: h2: support orphaned streams
8717 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
8718 - CLEANUP: mux: remove the unused "release()" function
8719 - MINOR: cli: make "show fd" report the fd's thread mask
8720 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
8721 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
8722 - MEDIUM: http: always reject the "PRI" method
8723
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +010087242017/11/03 : 1.8-rc2
8725 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
8726 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
8727 - MINOR: mux: Only define pipe functions on linux.
8728 - MINOR: cache: Remove useless test for nonzero.
8729 - MINOR: cache: Don't confuse act_return and act_parse_ret.
8730 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
8731 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
8732 - BUG/MAJOR: fix deadlock on healthchecks.
8733 - BUG/MINOR: thread: fix a typo in the debug code
8734 - BUILD: shctx: allow to be built without openssl
8735 - BUG/MEDIUM: cache: don't try to resolve wrong filters
8736 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
8737 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
8738 - BUG/MINOR: stdarg.h inclusion
8739 - BUG/MINOR: dns: fix missing lock protection on server.
8740 - BUG/MINOR: lua: fix missing lock protection on server.
8741 - BUILD: enable USE_THREAD for OpenBSD build.
8742 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
8743 - MINOR: thread: report multi-thread support in haproxy -vv
8744
Willy Tarreau901f75c2017-10-31 23:18:29 +010087452017/10/31 : 1.8-rc1
8746 - BUG/MEDIUM: server: Allocate tmptrash before using it.
8747 - CONTRIB: trace: add the possibility to place trace calls in the code
8748 - CONTRIB: trace: try to display the function's return value on exit
8749 - CONTRIB: trace: report the base name only for file names
8750 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
8751 - MINOR: ssl: build with recent BoringSSL library
8752 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
8753 - BUG/MINOR: cli: restore "set ssl tls-key" command
8754 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
8755 - IMPORT: sha1: import SHA1 functions
8756 - MINOR: sample: add the sha1 converter
8757 - MINOR: sample: add the hex2i converter
8758 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
8759 - MINOR: ssl: don't abort after sending 16kB
8760 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
8761 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
8762 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
8763 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
8764 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
8765 - BUG/MINOR: checks: Don't forget to release the connection on error case.
8766 - MINOR: buffer: add the buffer input manipulation functions
8767 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
8768 - MEDIUM: cfgparse: post section callback
8769 - MEDIUM: cfgparse: post parsing registration
8770 - MINOR: lua: add uuid to the Class Proxy
8771 - MINOR: hlua: Add regex class
8772 - MINOR: http: Mark the 425 code as "Too Early".
8773 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
8774 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
8775 - MINOR: ssl: generated certificate is missing in switchctx early callback
8776 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
8777 - BUILD: Makefile: disable -Wunused-label
8778 - MINOR: ssl/proto_http: Add keywords to take care of early data.
8779 - BUG/MINOR: lua: const attribute of a string is overridden
8780 - MINOR: ssl: Don't abuse ssl_options.
8781 - MINOR: update proxy-protocol-v2 #define
8782 - MINOR: merge ssl_sock_get calls for log and ppv2
8783 - MINOR: add ALPN information to send-proxy-v2
8784 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
8785 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
8786 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
8787 - REORG: shctx: move lock functions and struct
8788 - MEDIUM: shctx: allow the use of multiple shctx
8789 - REORG: shctx: move ssl functions to ssl_sock.c
8790 - MEDIUM: shctx: separate ssl and shctx
8791 - MINOR: shctx: rename lock functions
8792 - MINOR: h1: store the status code in the H1 message
8793 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
8794 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
8795 - MINOR: action: Add trk_idx inline function
8796 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
8797 - MINOR: action: Add a function pointer in act_rule struct to check its validity
8798 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
8799 - MINOR: action: Add a functions to check http capture rules
8800 - MINOR: action: Factorize checks on rules calling check_ptr if defined
8801 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
8802 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
8803 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
8804 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
8805 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
8806 - MINOR: spoe: Move message encoding in its own function
8807 - MINOR: spoe: Add a type to qualify the message list during encoding
8808 - MINOR: spoe: Add a generic function to encode a list of SPOE message
8809 - MEDIUM: spoe/rules: Process "send-spoe-group" action
8810 - BUG/MINOR: dns: Fix CLI keyword declaration
8811 - MAJOR: dns: Refactor the DNS code
8812 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
8813 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
8814 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
8815 - MINOR: standard: Add memvprintf function
8816 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
8817 - MINOR: cli: Add "show startup-logs" command
8818 - MINOR: startup: Extend the scope the MODE_STARTING flag
8819 - MINOR: threads: Prepare makefile to link with pthread
8820 - MINOR: threads: Add THREAD_LOCAL macro
8821 - MINOR: threads: Add atomic-ops and plock includes in import dir
8822 - MEDIUM: threads: Add hathreads header file
8823 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
8824 - MINOR: threads: Add nbthread parameter
8825 - MEDIUM: threads: Adds a set of functions to handle sync-point
8826 - MAJOR: threads: Start threads to experiment multithreading
8827 - MINOR: threads: Define the sync-point inside run_poll_loop
8828 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
8829 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
8830 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
8831 - MEDIUM: threads/logs: Make logs thread-safe
8832 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
8833 - MAJOR: threads/fd: Make fd stuffs thread-safe
8834 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
8835 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
8836 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
8837 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
8838 - WIP: SQUASH WITH SYNC POINT
8839 - MAJOR: threads/task: handle multithread on task scheduler
8840 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
8841 - MEDIUM: threads/listeners: Make listeners thread-safe
8842 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
8843 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
8844 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
8845 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
8846 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
8847 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
8848 - MINOR: threads/sample: Change temp_smp into a thread local variable
8849 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
8850 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
8851 - MAJOR: threads/applet: Handle multithreading for applets
8852 - MAJOR: threads/peers: Make peers thread safe
8853 - MAJOR: threads/buffer: Make buffer wait queue thread safe
8854 - MEDIUM: threads/stream: Make streams list thread safe
8855 - MAJOR: threads/ssl: Make SSL part thread-safe
8856 - MEDIUM: threads/queue: Make queues thread-safe
8857 - MAJOR: threads/map: Make acls/maps thread safe
8858 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
8859 - MEDIUM: thread/vars: Make vars thread-safe
8860 - MEDIUM: threads/filters: Add init/deinit callback per thread
8861 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
8862 - MEDIUM: threads/compression: Make HTTP compression thread-safe
8863 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
8864 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
8865 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
8866 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
8867 - MEDIUM: threads/xref: Convert xref function to a thread safe model
8868 - MEDIUM: threads/tasks: Add lock around notifications
8869 - MEDIUM: thread/spoe: Make the SPOE thread-safe
8870 - MEDIUM: thread/dns: Make DNS thread-safe
8871 - MINOR: threads: Add thread-map config parameter in the global section
8872 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
8873 - MINOR: threads/checks: Set the task process_mask when a check is executed
8874 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
8875 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
8876 - MINOR: threads: Don't start when device a detection module is used
8877 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
8878 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
8879 - MAJOR: threads: Offically enable the threads support in HAProxy
8880 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
8881 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
8882 - BUILD: stick-tables: silence an uninitialized variable warning
8883 - BUG/MINOR: dns: Fix SRV records with the new thread code.
8884 - MINOR: ssl: Remove the global allow-0rtt option.
8885 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
8886 - CLEANUP: threads: rename process_mask to thread_mask
8887 - MINOR: h1: add a function to measure the trailers length
8888 - MINOR: threads: add a portable barrier for threads and non-threads
8889 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
8890 - BUG/MEDIUM: threads: Initialize the sync-point
8891 - MEDIUM: connection: start to introduce a mux layer between xprt and data
8892 - MINOR: connection: implement alpn registration of muxes
8893 - MINOR: mux: register the pass-through mux for any ALPN string
8894 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
8895 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
8896 - MINOR: connection: introduce conn_stream
8897 - MINOR: mux: add more methods to mux_ops
8898 - MINOR: connection: introduce the conn_stream manipulation functions
8899 - MINOR: mux_pt: implement remaining mux_ops methods
8900 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
8901 - MINOR: connection: make conn_stream users also check for per-stream error flag
8902 - MINOR: conn_stream: new shutr/w status flags
8903 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
8904 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
8905 - MINOR: connection: add cs_close() to close a conn_stream
8906 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
8907 - MEDIUM: connection: replace conn_full_close() with cs_close()
8908 - MEDIUM: connection: make mux->detach() release the connection
8909 - MEDIUM: stream: do not forcefully close the client connection anymore
8910 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
8911 - MEDIUM: connection: add a destroy callback
8912 - MINOR: session: release the listener with the session, not the stream
8913 - MEDIUM: session: make use of the connection's destroy callback
8914 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
8915 - MINOR: hpack: implement the HPACK Huffman table decoder
8916 - MINOR: hpack: implement the header tables management
8917 - MINOR: hpack: implement the decoder
8918 - MEDIUM: hpack: implement basic hpack encoding
8919 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
8920 - MINOR: h2: create a very minimalistic h2 mux
8921 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
8922 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
8923 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
8924 - MINOR: h2: create the h2c struct and allocate its pool
8925 - MINOR: h2: create the h2s struct and the associated pool
8926 - MINOR: h2: handle two extra stream states for errors
8927 - MINOR: h2: add a frame header descriptor for incoming frames
8928 - MEDIUM: h2: allocate and release the h2c context on connection init/end
8929 - MEDIUM: h2: implement basic recv/send/wake functions
8930 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
8931 - MEDIUM: h2: implement the mux buffer allocator
8932 - MINOR: h2: add the connection and stream flags listing the causes for blocking
8933 - MINOR: h2: add function h2s_id() to report a stream's ID
8934 - MINOR: h2: small function to know when the mux is busy
8935 - MINOR: h2: new function h2c_error to mark an error on the connection
8936 - MINOR: h2: new function h2s_error() to mark an error on a stream
8937 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
8938 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
8939 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
8940 - MINOR: h2: add stream lookup function based on the stream ID
8941 - MINOR: h2: create dummy idle and closed streams
8942 - MINOR: h2: add the function to create a new stream
8943 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
8944 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
8945 - MINOR: h2: also terminate the connection on shutr
8946 - MEDIUM: h2: properly consider all conditions for end of connection
8947 - MEDIUM: h2: wake the connection up for send on pending streams
8948 - MEDIUM: h2: start to implement the frames processing loop
8949 - MINOR: h2: add a function to send a GOAWAY error frame
8950 - MINOR: h2: match the H2 connection preface on init
8951 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
8952 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
8953 - MEDIUM: h2: process streams pending for sending
8954 - MINOR: h2: send a real SETTINGS frame based on the configuration
8955 - MEDIUM: h2: detect the presence of the first settings frame
8956 - MINOR: h2: create a stream parser for the demuxer
8957 - MINOR: h2: implement PING frames
8958 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
8959 - MINOR: h2: lookup the stream during demuxing
8960 - MEDIUM: h2: honor WINDOW_UPDATE frames
8961 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
8962 - MINOR: h2: handle CONTINUATION frames
8963 - MEDIUM: h2: partial implementation of h2_detach()
8964 - MEDIUM: h2: unblock a connection when its current stream detaches
8965 - MEDIUM: h2: basic processing of HEADERS frame
8966 - MEDIUM: h2: don't use trash to decode headers!
8967 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
8968 - MEDIUM: h2: send the H1 response body as DATA frames
8969 - MEDIUM: h2: skip the response trailers if any
8970 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
8971 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
8972 - MEDIUM: h2: handle request body in DATA frames
8973 - MINOR: h2: handle RST_STREAM frames
8974 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
8975 - MINOR: h2: use a common function to signal some and all streams.
8976 - MEDIUM: h2: handle GOAWAY frames
8977 - MINOR: h2: centralize the check for the idle streams
8978 - MINOR: h2: centralize the check for the half-closed(remote) streams
8979 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
8980 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
8981 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
8982 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
8983 - MEDIUM: h2: apply a timeout to h2 connections
8984 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
8985 - MEDIUM: shctx: forbid shctx to read more than expected
8986 - MEDIUM: cache: configuration parsing and initialization
8987 - MEDIUM: cache: store objects in cache
8988 - MEDIUM: cache: deliver objects from cache
8989
Willy Tarreauf08137c2017-10-22 10:13:45 +020089902017/10/22 : 1.8-dev3
8991 - REORG: ssl: move defines and methodVersions table upper
8992 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
8993 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
8994 - MEDIUM: ssl: disable SSLv3 per default for bind
8995 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
8996 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
8997 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
8998 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
8999 - BUG/MEDIUM: build without openssl broken
9000 - BUG/MINOR: warning: need_resend may be used uninitialized
9001 - BUG/MEDIUM: misplaced exit and wrong exit code
9002 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
9003 - BUILD: scripts: make publish-release support bare repositories
9004 - BUILD: scripts: add an automatic mode for publish-release
9005 - BUILD: scripts: add a "quiet" mode to publish-release
9006 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
9007 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
9008 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
9009 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
9010 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
9011 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
9012 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
9013 - BUG/MAJOR: server: Segfault after parsing server state file.
9014 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
9015 - scripts: create-release pass -n to tail
9016 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
9017 - BUG/MEDIUM: fix segfault when no argument to -x option
9018 - MINOR: warning on multiple -x
9019 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
9020 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
9021 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
9022 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
9023 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
9024 - DOC: fix references to the section about the unix socket
9025 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
9026 - MAJOR: task: task scheduler rework.
9027 - MINOR: task/stream: tasks related to a stream must be init by the caller.
9028 - MINOR: queue: Change pendconn_get_next_strm into private function
9029 - MINOR: backends: Change get_server_sh/get_server_uh into private function
9030 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
9031 - MEDIUM: stream: make stream_new() always set the target and analysers
9032 - MINOR: frontend: initialize HTTP layer after the debugging code
9033 - MINOR: connection: add a .get_alpn() method to xprt_ops
9034 - MINOR: ssl: add a get_alpn() method to ssl_sock
9035 - MINOR: frontend: retrieve the ALPN name when available
9036 - MINOR: frontend: report the connection's ALPN in the debug output
9037 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
9038 - MINOR: connection: send data before receiving
9039 - MAJOR: applet: applet scheduler rework.
9040 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
9041 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
9042 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
9043 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
9044 - MINOR: compression: Use a memory pool to allocate compression states
9045 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
9046 - DOC: fix references to the section about time format.
9047 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
9048 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
9049 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
9050 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
9051 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
9052 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
9053 - MINOR: peers: Add additional information to stick-table definition messages.
9054 - BUG/MINOR: http: properly handle all 1xx informational responses
9055 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
9056 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
9057 - CLEANUP: hdr_idx: make some function arguments const where possible
9058 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
9059 - BUG/MINOR: lua: In error case, the safe mode is not removed
9060 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
9061 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
9062 - BUG/MEDIUM: lua: bad memory access
9063 - BUG/MINOR: Lua: variable already initialized
9064 - DOC: update CONTRIBUTING regarding optional parts and message format
9065 - DOC: update the list of OpenSSL versions in the README
9066 - BUG/MINOR: http: Set the response error state in http_sync_res_state
9067 - MINOR: http: Reorder/rewrite checks in http_resync_states
9068 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
9069 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
9070 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
9071 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
9072 - BUG/MINOR: contrib/modsecurity: BSD build fix
9073 - BUG/MINOR: contrib/mod_defender: build fix
9074 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
9075 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
9076 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
9077 - MINOR: tools: add a portable timegm() alternative
9078 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
9079 - DOC: Updated 51Degrees git URL to point to a stable version.
9080 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
9081 - MINOR: memory: remove macros
9082 - BUG/MINOR: lua: Fix Server.get_addr() port values
9083 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
9084 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
9085 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
9086 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
9087 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
9088 - MINOR: task: always preinitialize the task's timeout in task_init()
9089 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
9090 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
9091 - MINOR: lua: Add proxy as member of proxy object.
9092 - DOC: lua: Proxy class doc update
9093 - MINOR: lua: Add lists of frontends and backends
9094 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
9095 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
9096 - MINOR: ssl: add a new error codes for wrong server certificates
9097 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
9098 - MINOR: ssl: add "no-ca-names" parameter for bind
9099 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
9100 - DOC: fix alphabetical order of "show commands" in management.txt
9101 - MINOR: listener: add a function to return a listener's state as a string
9102 - MINOR: cli: add a new "show fd" command
9103 - BUG/MEDIUM: ssl: Fix regression about certificates generation
9104 - MINOR: Add server port field to server state file.
9105 - MINOR: ssl: allow to start without certificate if strict-sni is set
9106 - MINOR: dns: Cache previous DNS answers.
9107 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
9108 - Add a few functions to do unaligned access.
9109 - MINOR: dns: Handle SRV records.
9110 - MINOR: check: Fix checks when using SRV records.
9111 - MINOR: doc: Document SRV label usage.
9112 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
9113 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
9114 - BUILD/MINOR: build without openssl still broken
9115 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
9116 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
9117 - MINOR: init: Fix CPU affinity setting on FreeBSD.
9118 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
9119 - MINOR: dns: update record dname matching for SRV query types
9120 - MINOR: dns: update dns response buffer reading pointer due to SRV record
9121 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
9122 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
9123 - MINOR: dns: ability to use a SRV resolution for multiple backends
9124 - MINOR: dns: enable caching of responses for server set by a SRV record
9125 - MINOR: dns: new dns record type (RTYPE) for OPT
9126 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
9127 - MINOR: dns: default "hold obsolete" timeout set to 0
9128 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
9129 - MINOR: session: add a streams field to the session struct
9130 - MINOR: stream: link the stream to its session
9131 - MEDIUM: session: do not free a session until no stream references it
9132 - MINOR: ist: implement very simple indirect strings
9133 - TESTS: ist: add a test file for the functions
9134 - MINOR: http: export some of the HTTP parser macros
9135 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
9136 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
9137 - MINOR: dns: Maximum DNS udp payload set to 8192
9138 - MINOR: dns: automatic reduction of DNS accpeted payload size
9139 - MINOR: dns: make SRV record processing more verbose
9140 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
9141 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
9142 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
9143 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
9144 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
9145 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
9146 - MINOR: lua: properly process the contents of the content-length field
9147 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
9148 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
9149 - OPTIM: lua: don't add "Connection: close" on the response
9150 - REORG/MEDIUM: connection: introduce the notion of connection handle
9151 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
9152 - MEDIUM: connection: get rid of data->init() which was not for data
9153 - MEDIUM: stream: make stream_new() allocate its own task
9154 - CLEANUP: listener: remove the unused handler field
9155 - MEDIUM: session: add a pointer to a struct task in the session
9156 - MINOR: stream: provide a new stream creation function for connections
9157 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
9158 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
9159 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
9160 - DOC: add CLI info on privilege levels
9161 - DOC: Refer to Mozilla TLS info / config generator
9162 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
9163 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
9164 - DOC: Add note about "* " prefix in CSV stats
9165 - CLEANUP: memory: Remove unused function pool_destroy
9166 - MINOR: listeners: Change listener_full and limit_listener into private functions
9167 - MINOR: listeners: Change enable_listener and disable_listener into private functions
9168 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
9169 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
9170 - MINOR: backends: Make get_server_* functions explicitly static
9171 - MINOR: applet: Check applets_active_queue before processing applets queue
9172 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
9173 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
9174 - MINOR: logs: Use dedicated function to init/deinit log buffers
9175 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
9176 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
9177 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
9178 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
9179 - MINOR: fd: Add fd_active function
9180 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
9181 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
9182 - MINOR: freq_ctr: Return the new value after an update
9183 - MEDIUM: check: server states and weight propagation re-work
9184 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
9185 - MINOR: fd: Add fd_update_events function
9186 - MINOR: polling: Use fd_update_events to update events seen for a fd
9187 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
9188 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
9189 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
9190 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
9191 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
9192 - MINOR: xref: Add a new xref system
9193 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
9194 - MINOR: tasks: Move Lua notification from Lua to tasks
9195 - MINOR: net_helper: Inline functions meant to be inlined.
9196 - MINOR: cli: add socket commands and config to prepend informational messages with severity
9197 - MINOR: add severity information to cli feedback messages
9198 - BUILD: Makefile: add a function to detect support by the compiler of certain options
9199 - BUILD: Makefile: shut certain gcc/clang stupid warnings
9200 - BUILD: Makefile: improve detection of support for compiler warnings
9201 - MINOR: peers: don't reference the incoming listener on outgoing connections
9202 - MINOR: frontend: don't retrieve ALPN on the critical path
9203 - MINOR: protocols: always pass a "port" argument to the listener creation
9204 - MINOR: protocols: register the ->add function and stop calling them directly
9205 - MINOR: unix: remove the now unused proto_uxst.h file
9206 - MINOR: listeners: new function create_listeners
9207 - MINOR: listeners: make listeners count consistent with reality
9208 - MEDIUM: session: take care of incrementing/decrementing jobs
9209 - MINOR: listener: new function listener_release
9210 - MINOR: session: small cleanup of conn_complete_session()
9211 - MEDIUM: session: factor out duplicated code for conn_complete_session
9212 - MEDIUM: session: count the frontend's connections at a single place
9213 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
9214 - BUG/MINOR: compression: Check response headers before http-response rules eval
9215 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
9216 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
9217 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
9218 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
9219 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
9220 - MINOR: tools: make my_htonll() more efficient on x86_64
9221 - MINOR: buffer: add b_del() to delete a number of characters
9222 - MINOR: buffer: add b_end() and b_to_end()
9223 - MINOR: net_helper: add functions to read from vectors
9224 - MINOR: net_helper: add write functions
9225 - MINOR: net_helper: add 64-bit read/write functions
9226 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
9227 - MINOR: ist: add a macro to ease const array initialization
9228 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
9229 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
9230 - BUG/MINOR: log: fixing small memory leak in error code path.
9231 - BUG/MINOR: contrib/halog: fixing small memory leak
9232 - BUG/MEDIUM: tcp/http: set-dst-port action broken
9233 - CLEANUUP: checks: don't set conn->handle.fd to -1
9234 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
9235 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
9236 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
9237 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
9238 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
9239 - CLEANUP: checks: remove misleading comments and statuses for external process
9240 - CLEANUP: checks: don't report report the fork() error twice
9241 - CLEANUP: checks: do not allocate a connection for process checks
9242 - TESTS: checks: add a simple test config for external checks
9243 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
9244 - TESTS: checks: add a simple test config for tcp-checks
9245 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
9246 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
9247 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
9248 - MEDIUM: checks: do not allocate a permanent connection anymore
9249 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
9250 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
9251 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
9252 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
9253 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
9254 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
9255 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
9256 - MINOR: session: remove the list of streams from struct session
9257 - DOC: fix some typos
9258 - MINOR: server: add the srv_queue() sample fetch method
9259 - MINOR: payload: add new sample fetch functions to process distcc protocol
9260 - MAJOR: servers: propagate server status changes asynchronously.
9261 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
9262 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
9263 - MINOR: server: Handle weight increase in consistent hash.
9264 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
9265 - BUG/MINOR: tools: fix my_htonll() on x86_64
9266 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
9267 - BUG/MAJOR: lua: scheduled task is freezing.
9268 - MINOR: buffer: add bo_del() to delete a number of characters from output
9269 - MINOR: buffer: add a function to match against string patterns
9270 - MINOR: buffer: add two functions to inject data into buffers
9271 - MINOR: buffer: add buffer_space_wraps()
9272 - REORG: channel: finally rename the last bi_* / bo_* functions
9273 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
9274 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
9275 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
9276 - MINOR: ist: add ist0() to add a trailing zero to a string.
9277 - BUG/MEDIUM: log: check result details truncated.
9278 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
9279 - REORG: http: move some very http1-specific parts to h1.{c,h}
9280 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
9281 - REORG: http: move the HTTP/1 header block parser to h1.c
9282 - MEDIUM: http: make the chunk size parser only depend on the buffer
9283 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
9284 - MINOR: h1: add struct h1m for basic HTTP/1 messages
9285 - MINOR: http: add very simple header management based on double strings
9286 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
9287 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
9288 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
9289 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
9290 - MINOR: connection: add conn_stop_tracking() to disable tracking
9291 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
9292 - MINOR: unix: use conn_full_close() instead of conn_force_close()
9293 - MINOR: checks: use conn_full_close() instead of conn_force_close()
9294 - MINOR: session: use conn_full_close() instead of conn_force_close()
9295 - MINOR: stream: use conn_full_close() instead of conn_force_close()
9296 - MINOR: stream: use conn_full_close() instead of conn_force_close()
9297 - MINOR: backend: use conn_full_close() instead of conn_force_close()
9298 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
9299 - MINOR: connection: remove conn_force_close()
9300 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
9301
Willy Tarreauf57a29a2017-06-02 15:59:51 +020093022017/06/02 : 1.8-dev2
9303 - CLEANUP: server: moving netinet/tcp.h inclusion
9304 - DOC: changed "block"(deprecated) examples to http-request deny
9305 - DOC: add few comments to examples.
9306 - DOC: update sample code for PROXY protocol
9307 - DOC: mention lighttpd 1.4.46 implements PROXY
9308 - MINOR server: Restrict dynamic cookie check to the same proxy.
9309 - DOC: stick-table is available in frontend sections
9310 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
9311 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
9312 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
9313 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
9314 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
9315 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
9316 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
9317 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
9318 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
9319 - BUG/MEDIUM: servers: unbreak server weight propagation
9320 - MINOR: lua: ensure the memory allocator is used all the time
9321 - MINOR: cli: Add a command to send listening sockets.
9322 - MINOR: global: Add an option to get the old listening sockets.
9323 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
9324 - MINOR: doc: document the -x flag
9325 - MINOR: proxy: Don't close FDs if not our proxy.
9326 - MINOR: socket transfer: Set a timeout on the socket.
9327 - MINOR: systemd wrapper: add support for passing the -x option.
9328 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
9329 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
9330 - CLEANUP: logs: typo: simgle => single
9331 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
9332 - MEDIUM: config: don't check config validity when there are fatal errors
9333 - BUG/MAJOR: Use -fwrapv.
9334 - BUG/MINOR: server: don't use "proxy" when px is really meant.
9335 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
9336 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
9337 - MINOR: server: Extract the code responsible of copying default-server settings.
9338 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
9339 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
9340 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
9341 - DOC: Add documentation for new "server-template" keyword.
9342 - DOC: add layer 4 links/cross reference to "block" keyword.
9343 - DOC: errloc/errorloc302/errorloc303 missing status codes.
9344 - BUG/MEDIUM: lua: memory leak
9345 - CLEANUP: lua: remove test
9346 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
9347 - BUG/MINOR: change header-declared function to static inline
9348 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
9349 - MINOR: Add binary encoding request header sample fetch
9350 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
9351 - MINOR: Add ModSecurity wrapper as contrib
9352 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
9353 - DOC: update RFC references
9354 - CONTRIB: tcploop: add action "X" to execute a command
9355 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
9356 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
9357 - BUG/MINOR: checks: don't send proxy protocol with agent checks
9358 - MINOR: ssl: add prefer-client-ciphers
9359 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
9360 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
9361 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
9362 - MINOR: ssl: support TLSv1.3 for bind and server
9363 - MINOR: ssl: show methods supported by openssl
9364 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
9365 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
9366 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
9367 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
9368 - MINOR: sample: Add b64dec sample converter
9369 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
9370 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
9371 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
9372 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
9373 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
9374 - MAJOR: ssl: add openssl async mode support
9375 - MEDIUM: ssl: handle multiple async engines
9376 - MINOR: boringssl: basic support for OCSP Stapling
9377 - MEDIUM: mworker: replace systemd mode by master worker mode
9378 - MEDIUM: mworker: handle reload and signals
9379 - MEDIUM: mworker: wait mode on reload failure
9380 - MEDIUM: mworker: try to guess the next stats socket to use with -x
9381 - MEDIUM: mworker: exit-on-failure option
9382 - MEDIUM: mworker: workers exit when the master leaves
9383 - DOC: add documentation for the master-worker mode
9384 - MEDIUM: systemd: Type=forking in unit file
9385 - MAJOR: systemd-wrapper: get rid of the wrapper
9386 - MINOR: log: Add logurilen tunable.
9387 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
9388 - MINOR: dns: smallest DNS fqdn size
9389 - MINOR: dns: functions to manage memory for a DNS resolution structure
9390 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
9391 - REORG: dns: dns_option structure, storage of hostname_dn
9392 - MINOR: dns: new snr_check_ip_callback function
9393 - MAJOR: dns: save a copy of the DNS response in struct resolution
9394 - MINOR: dns: implement a LRU cache for DNS resolutions
9395 - MINOR: dns: make 'ancount' field to match the number of saved records
9396 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
9397 - MAJOR/REORG: dns: DNS resolution task and requester queues
9398 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
9399 - MINOR: Add Mod Defender integration as contrib
9400 - CLEANUP: str2mask return code comment: non-zero -> zero.
9401 - MINOR: tools: make debug_hexdump() use a const char for the string
9402 - MINOR: tools: make debug_hexdump() take a string prefix
9403 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
9404
Willy Tarreau7b677262017-04-03 09:27:49 +020094052017/04/03 : 1.8-dev1
9406 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
9407 - BUG/MINOR: stats: make field_str() return an empty string on NULL
9408 - DOC: Spelling fixes
9409 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
9410 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
9411 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
9412 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
9413 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
9414 - BUG/MAJOR: stream: fix session abort on resource shortage
9415 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
9416 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
9417 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
9418 - DOC: Fix map table's format
9419 - DOC: Added 51Degrees conv and fetch functions to documentation.
9420 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
9421 - DOC: mention that req_tot is for both frontends and backends
9422 - BUG/MEDIUM: variables: some variable name can hide another ones
9423 - MINOR: lua: Allow argument for actions
9424 - BUILD: rearrange target files by build time
9425 - CLEANUP: hlua: just indent functions
9426 - MINOR: lua: give HAProxy variable access to the applets
9427 - BUG/MINOR: stats: fix be/sessions/max output in html stats
9428 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
9429 - DOC: lua: Documentation about some entry missing
9430 - DOC: lua: Add documentation about variable manipulation from applet
9431 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
9432 - DOC: Add undocumented argument of the trace filter
9433 - DOC: Fix some typo in SPOE documentation
9434 - MINOR: cli: Remove useless call to bi_putchk
9435 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
9436 - MINOR: applet: Count number of (active) applets
9437 - MINOR: task: Rename run_queue and run_queue_cur counters
9438 - BUG/MEDIUM: stream: Save unprocessed events for a stream
9439 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
9440 - BUILD/MEDIUM: Fixing the build using LibreSSL
9441 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
9442 - SCRIPTS: git-show-backports: fix a harmless typo
9443 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
9444 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
9445 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
9446 - CLEANUP: applet/table: add an "action" entry in ->table context
9447 - CLEANUP: applet: remove the now unused appctx->private field
9448 - DOC: lua: documentation about time parser functions
9449 - DOC: lua: improve links
9450 - DOC: lua: section declared twice
9451 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
9452 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
9453 - BUG/MINOR: cli: "show cli sockets" would always report process 64
9454 - CLEANUP: lua: rename one of the lua appctx union
9455 - BUG/MINOR: lua/cli: bad error message
9456 - MEDIUM: lua: use memory pool for hlua struct in applets
9457 - MINOR: lua/signals: Remove Lua part from signals.
9458 - DOC: cli: show cli sockets
9459 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
9460 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
9461 - CLEANUP: applet: group all CLI contexts together
9462 - CLEANUP: stats: move a misplaced stats context initialization
9463 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
9464 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
9465 - MINOR: appctx/cli: remove the env entry from the appctx union
9466 - MINOR: appctx/cli: remove the "be" entry from the appctx union
9467 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
9468 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
9469 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
9470 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
9471 - MINOR/DOC: lua: just precise one thing
9472 - DOC: fix small typo in fe_id (backend instead of frontend)
9473 - BUG/MINOR: Fix the sending function in Lua's cosocket
9474 - BUG/MINOR: lua: memory leak executing tasks
9475 - BUG/MINOR: lua: bad return code
9476 - BUG/MINOR: lua: memleak when Lua/cli fails
9477 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
9478 - CLEANUP: haproxy: statify unexported functions
9479 - MINOR: haproxy: add a registration for build options
9480 - CLEANUP: wurfl: use the build options list to report it
9481 - CLEANUP: 51d: use the build options list to report it
9482 - CLEANUP: da: use the build options list to report it
9483 - CLEANUP: namespaces: use the build options list to report it
9484 - CLEANUP: tcp: use the build options list to report transparent modes
9485 - CLEANUP: lua: use the build options list to report it
9486 - CLEANUP: regex: use the build options list to report the regex type
9487 - CLEANUP: ssl: use the build options list to report the SSL details
9488 - CLEANUP: compression: use the build options list to report the algos
9489 - CLEANUP: auth: use the build options list to report its support
9490 - MINOR: haproxy: add a registration for post-check functions
9491 - CLEANUP: checks: make use of the post-init registration to start checks
9492 - CLEANUP: filters: use the function registration to initialize all proxies
9493 - CLEANUP: wurfl: make use of the late init registration
9494 - CLEANUP: 51d: make use of the late init registration
9495 - CLEANUP: da: make use of the late init registration code
9496 - MINOR: haproxy: add a registration for post-deinit functions
9497 - CLEANUP: wurfl: register the deinit function via the dedicated list
9498 - CLEANUP: 51d: register the deinitialization function
9499 - CLEANUP: da: register the deinitialization function
9500 - CLEANUP: wurfl: move global settings out of the global section
9501 - CLEANUP: 51d: move global settings out of the global section
9502 - CLEANUP: da: move global settings out of the global section
9503 - MINOR: cfgparse: add two new functions to check arguments count
9504 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
9505 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
9506 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
9507 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
9508 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
9509 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
9510 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
9511 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
9512 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
9513 - MINOR: tcp-rules: check that the listener exists before updating its counters
9514 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
9515 - MINOR: listener: move the transport layer pointer to the bind_conf
9516 - MEDIUM: move listener->frontend to bind_conf->frontend
9517 - MEDIUM: ssl: remote the proxy argument from most functions
9518 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
9519 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
9520 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
9521 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
9522 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
9523 - MINOR: connection: add a minimal transport layer registration system
9524 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
9525 - CLEANUP: connection: unexport raw_sock and ssl_sock
9526 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
9527 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
9528 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
9529 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
9530 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
9531 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
9532 - BUG/MINOR: systemd: potential zombie processes
9533 - DOC: Add timings events schemas
9534 - BUILD: lua: build failed on FreeBSD.
9535 - MINOR: samples: add xx-hash functions
9536 - MEDIUM: regex: pcre2 support
9537 - BUG/MINOR: option prefer-last-server must be ignored in some case
9538 - MINOR: stats: Support "select all" for backend actions
9539 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
9540 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
9541 - BUG/MINOR: http: report real parser state in error captures
9542 - BUILD: scripts: automatically update the branch in version.h when releasing
9543 - MINOR: tools: add a generic hexdump function for debugging
9544 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
9545 - MINOR: http: custom status reason.
9546 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
9547 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
9548 - BUG/MINOR: tools: fix off-by-one in port size check
9549 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
9550 - MEDIUM: server: split the address and the port into two different fields
9551 - MINOR: tools: make str2sa_range() return the port in a separate argument
9552 - MINOR: server: take the destination port from the port field, not the addr
9553 - MEDIUM: server: disable protocol validations when the server doesn't resolve
9554 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
9555 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
9556 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
9557 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
9558 - MINOR: proto_http.c 502 error txt typo.
9559 - DOC: add deprecation notice to "block"
9560 - MINOR: compression: fix -vv output without zlib/slz
9561 - BUG/MINOR: Reset errno variable before calling strtol(3)
9562 - MINOR: ssl: don't show prefer-server-ciphers output
9563 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
9564 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
9565 - MAJOR: ssl: bind configuration per certificat
9566 - MINOR: ssl: add curve suite for ECDHE negotiation
9567 - MINOR: checks: Add agent-addr config directive
9568 - MINOR: cli: Add possiblity to change agent config via CLI/socket
9569 - MINOR: doc: Add docs for agent-addr configuration variable
9570 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
9571 - BUILD: ssl: fix to build (again) with boringssl
9572 - BUILD: ssl: fix build on OpenSSL 1.0.0
9573 - BUILD: ssl: silence a warning reported for ERR_remove_state()
9574 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
9575 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
9576 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
9577 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
9578 - MINOR: server: extend the flags to 32 bits
9579 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
9580 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
9581 - BUG/MAJOR: dns: restart sockets after fork()
9582 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
9583 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
9584 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
9585 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
9586 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
9587 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
9588 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
9589 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
9590 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
9591 - MINOR: http: don't close when redirect location doesn't start with "/"
9592 - MEDIUM: boringssl: support native multi-cert selection without bundling
9593 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
9594 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
9595 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
9596 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
9597 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
9598 - MEDIUM: ssl: remove ssl-options from crt-list
9599 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
9600 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
9601 - MINOR: ssl: improved cipherlist captures
9602 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
9603 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
9604 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
9605 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
9606 - MINOR: spoe: Remove SPOE details from the appctx structure
9607 - MINOR: spoe: Add status code in error variable instead of hardcoded value
9608 - MINOR: spoe: Send a log message when an error occurred during event processing
9609 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
9610 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
9611 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
9612 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
9613 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
9614 - MAJOR: spoe: refactor the filter to clean up the code
9615 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
9616 - REORG: spoe: Move struct and enum definitions in dedicated header file
9617 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
9618 - MINOR: spoe: Improve implementation of the payload fragmentation
9619 - MINOR: spoe: Add support of negation for options in SPOE configuration file
9620 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
9621 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
9622 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
9623 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
9624 - DOC: spoe: Update SPOE documentation to reflect recent changes
9625 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
9626 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
9627 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
9628 - BUG/MINOR: Fix "get map <map> <value>" CLI command
9629 - MINOR: Add nbsrv sample converter
9630 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
9631 - MINOR: Add hostname sample fetch
9632 - CLEANUP: Remove comment that's no longer valid
9633 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
9634 - MINOR: http-request tarpit deny_status.
9635 - CLEANUP: http: make http_server_error() not set the status anymore
9636 - MEDIUM: stats: Add JSON output option to show (info|stat)
9637 - MEDIUM: stats: Add show json schema
9638 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
9639 - MINOR: server: Add dynamic session cookies.
9640 - MINOR: cli: Let configure the dynamic cookies from the cli.
9641 - BUG/MINOR: checks: attempt clean shutw for SSL check
9642 - CONTRIB: tcploop: make it build on FreeBSD
9643 - CONTRIB: tcploop: fix time format to silence build warnings
9644 - CONTRIB: tcploop: report action 'K' (kill) in usage message
9645 - CONTRIB: tcploop: fix connect's address length
9646 - CONTRIB: tcploop: use the trash instead of NULL for recv()
9647 - BUG/MEDIUM: listener: do not try to rebind another process' socket
9648 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
9649 - CLEANUP: config: Typo in comment.
9650 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
9651 - TESTS: add a test configuration to stress handshake combinations
9652 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
9653 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
9654 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
9655 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
9656 - BUG: payload: fix payload not retrieving arbitrary lengths
9657 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
9658 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
9659 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
9660 - MINOR: doc: 2.4. Examples should be 2.5. Examples
9661 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
9662 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
9663 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
9664 - OPTIM: poll: enable support for POLLRDHUP
9665 - MINOR: kqueue: exclusively rely on the kqueue returned status
9666 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
9667 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
9668 - DOC/MINOR: Fix typos in proxy protocol doc
9669 - DOC: Protocol doc: add checksum, TLV type ranges
9670 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
9671 - DOC: Protocol doc: add noop TLV
9672 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
9673 - MINOR: dns: improve DNS response parsing to use as many available records as possible
9674 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
9675 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
9676 - MINOR: server: Make 'default-server' support 'backup' keyword.
9677 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
9678 - CLEANUP: server: code alignement.
9679 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
9680 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
9681 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
9682 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
9683 - CLEANUP: server: code alignement.
9684 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
9685 - MINOR: server: Make 'default-server' support 'ssl' keyword.
9686 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
9687 - CLEANUP: server: code alignement.
9688 - MINOR: server: Make 'default-server' support 'verify' keyword.
9689 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
9690 - MINOR: server: Make 'default-server' support 'check' keyword.
9691 - MINOR: server: Make 'default-server' support 'track' setting.
9692 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
9693 - MINOR: server: Make 'default-server' support 'redir' keyword.
9694 - MINOR: server: Make 'default-server' support 'observe' keyword.
9695 - MINOR: server: Make 'default-server' support 'cookie' keyword.
9696 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
9697 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
9698 - MINOR: server: Make 'default-server' support 'namespace' keyword.
9699 - MINOR: server: Make 'default-server' support 'source' keyword.
9700 - MINOR: server: Make 'default-server' support 'sni' keyword.
9701 - MINOR: server: Make 'default-server' support 'addr' keyword.
9702 - MINOR: server: Make 'default-server' support 'disabled' keyword.
9703 - MINOR: server: Add 'no-agent-check' server keyword.
9704 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
9705 - MINOR: doc: fix use-server example (imap vs mail)
9706 - BUG/MEDIUM: tcp: don't require privileges to bind to device
9707 - BUILD: make the release script use shortlog for the final changelog
9708 - BUILD: scripts: fix typo in announce-release error message
9709 - CLEANUP: time: curr_sec_ms doesn't need to be exported
9710 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
9711 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
9712 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
9713 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
9714 - CLEANUP: http: Remove channel_congested function
9715 - CLEANUP: buffers: Remove buffer_bounce_realign function
9716 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
9717 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
9718 - MINOR: http: Add debug messages when HTTP body analyzers are called
9719 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
9720 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
9721 - DOC: fix parenthesis and add missing "Example" tags
9722 - DOC: update the contributing file
9723 - DOC: log-format/tcplog/httplog update
9724 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
9725
Willy Tarreau0e658fb2016-11-25 16:55:50 +010097262016/11/25 : 1.8-dev0
9727
Willy Tarreaue59fcdd2016-11-25 16:39:17 +010097282016/11/25 : 1.7.0
9729 - SCRIPTS: make publish-release also copy the new SPOE doc
9730 - BUILD: http: include types/sample.h in proto_http.h
9731 - BUILD: debug/flags: remove test for SF_COMP_READY
9732 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
9733 - MINOR: lua: add function which return true if the channel is full.
9734 - MINOR: lua: add ip addresses and network manipulation function
9735 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
9736 - CONTRIB: tcploop: implement fork()
9737 - CONTRIB: tcploop: implement logging when called with -v
9738 - CONTRIB: tcploop: update the usage output
9739 - CONTRIB: tcploop: support sending plain strings
9740 - CONTRIB: tcploop: don't report failed send() or recv()
9741 - CONTRIB: tcploop: add basic loops via a jump instruction
9742 - BUG/MEDIUM: channel: bad unlikely macro
9743 - CLEANUP: lua: move comment
9744 - CLEANUP: lua: control executed twice
9745 - BUG/MEDIUM: ssl: Store certificate filename in a variable
9746 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
9747 - CLEANUP: ssl: Remove goto after return dead code
9748 - CLEANUP: ssl: Fix bind keywords name in comments
9749 - DOC: ssl: Use correct wording for ca-sign-pass
9750 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
9751 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
9752 - MINOR: cli: add private pointer and release function
9753 - MEDIUM: lua: Add cli handler for Lua
9754 - BUG/MEDIUM: connection: check the control layer before stopping polling
9755 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
9756 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
9757 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
9758 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
9759 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
9760 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
9761 - MINOR: spoe: Remove useless 'timeout ack' option
9762 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
9763 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
9764 - MINOR: spoe: Add "option set-on-error" statement
9765 - MINOR: stats: correct documentation of process ID for typed output
9766 - BUILD: contrib: fix ip6range build on Centos 7
9767 - BUILD: fix build on Solaris 10/11
9768 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
9769 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
9770 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
9771 - MINOR: connection: add a few functions to report the data and xprt layers' names
9772 - MINOR: connection: add names for transport and data layers
9773 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
9774 - REORG: cli: split dumpstats.h in stats.h and cli.h
9775 - REORG: cli: move ssl CLI functions to ssl_sock.c
9776 - REORG: cli: move map and acl code to map.c
9777 - REORG: cli: move show stat resolvers to dns.c
9778 - MINOR: cli: create new function cli_has_level() to validate permissions
9779 - MINOR: server: create new function cli_find_server() to find a server
9780 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
9781 - REORG: cli: move 'set server' to server.c
9782 - REORG: cli: move 'show pools' to memory.c
9783 - REORG: cli: move 'show servers' to proxy.c
9784 - REORG: cli: move 'show sess' to stream.c
9785 - REORG: cli: move 'show backend' to proxy.c
9786 - REORG: cli: move get/set weight to server.c
9787 - REORG: cli: move "show stat" to stats.c
9788 - REORG: cli: move "show info" to stats.c
9789 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
9790 - REORG: cli: move table dump/clear/set to stick_table.c
9791 - REORG: cli: move "show errors" out of cli.c
9792 - REORG: cli: make "show env" also use the generic keyword registration
9793 - REORG: cli: move "set timeout" to its own handler
9794 - REORG: cli: move "clear counters" to stats.c
9795 - REORG: cli: move "set maxconn global" to its own handler
9796 - REORG: cli: move "set maxconn server" to server.c
9797 - REORG: cli: move "set maxconn frontend" to proxy.c
9798 - REORG: cli: move "shutdown sessions server" to stream.c
9799 - REORG: cli: move "shutdown session" to stream.c
9800 - REORG: cli: move "shutdown frontend" to proxy.c
9801 - REORG: cli: move "{enable|disable} frontend" to proxy.c
9802 - REORG: cli: move "{enable|disable} server" to server.c
9803 - REORG: cli: move "{enable|disable} health" to server.c
9804 - REORG: cli: move "{enable|disable} agent" to server.c
9805 - REORG: cli: move the "set rate-limit" functions to their own parser
9806 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
9807 - CLEANUP: cli: simplify the request parser a little bit
9808 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
9809 - BUILD: server: remove a build warning introduced by latest series
9810 - BUG/MINOR: log-format: uncatched memory allocation functions
9811 - CLEANUP: log-format: useless file and line in json converter
9812 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
9813 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
9814 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
9815 - CLEANUP: log-format: remove unused arguments
9816 - MEDIUM: log-format: strict parsing and enable fail
9817 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
9818 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
9819 - BUILD: vars: remove a build warning on vars.c
9820 - MINOR: lua: add utility function for check boolean argument
9821 - MINOR: lua: Add tokenize function.
9822 - BUG/MINOR: conf: calloc untested
9823 - MINOR: http/conf: store the use_backend configuration file and line for logs
9824 - MEDIUM: log-format: Use standard HAProxy log system to report errors
9825 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
9826 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
9827 - MINOR: cli: make "show stat" support a proxy name
9828 - MINOR: cli: make "show errors" support a proxy name
9829 - MINOR: cli: make "show errors" capable of dumping only request or response
9830 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
9831 - CLEANUP: counters: move from 3 types to 2 types
9832 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
9833 - REORG: tcp-rules: move tcp rules processing to their own file
9834 - REORG: stkctr: move all the stick counters processing to stick-tables.c
9835 - DOC: update the roadmap file with the latest changes
9836
Willy Tarreaud5d890b2016-11-09 23:18:17 +010098372016/11/09 : 1.7-dev6
9838 - DOC: fix the entry for hash-balance-factor config option
9839 - DOC: Fix typo in description of `-st` parameter in man page
9840 - CLEANUP: cfgparse: Very minor spelling correction
9841 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
9842 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
9843 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
9844 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
9845 - MINOR: peers: remove the pointer to the stream
9846 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
9847 - DOC: stats: provide state details for show servers state
9848 - MEDIUM: tools: make str2ip2() preserve existing ports
9849 - CLEANUP: tools: make ipcpy() preserve the original port
9850 - OPTIM: http: move all http character classs tables into a single one
9851 - OPTIM: http: improve parsing performance of long header lines
9852 - OPTIM: http: improve parsing performance of long URIs
9853 - OPTIM: http: optimize lookup of comma and quote in header values
9854 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
9855 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
9856 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
9857 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
9858 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
9859 - DOC: move the device detection modules documentation to their own files
9860 - CLEANUP: wurfl: reduce exposure in the rest of the code
9861 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
9862 - MINOR: stream: make option contstats usable again
9863 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
9864 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
9865 - MAJOR: server: postpone address resolution
9866 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
9867 - MINOR: server: indicate in the logs when RMAINT is cleared
9868 - MINOR: stats: indicate it when a server is down due to resolution
9869 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
9870 - MINOR: dns: implement extra 'hold' timers.
9871 - MAJOR: dns: runtime resolution can change server admin state
9872 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
9873 - MEDIUM: server: add a new init-addr server line setting
9874 - MEDIUM: server: make use of init-addr
9875 - MINOR: server: implement init-addr none
9876 - MEDIUM: server: make libc resolution failure non-fatal
9877 - MINOR: server: add support for explicit numeric address in init-addr
9878 - DOC: add some documentation for the "init-addr" server keyword
9879 - MINOR: init: add -dr to ignore server address resolution failures
9880 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
9881 - BUG: vars: Fix 'set-var' converter because of a typo
9882 - CLEANUP: remove last references to 'ruleset' section
9883 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
9884 - MINOR: filters: Update filters documentation accordingly to recent changes
9885 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
9886 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
9887 - MINOR: flt_trace: Add hexdump option to dump forwarded data
9888 - MINOR: cfgparse: Add functions to backup and restore registered sections
9889 - MINOR: cfgparse: Parse scope lines and save the last one parsed
9890 - REORG: sample: move code to release a sample expression in sample.c
9891 - MINOR: vars: Allow '.' in variable names
9892 - MINOR: vars: Add vars_set_by_name_ifexist function
9893 - MEDIUM: vars: Add a per-process scope for variables
9894 - MINOR: vars: Add 'unset-var' action/converter
9895 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
9896 - MINOR: spoe: add random ip-reputation service as SPOA example
9897 - MINOR: spoe/checks: Add support for SPOP health checks
9898 - DOC: update ROADMAP file
9899
Willy Tarreau608efa12016-10-25 22:22:00 +020099002016/10/25 : 1.7-dev5
9901 - MINOR: cfgparse: few memory leaks fixes.
9902 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
9903 - CLEANUP: logs: remove unused log format field definitions
9904 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
9905 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
9906 - CLEANUP: proto_http: Removing useless variable assignation
9907 - CLEANUP: dumpstats: Removing useless variables allocation
9908 - CLEANUP: dns: Removing usless variable & assignation
9909 - BUG/MINOR: payload: fix SSLv2 version parser
9910 - MINOR: cli: allow the semi-colon to be escaped on the CLI
9911 - MINOR: cli: change a server health check port through the stats socket
9912 - BUG/MINOR: Fix OSX compilation errors
9913 - MAJOR: check: find out which port to use for health check at run time
9914 - MINOR: server: introduction of 3 new server flags
9915 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
9916 - MINOR: cli: ability to change a server's port
9917 - CLEANUP/MINOR dns: comment do not follow up code update
9918 - MINOR: chunk: new strncat function
9919 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
9920 - MINOR: dns: new MAX values
9921 - MINOR: dns: new macro to compute DNS header size
9922 - MINOR: dns: new DNS structures to store received packets
9923 - MEDIUM: dns: new DNS response parser
9924 - MINOR: dns: query type change when last record is a CNAME
9925 - MINOR: dns: proper domain name validation when receiving DNS response
9926 - MINOR: dns: comments in types/dns.h about structures endianness
9927 - BUG/MINOR: displayed PCRE version is running release
9928 - MINOR: show Built with PCRE version
9929 - MINOR: show Running on zlib version
9930 - MEDIUM: make SO_REUSEPORT configurable
9931 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
9932 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
9933 - BUG/MINOR: stats: report the correct conn_time in backend's html output
9934 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
9935 - MINOR: Add fe_req_rate sample fetch
9936 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
9937 - MEDIUM: cli: register CLI keywords with cli_register_kw()
9938 - BUILD: Make use of accept4() on OpenBSD.
9939 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
9940 - DOC: fix missed entry for "set-{src,dst}{,-port}"
9941 - BUG/MINOR: vars: use sess and not s->sess in action_store()
9942 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
9943 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
9944 - MINOR: stats: output dcon
9945 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
9946 - MINOR: counters: add new fields for denied_sess
9947 - MEDIUM: tcp: add registration and processing of TCP L5 rules
9948 - MINOR: stats: emit dses
9949 - DOC: document tcp-request session
9950 - MINOR: ssl: add debug traces
9951 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
9952 - BUG/MINOR: ssl: Check malloc return code
9953 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
9954 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
9955 - BUG/MINOR: systemd: always restore signals before execve()
9956 - BUG/MINOR: systemd: check return value of calloc()
9957 - MINOR: systemd: report it when execve() fails
9958 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
9959 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
9960 - MINOR: backend: add hash-balance-factor option for hash-type consistent
9961 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
9962 - MEDIUM: server: Implement bounded-load hash algorithm
9963 - SCRIPTS: make git-show-backports also dump a "git show" command
9964 - MINOR: build: Allow linking to device-atlas library file
9965 - MINOR: stats: Escape equals sign on socket dump
9966
Willy Tarreau41d5e3a2016-08-14 12:25:21 +020099672016/08/14 : 1.7-dev4
9968 - MINOR: add list_append_word function
9969 - MEDIUM: init: use list_append_word in haproxy.c
9970 - MEDIUM: init: allow directory as argument of -f
9971 - CLEANUP: config: detect double registration of a config section
9972 - MINOR: log: add the %Td log-format specifier
9973 - MEDIUM: filters: Move HTTP headers filtering in its own callback
9974 - MINOR: filters: Simplify calls to analyzers using 2 new macros
9975 - MEDIUM: filters: Add pre and post analyzer callbacks
9976 - DOC: filters: Update the filters documentation accordingly to recent changes
9977 - BUG/MEDIUM: init: don't use environment locale
9978 - SCRIPTS: teach git-show-backports how to report upstream commits
9979 - SCRIPTS: make git-show-backports capable of limiting its history
9980 - BUG/MAJOR: fix listening IP address storage for frontends
9981 - BUG/MINOR: fix listening IP address storage for frontends (cont)
9982 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
9983 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
9984 - BUG/MEDIUM: stick-tables: fix breakage in table converters
9985 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
9986 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
9987 - BUILD: fix build on Solaris 11
9988 - BUG/MEDIUM: config: fix multiple declaration of section parsers
9989 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
9990 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
9991 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
9992 - DOC: update doc about tls-tickets-keys dump
9993 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
9994 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
9995 - MEDIUM: tcp/http: add 'set-src-port' action
9996 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
9997 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
9998 - BUILD/MEDIUM: rebuild everything when an include file is changed
9999 - BUILD/MEDIUM: force a full rebuild if some build options change
10000 - BUG/MEDIUM: lua: converters doesn't work
10001 - BUG/MINOR: http: add-header: header name copied twice
10002 - BUG/MEDIUM: http: add-header: buffer overwritten
10003 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
10004 - MINOR: stream: export the function 'smp_create_src_stkctr'
10005 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
10006 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
10007 - BUG/MINOR: http: url32+src should use the big endian version of url32
10008 - BUG/MINOR: http: url32+src should check cli_conn before using it
10009 - DOC: http: add documentation for url32 and url32+src
10010 - BUG/MINOR: fix http-response set-log-level parsing error
10011 - MINOR: systemd: Use variable for config and pidfile paths
10012 - MINOR: systemd: Perform sanity check on config before reload
10013 - MEDIUM: ssl: support SNI filters with multicerts
10014 - MINOR: ssl: crt-list parsing factor
10015 - BUILD: ssl: fix typo causing a build failure in the multicert patch
10016 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
10017 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
10018 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
10019 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
10020 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
10021 - BUG/MAJOR: external-checks: use asynchronous signal delivery
10022 - BUG/MINOR: external-checks: do not unblock undesired signals
10023 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
10024 - BUG/MEDIUM: filters: Fix data filtering when data are modified
10025 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
10026 - BUG/MINOR: srv-state: fix incorrect output of state file
10027 - BUG/MINOR: ssl: close ssl key file on error
10028 - BUG/MINOR: http: fix misleading error message for response captures
10029 - BUG/BUILD: don't automatically run "make" on "make install"
10030 - DOC: add missing doc for http-request deny [deny_status <status>]
10031 - CLEANUP: dumpstats: u64 field is an unsigned type.
10032 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
10033 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
10034 - MINOR: new function my_realloc2 = realloc + free upon failure
10035 - CLEANUP: fixed some usages of realloc leading to memory leak
10036 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
10037 - CLEANUP: connection: using internal struct to hold source and dest port.
10038 - DOC: spelling fixes
10039 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
10040 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
10041 - BUG/MINOR: Fix endiness issue in DNS header creation code
10042 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
10043 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
10044 - MEDIUM: http: implement http-response track-sc* directive
10045 - BUG/MINOR: peers: Fix peers data decoding issue
10046 - BUG/MINOR: peers: don't count track-sc multiple times on errors
10047 - MINOR: standard: add function "escape_string"
10048 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
10049 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
10050 - DOC: lua: remove old functions
10051 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
10052 - DOC: fix json converter example and error message
10053 - BUG/MEDIUM: stream-int: completely detach connection on connect error
10054 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
10055 - BUILD: make proto_tcp.c compatible with musl library
10056 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
10057 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
10058 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
10059 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
10060 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
10061 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
10062 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
10063 - MINOR: sample: use smp_make_rw() in upper/lower converters
10064 - MINOR: tcp: add dst_is_local and src_is_local
10065 - BUG/MINOR: peers: some updates are pushed twice after a resync.
10066 - BUILD: protocol: fix some build errors on OpenBSD
10067 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
10068 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
10069 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
10070 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
10071 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
10072 - BUILD: compression: remove a warning when no compression lib is used
10073 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
10074 - MINOR: tcp: add further tcp info fetchers
10075 - BUG/MINOR: peers: empty chunks after a resync.
10076 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
10077 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
10078 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
10079 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
10080
Willy Tarreau7d1b48f2016-05-10 15:36:58 +0200100812016/05/10 : 1.7-dev3
10082 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
10083 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
10084 - BUILD: namespaces: fix a potential build warning in namespaces.c
10085 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
10086 - DOC: add encoding to json converter example
10087 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
10088 - DOC: Clarify tunes.vars.xxx-max-size settings
10089 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
10090 - CLEANUP: connection: fix double negation on memcmp()
10091 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
10092 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
10093 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
10094 - BUG/MINOR: lua: can't load external libraries
10095 - BUG/MINOR: prevent the dump of uninitialized vars
10096 - CLEANUP: map: it seems that the map were planed to be chained
10097 - MINOR: lua: move class registration facilities
10098 - MINOR: lua: remove some useless checks
10099 - CLEANUP: lua: Remove two same functions
10100 - MINOR: lua: refactor the Lua object registration
10101 - MINOR: lua: precise message when a critical error is catched
10102 - MINOR: lua: post initialization
10103 - MINOR: lua: Add internal function which strip spaces
10104 - MINOR: lua: convert field to lua type
10105 - DOC: "addr" parameter applies to both health and agent checks
10106 - DOC: timeout client: pointers to timeout http-request
10107 - DOC: typo on stick-store response
10108 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
10109 - DOC: typo: ACL subdir match
10110 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
10111 - DOC: regsub: parser limitation about the inability to use closing square brackets
10112 - DOC: typo: req.uri is now replaced by capture.req.uri
10113 - DOC: name set-gpt0 mismatch with the expected keyword
10114 - MINOR: http: sample fetch which returns unique-id
10115 - MINOR: dumpstats: extract stats fields enum and names
10116 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
10117 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
10118 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
10119 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
10120 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
10121 - MINOR: lua: dump general info
10122 - MINOR: lua: add class proxy
10123 - MINOR: lua: add class server
10124 - MINOR: lua: add class listener
10125 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
10126 - MEDIUM: proxy: use dynamic allocation for error dumps
10127 - CLEANUP: remove unneeded casts
10128 - CLEANUP: uniformize last argument of malloc/calloc
10129 - DOC: fix "needed" typo
10130 - BUG/MINOR: dumpstats: fix write to global chunk
10131 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
10132 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
10133 - CLEANUP: proto_http: few corrections for gcc warnings.
10134 - BUG/MINOR: DNS: resolution structure change
10135 - BUG/MINOR : allow to log cookie for tarpit and denied request
10136 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
10137 - OPTIM/MINOR: session: abort if possible before connecting to the backend
10138 - DOC: http: rename the unique-id sample and add the documentation
10139 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
10140 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
10141 - BUG/MINOR: server: risk of over reading the pref_net array.
10142 - BUG/MINOR: cfgparse: couple of small memory leaks.
10143 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
10144 - DOC: fix discrepancy in the example for http-request redirect
10145 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
10146 - CLEANUP: .gitignore cleanup
10147 - DOC: Clarify IPv4 address / mask notation rules
10148 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
10149 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
10150 - BUG/MINOR: listener: stop unbound listeners on startup
10151 - BUG/MINOR: fix maxaccept computation according to the frontend process range
10152 - TESTS: add blocksig.c to run tests with all signals blocked
10153 - MEDIUM: unblock signals on startup.
10154 - MINOR: filters: Print the list of existing filters during HA startup
10155 - MINOR: filters: Typo in an error message
10156 - MINOR: filters: Filters must define the callbacks struct during config parsing
10157 - DOC: filters: Add filters documentation
10158 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
10159 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
10160 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
10161 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
10162 - MINOR: Add ability for agent-check to set server maxconn
10163 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
10164 - MINOR: filters: add opaque data
10165 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
10166 - MINOR: lua: migrate the argument mask to 64 bits type.
10167 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
10168 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
10169 - BUG/MEDIUM: http: fix incorrect reporting of server errors
10170 - MINOR: channel: add new function channel_congested()
10171 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
10172 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
10173 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
10174 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
10175 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
10176 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
10177 - MINOR: stats: fix typo in help messages
10178 - MINOR: stats: show stat resolvers missing in the help message
10179 - BUG/MINOR: dns: fix DNS header definition
10180 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
10181 - CLEANUP: don't ignore scripts in .gitignore
10182 - BUILD: add a few release and backport scripts in scripts/
10183
Willy Tarreau8234f6d2016-03-14 00:10:05 +0100101842016/03/14 : 1.7-dev2
10185 - DOC: lua: fix lua API
10186 - DOC: mailers: typo in 'hostname' description
10187 - DOC: compression: missing mention of libslz for compression algorithm
10188 - BUILD/MINOR: regex: missing header
10189 - BUG/MINOR: stream: bad return code
10190 - DOC: lua: fix somme errors and add implicit types
10191 - MINOR: lua: add set/get priv for applets
10192 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
10193 - BUG/MINOR: http: Be sure to process all the data received from a server
10194 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
10195 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
10196 - DOC: ssl: fixed some formatting errors in crt tag
10197 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
10198 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
10199 - MINOR: chunk: make chunk_initstr() take a const string
10200 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
10201 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
10202 - MINOR: lru: new function to delete <nb> least recently used keys
10203 - DOC: add Ben Shillito as the maintainer of 51d
10204 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
10205 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
10206 - BUG/MINOR: 51d: Releases workset back to pool.
10207 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
10208 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
10209 - MINOR: rename master process name in -Ds (systemd mode)
10210 - DOC: fix a few spelling mistakes
10211 - DOC: fix "workaround" spelling
10212 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
10213 - MINOR: fix the return type for dns_response_get_query_id() function
10214 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
10215 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
10216 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
10217 - BUG/MEDIUM: servers state: server port is used uninitialized
10218 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
10219 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
10220 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
10221 - MEDIUM: pools: add a new flag to avoid rounding pool size up
10222 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
10223 - BUG/MINOR: stream: don't force retries if the server is DOWN
10224 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
10225 - MINOR: unix: don't mention free ports on EAGAIN
10226 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
10227 - MINOR: stats: send content-length with the redirect to allow keep-alive
10228 - BUG: stream_interface: Reuse connection even if the output channel is empty
10229 - DOC: remove old tunnel mode assumptions
10230 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
10231 - BUG/MEDIUM: http-reuse: do not share private connections across backends
10232 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
10233 - BUG/MINOR: stats: fix missing comma in stats on agent drain
10234 - MAJOR: filters: Add filters support
10235 - MINOR: filters: Do not reset stream analyzers if the client is gone
10236 - REORG: filters: Prepare creation of the HTTP compression filter
10237 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
10238 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
10239 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
10240 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
10241 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
10242 - MINOR: filters: Add stream_filters structure to hide filters info
10243 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
10244 - MINOR: filters: Remove unused or useless stuff and do small optimizations
10245 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
10246 - MINOR: filters/http: Slightly update the parsing of chunks
10247 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
10248 - MINOR: filters: Add an filter example
10249 - MINOR: filters: Extract proxy stuff from the struct filter
10250 - MINOR: map: Add regex matching replacement
10251 - BUG/MINOR: lua: unsafe initialization
10252 - DOC: lua: fix somme errors
10253 - MINOR: lua: file dedicated to unsafe functions
10254 - MINOR: lua: add "now" time function
10255 - MINOR: standard: add RFC HTTP date parser
10256 - MINOR: lua: Add date functions
10257 - MINOR: lua: move common function
10258 - MINOR: lua: merge function
10259 - MINOR: lua: Add concat class
10260 - MINOR: standard: add function "escape_chunk"
10261 - MEDIUM: log: add a new log format flag "E"
10262 - DOC: add server name at rate-limit sessions example
10263 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
10264 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
10265 - DOC: LUA: fix some typos and syntax errors
10266 - MINOR: cli: add a new "show env" command
10267 - MEDIUM: config: allow to manipulate environment variables in the global section
10268 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
10269 - MINOR: mailers: increase default timeout to 10 seconds
10270 - MINOR: mailers: use <CRLF> for all line endings
10271 - BUG/MAJOR: lua: segfault using Concat object
10272 - DOC: lua: copyrights
10273 - MINOR: common: mask conversion
10274 - MEDIUM: dns: extract options
10275 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
10276 - MINOR: mailers: make it possible to configure the connection timeout
10277 - BUG/MAJOR: lua: applets can't sleep.
10278 - BUG/MINOR: server: some prototypes are renamed
10279 - BUG/MINOR: lua: Useless copy
10280 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
10281 - BUG/MINOR: server: fix the format of the warning on address change
10282 - CLEANUP: server: add "const" to some message strings
10283 - MINOR: server: generalize the "updater" source
10284 - BUG/MEDIUM: chunks: always reject negative-length chunks
10285 - BUG/MINOR: systemd: ensure we don't miss signals
10286 - BUG/MINOR: systemd: report the correct signal in debug message output
10287 - BUG/MINOR: systemd: propagate the correct signal to haproxy
10288 - MINOR: systemd: ensure a reload doesn't mask a stop
10289 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
10290 - CLEANUP: stats: Avoid computation with uninitialized bits.
10291 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
10292 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
10293 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
10294 - BUG/MAJOR: samples: check smp->strm before using it
10295 - MINOR: sample: add a new helper to initialize the owner of a sample
10296 - MINOR: sample: always set a new sample's owner before evaluating it
10297 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
10298 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
10299 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
10300 - MINOR: stats: create fields types suitable for all CSV output data
10301 - MINOR: stats: add all the "show info" fields in a table
10302 - MEDIUM: stats: fill all the show info elements prior to displaying them
10303 - MINOR: stats: add a function to emit fields into a chunk
10304 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
10305 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
10306 - MINOR: stats: add a declaration of all stats fields
10307 - MINOR: stats: don't hard-code the CSV fields list anymore
10308 - MINOR: stats: create stats fields storage and CSV dump function
10309 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
10310 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
10311 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
10312 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
10313 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
10314 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
10315 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
10316 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
10317 - MEDIUM: stats: move the server state coloring logic to the server dump function
10318 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
10319 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
10320 - MINOR: stats: make CSV report server check status only when enabled
10321 - MINOR: stats: only report backend's down time if it has servers
10322 - MINOR: stats: prepend '*' in front of the check status when in progress
10323 - MINOR: stats: make HTML stats dump rely on the table for the check status
10324 - MINOR: stats: add agent_status, agent_code, agent_duration to output
10325 - MINOR: stats: add check_desc and agent_desc to the output fields
10326 - MINOR: stats: add check and agent's health values in the output
10327 - MEDIUM: stats: make the HTML server state dump use the CSV states
10328 - MEDIUM: stats: only report observe errors when observe is set
10329 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
10330 - MEDIUM: stats: report server's address in the CSV output
10331 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
10332 - MEDIUM: stats: compute the color code only in the HTML form
10333 - MEDIUM: stats: report the listeners' address in the CSV output
10334 - MEDIUM: stats: make it possible to report the WAITING state for listeners
10335 - REORG: stats: dump the frontend's HTML stats via a generic function
10336 - REORG: stats: dump the socket stats via the generic function
10337 - REORG: stats: dump the server stats via the generic function
10338 - REORG: stats: dump the backend stats via the generic function
10339 - MEDIUM: stats: add a new "mode" column to report the proxy mode
10340 - MINOR: stats: report the load balancing algorithm in CSV output
10341 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
10342 - MINOR: stats: report number of intercepted requests for frontend and backends
10343 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
10344 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
10345 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
10346 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
10347 - MINOR: stats: add functions to emit typed fields into a chunk
10348 - MEDIUM: stats: support "show info typed" on the CLI
10349 - MEDIUM: stats: implement a typed output format for stats
10350 - DOC: document the "show info typed" and "show stat typed" output formats
10351 - MINOR: cfgparse: warn when uid parameter is not a number
10352 - MINOR: cfgparse: warn when gid parameter is not a number
10353 - BUG/MINOR: standard: Avoid free of non-allocated pointer
10354 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
10355 - CLEANUP: http: fix a build warning introduced by a recent fix
10356 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
10357
Willy Tarreaucb928252015-12-20 23:33:18 +0100103582015/12/20 : 1.7-dev1
10359 - DOC: specify that stats socket doc (section 9.2) is in management
10360 - BUILD: install only relevant and existing documentation
10361 - CLEANUP: don't ignore debian/ directory if present
10362 - BUG/MINOR: dns: parsing error of some DNS response
10363 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
10364 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
10365 - MEDIUM: dns: Don't use the ANY query type
10366 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
10367 - DOC: fix a typo for a "deviceatlas" keyword
10368 - FIX: small typo in an example using the "Referer" header
10369 - MINOR: cli: ability to set per-server maxconn
10370 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
10371 - DEBUG/MEDIUM: memory: optionally protect free data in pools
10372 - DEBUG/MEDIUM: memory: add optional control pool memory operations
10373 - MEDIUM: memory: add accounting for failed allocations
10374 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
10375 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
10376 - BUG/MINOR: dns: unable to parse CNAMEs response
10377 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
10378 - DOC: deviceatlas: more example use cases.
10379 - MINOR: config: allow IPv6 bracketed literals
10380 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
10381 - BUILD: add Haiku as supported target.
10382 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
10383 - DOC: typo on capture.res.hdr and capture.req.hdr
10384 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
10385 - CLEANUP: use direction names in place of numeric values
10386 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
10387 - MINOR: check: add agent-send server parameter
10388 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
10389 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
10390 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
10391 - BUILD: freebsd: double declaration
10392 - BUG/MEDIUM: lua: clean output buffer
10393 - BUILD: check for libressl to be able to build against it
10394 - DOC: lua-api/index.rst small example fixes, spelling correction.
10395 - DOC: lua: architecture and first steps
10396 - DOC: relation between timeout http-request and option http-buffer-request
10397 - BUILD: Make deviceatlas require PCRE
10398 - BUG: http: do not abort keep-alive connections on server timeout
10399 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
10400 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
10401 - BUILD/MINOR: http: proto_http.h needs sample.h
10402 - BUG/MEDIUM: http: don't enable auto-close on the response side
10403 - BUG/MEDIUM: stream: fix half-closed timeout handling
10404 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
10405 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
10406 - BUG/MEDIUM: sample: urlp can't match an empty value
10407 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
10408 - CLEANUP: proxy: calloc call inverted arguments
10409 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
10410 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
10411 - DOC: Edited 51Degrees section of README/
10412 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
10413 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
10414 - BUG/MINOR: checks: typo in an email-alert error message
10415 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
10416 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
10417 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
10418 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
10419 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
10420 - MINOR: ssl: Added cert_key_and_chain struct
10421 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
10422 - MINOR: ssl: Added multi cert support for crt-list config keyword
10423 - MEDIUM: ssl: Added multi cert support for loading crt directories
10424 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
10425 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
10426 - MINOR: config: make tune.recv_enough configurable
10427 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
10428 - DOC: ssl: Adding docs for Multi-Cert bundling
10429 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
10430 - BUG/MEDIUM: peers: old stick table updates could be repushed.
10431 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
10432 - REORG/MINOR: lua: convert boolean "int" to bitfield
10433 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
10434 - BUG/MINOR: lua: Lua applets must not use http_txn
10435 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
10436 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
10437 - CLEANUP: lua: bad error messages
10438 - CONTRIB: initiate a debugging suite to make debugging easier
10439
Willy Tarreau991b4782015-10-13 21:48:10 +0200104402015/10/13 : 1.7-dev0
10441 - exact copy of 1.6.0
10442
Willy Tarreau844028b2015-10-13 18:52:22 +0200104432015/10/13 : 1.6.0
10444 - BUG/MINOR: Handle interactive mode in cli handler
10445 - DOC: global section missing parameters
10446 - DOC: backend section missing parameters
10447 - DOC: stats paramaters available in frontend
10448 - MINOR: lru: do not allocate useless memory in lru64_lookup
10449 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
10450 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
10451 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
10452 - MINOR: ssl: Read the file used to generate certificates in any order
10453 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
10454 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
10455 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
10456 - BUILD: Fix the build on OSX (htonll/ntohll)
10457 - BUILD: enable build on Linux/s390x
10458 - BUG/MEDIUM: lua: direction test failed
10459 - MINOR: lua: fix a spelling error in some error messages
10460 - CLEANUP: cli: ensure we can never double-free error messages
10461 - BUG/MEDIUM: lua: force server-close mode on Lua services
10462 - MEDIUM: init: support more command line arguments after pid list
10463 - MEDIUM: init: support a list of files on the command line
10464 - MINOR: debug: enable memory poisonning to use byte 0
10465 - BUILD: ssl: fix build error introduced by recent commit
10466 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
10467 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
10468 - DOC: mention the "namespace" options for bind and server lines
10469 - DOC: add the "management" documentation
10470 - DOC: move the stats socket documentation from config to management
10471 - MINOR: examples: update haproxy.spec to mention new docs
10472 - DOC: mention management.txt in README
10473 - DOC: remove haproxy-{en,fr}.txt
10474 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
10475 - MINOR: init: report use of libslz instead of "no compression"
10476 - CLEANUP: examples: remove some obsolete and confusing files
10477 - CLEANUP: examples: remove obsolete configuration file samples
10478 - CLEANUP: examples: fix the example file content-sw-sample.cfg
10479 - CLEANUP: examples: update sample file option-http_proxy.cfg
10480 - CLEANUP: examples: update sample file ssl.cfg
10481 - CLEANUP: tests: move a test file from examples/ to tests/
10482 - CLEANUP: examples: shut up warnings in transparent proxy example
10483 - CLEANUP: tests: removed completely obsolete test files
10484 - DOC: update ROADMAP to remove what was done in 1.6
10485 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
10486
Willy Tarreau8c1ad712015-10-06 12:13:56 +0200104872015/10/06 : 1.6-dev7
10488 - MINOR: cli: Dump all resolvers stats if no resolver section is given
10489 - BUG: config: external-check command validation is checking for incorrect arguments.
10490 - DOC: documentation format cleanups
10491 - DOC: lua: few typos.
10492 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
10493 - BUG/MEDIUM: logs: segfault writing to log from Lua
10494 - DOC: fix lua use-service example
10495 - MINOR: payload: add support for tls session ticket ext
10496 - MINOR: lua: remove the run flag
10497 - MEDIUM: lua: change the timeout execution
10498 - MINOR: lua: rename the tune.lua.applet-timeout
10499 - DOC: lua: update Lua doc
10500 - DOC: lua: update doc according with the last Lua changes
10501 - MINOR: http/tcp: fill the avalaible actions
10502 - DOC: reorder misplaced res.ssl_hello_type in the doc
10503 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
10504 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
10505 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
10506 - BUILD: server: fix build warnings introduced by load-server-state
10507 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
10508
Willy Tarreaue7ae6562015-09-28 23:46:27 +0200105092015/09/28 : 1.6-dev6
10510 - BUG/MAJOR: can't enable a server through the stat socket
10511 - MINOR: server: Macro definition for server-state
10512 - MINOR: cli: new stats socket command: show servers state
10513 - DOC: stats socket command: show servers state
10514 - MINOR: config: new global directive server-state-base
10515 - DOC: global directive server-state-base
10516 - MINOR: config: new global section directive: server-state-file
10517 - DOC: new global directive: server-state-file
10518 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
10519 - DOC: load-server-state-from-file
10520 - MINOR: init: server state loaded from file
10521 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
10522 - MINOR: cli: new stats socket command: show backend
10523 - DOC: servers state seamless reload example
10524 - BUG: dns: can't connect UDP socket on FreeBSD
10525 - MINOR: cfgparse: New function cfg_unregister_sections()
10526 - MINOR: chunk: New function free_trash_buffers()
10527 - BUG/MEDIUM: main: Freeing a bunch of static pointers
10528 - MINOR: proto_http: Externalisation of previously internal functions
10529 - MINOR: global: Few new struct fields for da module
10530 - MAJOR: da: Update of the DeviceAtlas API module
10531 - DOC: DeviceAtlas new keywords
10532 - DOC: README: DeviceAtlas sample configuration updates
10533 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
10534 - MEDIUM: log: use a separate buffer for the header and for the message
10535 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
10536 - MEDIUM: logs: add support for RFC5424 header format per logger
10537 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
10538 - DOC: mention support for the RFC5424 syslog message format
10539 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
10540 - MEDIUM: logs: pass the trailing "\n" as an iovec
10541 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
10542 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
10543 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
10544 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
10545 - MINOR: global: Added new fields for 51Degrees device detection
10546 - DOC: Added more explanation for 51Degrees V3.2
10547 - BUILD: Changed 51Degrees option to support V3.2
10548 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
10549 - MINOR: 51d: Improved string handling for LRU cache
10550 - DOC: add references to rise/fall for the fastinter explanation
10551 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
10552 - BUG/MAJOR: lua: potential unexpected aborts()
10553 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
10554 - MINOR: action: add private configuration
10555 - MINOR: action: add reference to the original keywork matched for the called parser.
10556 - MINOR: lua: change actions registration
10557 - MEDIUM: proto_http: smp_prefetch_http initialize txn
10558 - MINOR: channel: rename function chn_sess to chn_strm
10559 - CLEANUP: lua: align defines
10560 - MINOR: http: export http_get_path() function
10561 - MINOR: http: export the get_reason() function
10562 - MINOR: http: export function http_msg_analyzer()
10563 - MINOR: http: split initialization
10564 - MINOR: lua: reset pointer after use
10565 - MINOR: lua: identify userdata objects
10566 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
10567 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
10568 - CLEANUP: lua: use calloc in place of malloc
10569 - BUG/MEDIUM: lua: longjmp function must be unregistered
10570 - BUG/MEDIUM: lua: forces a garbage collection
10571 - BUG/MEDIUM: lua: wakeup task on bad conditions
10572 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
10573 - MINOR: lua: extend socket address to support non-IP families
10574 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
10575 - BUG/MEDIUM: lua: socket destroy before reading pending data
10576 - MEDIUM: lua: change the GC policy
10577 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
10578 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
10579 - MINOR: applet: add init function
10580 - MINOR: applet: add an execution timeout
10581 - MINOR: stream/applet: add use-service action
10582 - MINOR: lua: add AppletTCP class and service
10583 - MINOR: lua: add AppletHTTP class and service
10584 - DOC: lua: some documentation update
10585 - DOC: add the documentation about internal circular lists
10586 - DOC: add a CONTRIBUTING file
10587 - DOC: add a MAINTAINERS file
10588 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
10589 - DOC: update coding-style to reference checkpatch.pl
10590 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
10591 - BUG/MINOR: args: add name for ARGT_VAR
10592 - DOC: add more entries to MAINTAINERS
10593 - DOC: add more entries to MAINTAINERS
10594 - CLEANUP: stream-int: remove obsolete function si_applet_call()
10595 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
10596 - BUG/MEDIUM: http: do not dereference strm_li(stream)
10597 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
10598 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
10599 - MINOR: stream-int: use si_release_endpoint() to close idle conns
10600 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
10601 - BUG/MEDIUM: acl: always accept match "found"
10602 - MINOR: applet: rename applet_runq to applet_active_queue
10603 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
10604 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
10605 - MINOR: stream-int: implement a new stream_int_update() function
10606 - MEDIUM: stream-int: factor out the stream update functions
10607 - MEDIUM: stream-int: call stream_int_update() from si_update()
10608 - MINOR: stream-int: export stream_int_update_*
10609 - MINOR: stream-int: move the applet_pause call out of the stream updates
10610 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
10611 - MINOR: stream-int: implement the stream_int_notify() function
10612 - MEDIUM: stream-int: use the same stream notification function for applets and conns
10613 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
10614 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
10615 - BUG/MEDIUM: applet: fix reporting of broken write situation
10616 - BUG/MINOR: stats: do not call cli_release_handler 3 times
10617 - BUG/MEDIUM: cli: properly handle closed output
10618 - MINOR: cli: do not call the release handler on internal error.
10619 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
10620 - DEBUG: add p_malloc() to return a poisonned memory area
10621 - CLEANUP: lua: remove unneeded memset(0) after calloc()
10622 - MINOR: lua: use the proper applet wakeup mechanism
10623 - BUG/MEDIUM: lua: better fix for the protocol check
10624 - BUG/MEDIUM: lua: properly set the target on the connection
10625 - MEDIUM: actions: pass a new "flags" argument to custom actions
10626 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
10627 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
10628 - MEDIUM: lua: only allow actions to yield if not in a final call
10629 - DOC: clarify how to make use of abstract sockets in socat
10630 - CLEANUP: config: make the errorloc/errorfile messages less confusing
10631 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
10632 - BUG/MINOR: config: check that tune.bufsize is always positive
10633 - MEDIUM: config: set tune.maxrewrite to 1024 by default
10634 - DOC: add David Carlier as maintainer of da.c
10635 - DOC: fix some broken unexpected unicode chars in the Lua doc.
10636 - BUG/MEDIUM: proxy: ignore stopped peers
10637 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
10638 - MEDIUM: init: completely deallocate unused peers
10639 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
10640 - DOC: remove outdated actions lists on tcp-request/response
10641 - MEDIUM: tcp: add new tcp action "silent-drop"
10642 - DOC: add URLs to optional libraries in the README
10643
Willy Tarreaua02e8a62015-09-14 12:23:10 +0200106442015/09/14 : 1.6-dev5
10645 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
10646 - BUG/MEDIUM: dns: DNS resolution doesn't start
10647 - BUG/MAJOR: dns: dns client resolution infinite loop
10648 - MINOR: dns: coding style update
10649 - MINOR: dns: new bitmasks to use against DNS flags
10650 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
10651 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
10652 - MEDIUM: dns: handling of truncated response
10653 - MINOR: DNS client query type failover management
10654 - MINOR: dns: no expected DNS record type found
10655 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
10656 - BUG/MINOR: DNS request retry counter used for retry only
10657 - DOC: DNS documentation updated
10658 - MEDIUM: actions: remove ACTION_STOP
10659 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
10660 - BUG/MINOR: lua: last log character truncated.
10661 - CLEANUP: typo: bad indent
10662 - CLEANUP: actions: missplaced includes
10663 - MINOR: build: missing header
10664 - CLEANUP: lua: Merge log functions
10665 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
10666 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
10667 - BUG/MAJOR: http: don't call http_send_name_header() after an error
10668 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
10669 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
10670 - BUG/MEDIUM: dns: use the correct server hostname when resolving
10671
Willy Tarreau61d301f2015-08-30 00:17:17 +0200106722015/08/30 : 1.6-dev4
10673 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
10674 - DOC: typo in 'redirect', 302 code meaning
10675 - DOC: typos in tcp-check expect examples
10676 - DOC: resolve-prefer default value and default-server update
10677 - MINOR: DNS counters: increment valid counter
10678 - BUG/MEDIUM: DNS resolution response parsing broken
10679 - MINOR: server: add new SRV_ADMF_CMAINT flag
10680 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
10681 - BUG/MEDIUM: dns: wrong first time DNS resolution
10682 - BUG/MEDIUM: lua: Lua tasks fail to start.
10683 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
10684 - DOC/MINOR: fix OpenBSD versions where haproxy works
10685 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
10686 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
10687 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
10688 - BUILD: ssl: Allow building against libssl without SSLv3.
10689 - DOC: clarify some points about SSL and the proxy protocol
10690 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
10691 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
10692 - DOC: match several lua configuration option names to those implemented in code
10693 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
10694 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
10695 - MINOR: stream: initialize the current_rule field to NULL on stream init
10696 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
10697 - CLEANUP: proto_http: remove useless initialisation
10698 - CLEANUP: http/tcp actions: remove the scope member
10699 - BUG/MINOR: proto_tcp: custom action continue is ignored
10700 - MINOR: proto_tcp: add session in the action prototype
10701 - MINOR: vars: reduce the code size of some wrappers
10702 - MINOR: Move http method enum from proto_http to sample
10703 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
10704 - MINOR: sample/proto_tcp: export "smp_fetch_src"
10705 - MEDIUM: cli: rely on the map's output type instead of the sample type
10706 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
10707 - BUG/MEDIUM: vars: segfault during the configuration parsing
10708 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
10709 - BUG/MEDIUM: lua: bad error processing
10710 - MINOR: samples: rename a struct from sample_storage to sample_data
10711 - MINOR: samples: rename some struct member from "smp" to "data"
10712 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
10713 - MINOR: samples: extract the anonymous union and create the union sample_value
10714 - MINOR: samples: rename union from "data" to "u"
10715 - MEDIUM: 51degrees: Adapt the 51Degrees library
10716 - MINOR: samples: data assignation simplification
10717 - MEDIUM: pattern/map: Maps can returns various types
10718 - MINOR: map: The map can return IPv4 and IPv6
10719 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
10720 - MINOR: actions: Remove the data opaque pointer
10721 - MINOR: lua: use the hlua_rule type in place of opaque type
10722 - MINOR: vars: use the vars types as argument in place of opaque type
10723 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
10724 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
10725 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
10726 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
10727 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
10728 - MEDIUM: capture: Move the capture configuration storage in the union
10729 - MINOR: actions: add "from" information
10730 - MINOR: actions: remove the mark indicating the last entry in enum
10731 - MINOR: actions: Declare all the embedded actions in the same header file
10732 - MINOR: actions: change actions names
10733 - MEDIUM: actions: Add standard return code for the action API
10734 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
10735 - MINOR: proto_tcp: proto_tcp.h is now useles
10736 - MINOR: actions: mutualise the action keyword lookup
10737 - MEDIUM: actions: Normalize the return code of the configuration parsers
10738 - MINOR: actions: Remove wrappers
10739 - MAJOR: stick-tables: use sample types in place of dedicated types
10740 - MEDIUM: stick-tables: use the sample type names
10741 - MAJOR: stick-tables: remove key storage from the key struct
10742 - MEDIUM: stick-tables: Add GPT0 in the stick tables
10743 - MINOR: stick-tables: Add GPT0 access
10744 - MINOR: stick-tables: Add GPC0 actions
10745 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
10746 - DOC: ssl: missing LF
10747 - MINOR: lua: add core.done() function
10748 - DOC: fix function name
10749 - BUG/MINOR: lua: in some case a sample may remain undefined
10750 - DOC: fix "http_action_set_req_line()" comments
10751 - MINOR: http: Action for manipulating the returned status code.
10752 - MEDIUM: lua: turns txn:close into txn:done
10753 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
10754 - BUILD: link with libdl if needed for Lua support
10755 - CLEANUP: backend: factor out objt_server() in connect_server()
10756 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
10757 - MEDIUM: stream-int: simplify si_alloc_conn()
10758 - MINOR: stream-int: add new function si_detach_endpoint()
10759 - MINOR: server: add a list of private idle connections
10760 - MINOR: connection: add a new list member in the connection struct
10761 - MEDIUM: stream-int: queue idle connections at the server
10762 - MINOR: stream-int: make si_idle_conn() only accept valid connections
10763 - MINOR: server: add a list of already used idle connections
10764 - MINOR: connection: add a new flag CO_FL_PRIVATE
10765 - MINOR: config: add new setting "http-reuse"
10766 - MAJOR: backend: initial work towards connection reuse
10767 - MAJOR: backend: improve the connection reuse mechanism
10768 - MEDIUM: backend: implement "http-reuse safe"
10769 - MINOR: server: add a list of safe, already reused idle connections
10770 - MEDIUM: backend: add the "http-reuse aggressive" strategy
10771 - DOC: document the new http-reuse directive
10772 - DOC: internals: document next steps for HTTP connection reuse
10773 - DOC: mention that %ms is left-padded with zeroes.
10774 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
10775 - MAJOR: http: remove references to appsession
10776 - CLEANUP: config: remove appsession initialization
10777 - CLEANUP: appsession: remove appsession.c and sessionhash.c
10778 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
10779 - CLEANUP: proxy: remove last references to appsession
10780 - CLEANUP: appsession: remove the last include files
10781 - DOC: remove documentation about appsession
10782 - CLEANUP: .gitignore: ignore more test files
10783 - CLEANUP: .gitignore: finally ignore everything but what is known.
10784 - MEDIUM: config: emit a warning on a frontend without listener
10785 - DOC: add doc/internals/entities-v2.txt
10786 - DOC: add doc/linux-syn-cookies.txt
10787 - DOC: add design thoughts on HTTP/2
10788 - DOC: add some thoughts on connection sharing for HTTP/2
10789 - DOC: add design thoughts on dynamic buffer allocation
10790 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
10791 - DOC: add new file intro.txt
10792 - MAJOR: tproxy: remove support for cttproxy
10793 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
10794 - DOC: lua: replace txn:close with txn:done in lua-api
10795 - DOC: intro: minor updates and fixes
10796 - DOC: intro: fix too long line.
10797 - DOC: fix example of http-request using ssl_fc_session_id
10798 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
10799 - CLEANUP: lua: fix some indent issues
10800 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
10801 - DOC: lua: mention than txn:close was renamed txn:done.
10802
Willy Tarreau50bdda62015-07-22 17:32:56 +0200108032015/07/22 : 1.6-dev3
10804 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
10805 - MEDIUM: http: Add new 'set-src' option to http-request
10806 - DOC usesrc root privileges requirments
10807 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
10808 - MINOR: proxy: bit field for proxy_find_best_match diff status
10809 - MINOR: server: new server flag: SRV_F_FORCED_ID
10810 - MINOR: server: server_find functions: id, name, best_match
10811 - DOC: dns: fix chapters syntax
10812 - BUILD/MINOR: tools: rename popcount to my_popcountl
10813 - BUILD: add netbsd TARGET
10814 - MEDIUM: 51Degrees code refactoring and cleanup
10815 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
10816 - DOC: add notes about the "51degrees-cache-size" parameter
10817 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
10818 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
10819 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
10820 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
10821 - BUG/MINOR: lua: type error in the arguments wrapper
10822 - CLEANUP: vars: remove unused struct
10823 - BUG/MINOR: http/sample: gmtime/localtime can fail
10824 - MINOR: standard: add 64 bits conversion functions
10825 - MAJOR: sample: converts uint and sint in 64 bits signed integer
10826 - MAJOR: arg: converts uint and sint in sint
10827 - MEDIUM: sample: switch to saturated arithmetic
10828 - MINOR: vars: returns variable content
10829 - MEDIUM: vars/sample: operators can use variables as parameter
10830 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
10831 - BUILD/MINOR: lua: fix a harmless build warning
10832 - BUILD/MINOR: stats: fix build warning due to condition always true
10833 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
10834 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
10835 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
10836 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
10837 - MINOR: vars: make the accounting not depend on the stream
10838 - MEDIUM: vars: move the session variables to the session, not the stream
10839 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
10840 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
10841 - BUG/MAJOR: tcp: tcp rulesets were still broken
10842 - MINOR: stats: improve compression stats reporting
10843 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
10844 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
10845 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
10846 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
10847 - MINOR: args: add new context for servers
10848 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
10849 - MINOR: ssl: provide ia function to set the SNI extension on a connection
10850 - MEDIUM: ssl: add sni support on the server lines
10851 - CLEANUP: stream: remove a useless call to si_detach()
10852 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
10853 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
10854 - MINOR: stream-int: only use si_release_endpoint() to release a connection
10855 - MINOR: standard: provide htonll() and ntohll()
10856 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
10857 - BUG/MAJOR: dns: fix the length of the string to be copied
10858
Willy Tarreauad90f0d2015-06-17 15:53:25 +0200108592015/06/17 : 1.6-dev2
10860 - BUG/MINOR: ssl: Display correct filename in error message
10861 - MEDIUM: logs: Add HTTP request-line log format directives
10862 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
10863 - BUG/MINOR: check: fix tcpcheck error message
10864 - MINOR: use an int instead of calling tcpcheck_get_step_id
10865 - MINOR: tcpcheck_rule structure update
10866 - MINOR: include comment in tcpcheck error log
10867 - DOC: tcpcheck comment documentation
10868 - MEDIUM: server: add support for changing a server's address
10869 - MEDIUM: server: change server ip address from stats socket
10870 - MEDIUM: protocol: add minimalist UDP protocol client
10871 - MEDIUM: dns: implement a DNS resolver
10872 - MAJOR: server: add DNS-based server name resolution
10873 - DOC: server name resolution + proto DNS
10874 - MINOR: dns: add DNS statistics
10875 - MEDIUM: http: configurable http result codes for http-request deny
10876 - BUILD: Compile clean when debug options defined
10877 - MINOR: lru: Add the possibility to free data when an item is removed
10878 - MINOR: lru: Add lru64_lookup function
10879 - MEDIUM: ssl: Add options to forge SSL certificates
10880 - MINOR: ssl: Export functions to manipulate generated certificates
10881 - MEDIUM: config: add DeviceAtlas global keywords
10882 - MEDIUM: global: add the DeviceAtlas required elements to struct global
10883 - MEDIUM: sample: add the da-csv converter
10884 - MEDIUM: init: DeviceAtlas initialization
10885 - BUILD: Makefile: add options to build with DeviceAtlas
10886 - DOC: README: explain how to build with DeviceAtlas
10887 - BUG/MEDIUM: http: fix the url_param fetch
10888 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
10889 - MAJOR: peers: peers protocol version 2.0
10890 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
10891 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
10892 - MEDIUM: peers: support of any stick-table data-types for sync
10893 - BUG/MAJOR: sample: regression on sample cast to stick table types.
10894 - CLEANUP: deinit: remove codes for cleaning p->block_rules
10895 - DOC: Fix L4TOUT typo in documentation
10896 - DOC: set-log-level in Logging section preamble
10897 - BUG/MEDIUM: compat: fix segfault on FreeBSD
10898 - MEDIUM: check: include server address and port in the send-state header
10899 - MEDIUM: backend: Allow redispatch on retry intervals
10900 - MINOR: Add TLS ticket keys reference and use it in the listener struct
10901 - MEDIUM: Add support for updating TLS ticket keys via socket
10902 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
10903 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
10904 - DOC: Update doc about weight, act and bck fields in the statistics
10905 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
10906 - MINOR: ssl: add a destructor to free allocated SSL ressources
10907 - MEDIUM: ssl: add the possibility to use a global DH parameters file
10908 - MEDIUM: ssl: replace standards DH groups with custom ones
10909 - MEDIUM: stats: Add enum srv_stats_state
10910 - MEDIUM: stats: Separate server state and colour in stats
10911 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
10912 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
10913 - MEDIUM: Lower priority of email alerts for log-health-checks messages
10914 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
10915 - MEDIUM: Document when email-alerts are sent
10916 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
10917 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
10918 - BUG/MINOR: utf8: remove compilator warning
10919 - MEDIUM: map: uses HAProxy facilities to store default value
10920 - BUG/MINOR: lua: error in detection of mandatory arguments
10921 - BUG/MINOR: lua: set current proxy as default value if it is possible
10922 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
10923 - BUG/MEDIUM: lua: undetected infinite loop
10924 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
10925 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
10926 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
10927 - BUILD: lua: it miss the '-ldl' directive
10928 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
10929 - MINOR: http: split the function http_action_set_req_line() in two parts
10930 - MINOR: http: split http_transform_header() function in two parts.
10931 - MINOR: http: export function inet_set_tos()
10932 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
10933 - MINOR: lua: create and register HTTP class
10934 - DOC: lua: fix some typos
10935 - MINOR: lua: add log functions
10936 - BUG/MINOR: lua: Fix SSL initialisation
10937 - DOC: lua: some fixes
10938 - MINOR: lua: (req|res)_get_headers return more than one header value
10939 - MINOR: lua: map system integration in Lua
10940 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
10941 - MINOR: sample: add url_dec converter
10942 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
10943 - MEDIUM: sample change the prototype of sample-fetches and converters functions
10944 - MINOR: sample: fill the struct sample with the options.
10945 - MEDIUM: sample: change the prototype of sample-fetches functions
10946 - MINOR: http: split the url_param in two parts
10947 - CLEANUP: http: bad indentation
10948 - MINOR: http: add body_param fetch
10949 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
10950 - DOC: http: req.body_param documentation
10951 - MINOR: proxy: custom capture declaration
10952 - MINOR: capture: add two "capture" converters
10953 - MEDIUM: capture: Allow capture with slot identifier
10954 - MINOR: http: add array of generic pointers in http_res_rules
10955 - MEDIUM: capture: adds http-response capture
10956 - MINOR: common: escape CSV strings
10957 - MEDIUM: stats: escape some strings in the CSV dump
10958 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
10959 - MINOR: lua: Lua tcp action are not final action
10960 - DOC: lua: schematics about lua socket organization
10961 - BUG/MINOR: debug: display (null) in place of "meth"
10962 - DOC: mention the "lua action" in documentation
10963 - MINOR: standard: add function that converts signed int to a string
10964 - BUG/MINOR: sample: wrong conversion of signed values
10965 - MEDIUM: sample: Add type any
10966 - MINOR: debug: add a special converter which display its input sample content.
10967 - MINOR: tcp: increase the opaque data array
10968 - MINOR: tcp/http/conf: extends the keyword registration options
10969 - MINOR: build: fix build dependency
10970 - MEDIUM: vars: adds support of variables
10971 - MINOR: vars: adds get and set functions
10972 - MINOR: lua: Variable access
10973 - MINOR: samples: add samples which returns constants
10974 - BUG/MINOR: vars/compil: fix some warnings
10975 - BUILD: add 51degrees options to makefile.
10976 - MINOR: global: add several 51Degrees members to global
10977 - MINOR: config: add 51Degrees config parsing.
10978 - MINOR: init: add 51Degrees initialisation code
10979 - MEDIUM: sample: add fiftyone_degrees converter.
10980 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
10981 - MEDIUM: sample: add trie support to 51Degrees
10982 - DOC: add 51Degrees notes to configuration.txt.
10983 - DOC: add build indications for 51Degrees to README.
10984 - MEDIUM: cfgparse: introduce weak and strong quoting
10985 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
10986 - MINOR: cfgparse: remove line size limitation
10987 - MEDIUM: cfgparse: expand environment variables
10988 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
10989 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
10990 - CLEANUP: cfgparse: remove reference to 'ruleset' section
10991 - MEDIUM: cfgparse: check section maximum number of arguments
10992 - MEDIUM: cfgparse: max arguments check in the global section
10993 - MEDIUM: cfgparse: check max arguments in the proxies sections
10994 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
10995 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
10996 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
10997 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
10998 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
10999 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
11000 - MINOR: connection: implement conn_sock_send()
11001 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
11002 - MEDIUM: connection: make conn_drain() perform more controls
11003 - REORG: connection: move conn_drain() to connection.c and rename it
11004 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
11005 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
11006 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
11007 - BUG/MEDIUM: peers: correctly configure the client timeout
11008 - MINOR: peers: centralize configuration of the peers frontend
11009 - MINOR: proxy: store the default target into the frontend's configuration
11010 - MEDIUM: stats: use frontend_accept() as the accept function
11011 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
11012 - CLEANUP: listeners: remove unused timeout
11013 - MEDIUM: listener: store the default target per listener
11014 - BUILD: fix automatic inclusion of libdl.
11015 - MEDIUM: lua: implement a simple memory allocator
11016 - MEDIUM: compression: postpone buffer adjustments after compression
11017 - MEDIUM: compression: don't send leading zeroes with chunk size
11018 - BUG/MINOR: compression: consider the expansion factor in init
11019 - MINOR: http: check the algo name "identity" instead of the function pointer
11020 - CLEANUP: compression: statify all algo-specific functions
11021 - MEDIUM: compression: add a distinction between UA- and config- algorithms
11022 - MEDIUM: compression: add new "raw-deflate" compression algorithm
11023 - MEDIUM: compression: split deflate_flush() into flush and finish
11024 - CLEANUP: compression: remove unused reset functions
11025 - MAJOR: compression: integrate support for libslz
11026 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
11027 - BUG/MAJOR: http: null-terminate the http actions keywords list
11028 - CLEANUP: lua: remove the unused hlua_sleep memory pool
11029 - BUG/MAJOR: lua: use correct object size when initializing a new converter
11030 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
11031 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
11032 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
11033 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
11034 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
11035 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
11036 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
11037 - REORG/MAJOR: session: rename the "session" entity to "stream"
11038 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
11039 - MINOR: session: start to reintroduce struct session
11040 - MEDIUM: stream: allocate the session when a stream is created
11041 - MEDIUM: stream: move the listener's pointer to the session
11042 - MEDIUM: stream: move the frontend's pointer to the session
11043 - MINOR: session: add a pointer to the session's origin
11044 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
11045 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
11046 - MEDIUM: http: move header captures from http_txn to struct stream
11047 - MINOR: http: create a dedicated pool for http_txn
11048 - MAJOR: http: move http_txn out of struct stream
11049 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
11050 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
11051 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
11052 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
11053 - MAJOR: sample: pass a pointer to the session to each sample fetch function
11054 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
11055 - CLEANUP: stream: don't set ->target to the incoming connection anymore
11056 - MINOR: stream: move session initialization before the stream's
11057 - MINOR: session: store the session's accept date
11058 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
11059 - MINOR: session: implement session_free() and use it everywhere
11060 - MINOR: session: add stick counters to the struct session
11061 - REORG: stktable: move the stkctr_* functions from stream to sticktable
11062 - MEDIUM: streams: support looking up stkctr in the session
11063 - MEDIUM: session: update the session's stick counters upon session_free()
11064 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
11065 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
11066 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
11067 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
11068 - MAJOR: stream: don't initialize the stream anymore in stream_accept
11069 - MEDIUM: session: remove the task pointer from the session
11070 - REORG: session: move the session parts out of stream.c
11071 - MINOR: stream-int: make appctx_new() take the applet in argument
11072 - MEDIUM: peers: move the appctx initialization earlier
11073 - MINOR: session: introduce session_new()
11074 - MINOR: session: make use of session_new() when creating a new session
11075 - MINOR: peers: make use of session_new() when creating a new session
11076 - MEDIUM: peers: initialize the task before the stream
11077 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
11078 - CLEANUP: stream.c: do not re-attach the connection to the stream
11079 - MEDIUM: stream: isolate connection-specific initialization code
11080 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
11081 - MEDIUM: peers: make use of stream_accept_session()
11082 - MEDIUM: frontend: make ->accept only return +/-1
11083 - MEDIUM: stream: return the stream upon accept()
11084 - MEDIUM: frontend: move some stream initialisation to stream_new()
11085 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
11086 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
11087 - MEDIUM: frontend: move some remaining stream settings to stream_new()
11088 - CLEANUP: frontend: remove one useless local variable
11089 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
11090 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
11091 - MINOR: lua: minor cleanup in hlua_socket_new()
11092 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
11093 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
11094 - CLEANUP: stream-int: swap stream-int and appctx declarations
11095 - CLEANUP: namespaces: fix protection against multiple inclusions
11096 - MINOR: session: maintain the session count stats in the session, not the stream
11097 - MEDIUM: session: adjust the connection flags before stream_new()
11098 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
11099 - CLEANUP: poll: move the conditions for waiting out of the poll functions
11100 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
11101 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
11102 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
11103 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
11104 - DOC: update the entities diagrams
11105 - BUG/MEDIUM: http: properly retrieve the front connection
11106 - MINOR: applet: add a new "owner" pointer in the appctx
11107 - MEDIUM: applet: make the applet not depend on a stream interface anymore
11108 - REORG: applet: move the applet definitions out of stream_interface
11109 - CLEANUP: applet: rename struct si_applet to applet
11110 - REORG: stream-int: create si_applet_ops dedicated to applets
11111 - MEDIUM: applet: add basic support for an applet run queue
11112 - MEDIUM: applet: implement a run queue for active appctx
11113 - MEDIUM: stream-int: add a new function si_applet_done()
11114 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
11115 - MAJOR: stream: use a regular ->update for all stream interfaces
11116 - MEDIUM: dumpstats: don't unregister the applet anymore
11117 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
11118 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
11119 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
11120 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
11121 - MEDIUM: stream-int: pause the appctx if the task is woken up
11122 - BUG/MAJOR: tcp: only call registered actions when they're registered
11123 - BUG/MEDIUM: peers: fix applet scheduling
11124 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
11125 - MINOR: tools: provide an rdtsc() function for time comparisons
11126 - IMPORT: lru: import simple ebtree-based LRU functions
11127 - IMPORT: hash: import xxhash-r39
11128 - MEDIUM: pattern: add a revision to all pattern expressions
11129 - MAJOR: pattern: add LRU-based cache on pattern matching
11130 - BUG/MEDIUM: http: remove content-length from chunked messages
11131 - DOC: http: update the comments about the rules for determining transfer-length
11132 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
11133 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
11134 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
11135 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
11136 - MEDIUM: http: disable support for HTTP/0.9 by default
11137 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
11138 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
11139 - MEDIUM: init: don't stop proxies in parent process when exiting
11140 - MINOR: stick-table: don't attach to peers in stopped state
11141 - MEDIUM: config: initialize stick-tables after peers, not before
11142 - MEDIUM: peers: add the ability to disable a peers section
11143 - MINOR: peers: store the pointer to the signal handler
11144 - MEDIUM: peers: unregister peers that were never started
11145 - MEDIUM: config: propagate the table's process list to the peers sections
11146 - MEDIUM: init: stop any peers section not bound to the correct process
11147 - MEDIUM: config: validate that peers sections are bound to exactly one process
11148 - MAJOR: peers: allow peers section to be used with nbproc > 1
11149 - DOC: relax the peers restriction to single-process
11150 - DOC: document option http-ignore-probes
11151 - DOC: fix the comments about the meaning of msg->sol in HTTP
11152 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
11153 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
11154 - MEDIUM: stream: move HTTP request body analyser before process_common
11155 - MEDIUM: http: add a new option http-buffer-request
11156 - MEDIUM: http: provide 3 fetches for the body
11157 - DOC: update the doc on the proxy protocol
11158 - BUILD: pattern: fix build warnings introduced in the LRU cache
11159 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
11160 - CLEANUP: config: fix misleading information in error message.
11161 - MINOR: config: report the number of processes using a peers section in the error case
11162 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
11163 - MEDIUM: http: add new "capture" action for http-request
11164 - BUG/MEDIUM: http: fix the http-request capture parser
11165 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
11166 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
11167 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
11168 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
11169 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
11170 - CLEANUP: checks: simplify the loop processing of tcp-checks
11171 - BUG/MAJOR: checks: always check for end of list before proceeding
11172 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
11173 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
11174 - MEDIUM: http: make url_param iterate over multiple occurrences
11175 - BUG/MEDIUM: peers: apply a random reconnection timeout
11176 - MEDIUM: config: reject invalid config with name duplicates
11177 - MEDIUM: config: reject conflicts in table names
11178 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
11179 - MINOR: proxy: simply ignore duplicates in proxy name lookups
11180 - MINOR: config: don't open-code proxy name lookups
11181 - MEDIUM: config: clarify the conflicting modes detection for backend rules
11182 - CLEANUP: proxy: remove now unused function findproxy_mode()
11183 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
11184 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
11185 - MINOR: proxy: add a new function proxy_find_by_id()
11186 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
11187 - MEDIUM: proxy: add a new proxy_find_best_match() function
11188 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
11189 - MINOR: http: prepare support for parsing redirect actions on responses
11190 - MEDIUM: http: implement http-response redirect rules
11191 - MEDIUM: http: no need to close the request on redirect if data was parsed
11192 - BUG/MEDIUM: http: fix body processing for the stats applet
11193 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
11194 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
11195 - CLEANUP: da: move the converter registration to da.c
11196 - CLEANUP: da: register the config keywords in da.c
11197 - CLEANUP: adjust the envelope name in da.h to reflect the file name
11198 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
11199 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
11200 - BUILD: fix build warning when not using 51degrees
11201 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
11202 - BUILD: ssl: fix recent build breakage on older SSL libs
11203
Willy Tarreau8747b6d2015-03-11 23:57:23 +0100112042015/03/11 : 1.6-dev1
11205 - CLEANUP: extract temporary $CFG to eliminate duplication
11206 - CLEANUP: extract temporary $BIN to eliminate duplication
11207 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
11208 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
11209 - CLEANUP: extract quiet_check() to avoid duplication
11210 - BUG/MINOR: don't start haproxy on reload
11211 - DOC: Address issue where documentation is excluded due to a gitignore rule.
11212 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
11213 - BUILD: fix "make install" to support spaces in the install dirs
11214 - BUG/MINOR: config: http-request replace-header arg typo
11215 - BUG: config: error in http-response replace-header number of arguments
11216 - DOC: missing track-sc* in http-request rules
11217 - BUILD: lua: missing ifdef related to SSL when enabling LUA
11218 - BUG/MEDIUM: regex: fix pcre_study error handling
11219 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
11220 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
11221 - MEDIUM: Improve signal handling in systemd wrapper.
11222 - DOC: fix typo in Unix Socket commands
11223 - BUG/MEDIUM: checks: external checks can't change server status to UP
11224 - BUG/MEDIUM: checks: segfault with external checks in a backend section
11225 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
11226 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
11227 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
11228 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
11229 - BUG/MINOR: log: fix request flags when keep-alive is enabled
11230 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
11231 - MINOR: checks: allow external checks in backend sections
11232 - MEDIUM: checks: provide environment variables to the external checks
11233 - MINOR: checks: update dynamic environment variables in external checks
11234 - DOC: checks: environment variables used by "external-check command"
11235 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
11236 - MINOR: ssl: load certificates in alphabetical order
11237 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
11238 - MINOR: lua: typo in an error message
11239 - MINOR: report the Lua version in -vv
11240 - MINOR: lua: add a compilation error message when compiled with an incompatible version
11241 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
11242 - BUILD: try to automatically detect the Lua library name
11243 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
11244 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
11245 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
11246 - MEDIUM: connection: add new bit in Proxy Protocol V2
11247 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
11248 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
11249 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
11250 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
11251 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
11252 - MINOR: ssl: add statement to force some ssl options in global.
11253 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
11254 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
11255 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
11256 - MINOR: samples: adds the bytes converter.
11257 - MINOR: samples: adds the field converter.
11258 - MINOR: samples: add the word converter.
11259 - BUG/MINOR: server: move the directive #endif to the end of file
11260 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
11261 - DOC: fix a few typos
11262 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
11263 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
11264 - BUG/MINOR: parse: refer curproxy instead of proxy
11265 - BUG/MINOR: parse: check the validity of size string in a more strict way
11266 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
11267 - DOC: expand the docs for the provided stats.
11268 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
11269 - MEDIUM: ssl: Certificate Transparency support
11270 - MEDIUM: stats: proxied stats admin forms fix
11271 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
11272 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
11273 - MAJOR: namespace: add Linux network namespace support
11274 - MINOR: systemd: Check configuration before start
11275 - BUILD: ssl: handle boringssl in openssl version detection
11276 - BUILD: ssl: disable OCSP when using boringssl
11277 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
11278 - MINOR: ssl: don't use boringssl's cipher_list
11279 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
11280 - MINOR: stats: fix minor typo in HTML page
11281 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
11282 - MEDIUM: Add support for configurable TLS ticket keys
11283 - DOC: Document the new tls-ticket-keys bind keyword
11284 - DOC: clearly state that the "show sess" output format is not fixed
11285 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
11286 - DOC: httplog does not support 'no'
11287 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
11288 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
11289 - BUG/MEDIUM: Consistently use 'check' in process_chk
11290 - MEDIUM: Add external check
11291 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
11292 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
11293 - MEDIUM: Remove connect_chk
11294 - MEDIUM: Refactor init_check and move to checks.c
11295 - MEDIUM: Add free_check() helper
11296 - MEDIUM: Move proto and addr fields struct check
11297 - MEDIUM: Attach tcpcheck_rules to check
11298 - MEDIUM: Add parsing of mailers section
11299 - MEDIUM: Allow configuration of email alerts
11300 - MEDIUM: Support sending email alerts
11301 - DOC: Document email alerts
11302 - MINOR: Remove trailing '.' from email alert messages
11303 - MEDIUM: Allow suppression of email alerts by log level
11304 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
11305 - MINOR: deinit: fix memory leak
11306 - MINOR: http: export the function 'smp_fetch_base32'
11307 - BUG/MEDIUM: http: tarpit timeout is reset
11308 - MINOR: sample: add "json" converter
11309 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
11310 - MINOR: map/acl/dumpstats: remove the "Done." message
11311 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
11312 - BUG/MINOR: pattern: error message missing
11313 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
11314 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
11315 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
11316 - MEDIUM: task: call session analyzers if the task is woken by a message.
11317 - MEDIUM: protocol: automatically pick the proto associated to the connection.
11318 - MEDIUM: channel: wake up any request analyzer on response activity
11319 - MINOR: converters: add a "void *private" argument to converters
11320 - MINOR: converters: give the session pointer as converter argument
11321 - MINOR: sample: add private argument to the struct sample_fetch
11322 - MINOR: global: export function and permits to not resolve DNS names
11323 - MINOR: sample: add function for browsing samples.
11324 - MINOR: global: export many symbols.
11325 - MINOR: includes: fix a lot of missing or useless includes
11326 - MEDIUM: tcp: add register keyword system.
11327 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
11328 - MEDIUM: http: change the code returned by the response processing rule functions
11329 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
11330 - MINOR: channel: functions to get data from a buffer without copy
11331 - MEDIUM: lua: lua integration in the build and init system.
11332 - MINOR: lua: add ease functions
11333 - MINOR: lua: add runtime execution context
11334 - MEDIUM: lua: "com" signals
11335 - MINOR: lua: add the configuration directive "lua-load"
11336 - MINOR: lua: core: create "core" class and object
11337 - MINOR: lua: post initialisation bindings
11338 - MEDIUM: lua: add coroutine as tasks.
11339 - MINOR: lua: add sample and args type converters
11340 - MINOR: lua: txn: create class TXN associated with the transaction.
11341 - MINOR: lua: add shared context in the lua stack
11342 - MINOR: lua: txn: import existing sample-fetches in the class TXN
11343 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
11344 - MINOR: lua: register and execute sample-fetches in LUA
11345 - MINOR: lua: register and execute converters in LUA
11346 - MINOR: lua: add bindings for tcp and http actions
11347 - MINOR: lua: core: add sleep functions
11348 - MEDIUM: lua: socket: add "socket" class for TCP I/O
11349 - MINOR: lua: core: pattern and acl manipulation
11350 - MINOR: lua: channel: add "channel" class
11351 - MINOR: lua: txn: object "txn" provides two objects "channel"
11352 - MINOR: lua: core: can set the nice of the current task
11353 - MINOR: lua: core: can yield an execution stack
11354 - MINOR: lua: txn: add binding for closing the client connection.
11355 - MEDIUM: lua: Lua initialisation "on demand"
11356 - BUG/MAJOR: lua: send function fails and return bad bytes
11357 - MINOR: remove unused declaration.
11358 - MINOR: lua: remove some #define
11359 - MINOR: lua: use bitfield and macro in place of integer and enum
11360 - MINOR: lua: set skeleton for Lua execution expiration
11361 - MEDIUM: lua: each yielding function returns a wake up time.
11362 - MINOR: lua: adds "forced yield" flag
11363 - MEDIUM: lua: interrupt the Lua execution for running other process
11364 - MEDIUM: lua: change the sleep function core
11365 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
11366 - DOC: lua: Lua configuration documentation
11367 - MINOR: lua: add the struct session in the lua channel struct
11368 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
11369 - BUG/MEDIUM: lua: reset flags before resuming execution
11370 - BUG/MEDIUM: lua: fix infinite loop about channel
11371 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
11372 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
11373 - MEDIUM: lua: use the Lua-5.3 version of the library
11374 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
11375 - BUG/MEDIUM: lua: can't handle the response bytes
11376 - BUG/MEDIUM: lua: segfault with buffer_replace2
11377 - BUG/MINOR: lua: check buffers before initializing socket
11378 - BUG/MINOR: log: segfault if there are no proxy reference
11379 - BUG/MEDIUM: lua: sockets don't have buffer to write data
11380 - BUG/MEDIUM: lua: cannot connect socket
11381 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
11382 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
11383 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
11384 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
11385 - MINOR: replace the Core object by a simple model.
11386 - MEDIUM: lua: change the objects configuration
11387 - MEDIUM: lua: create a namespace for the fetches
11388 - MINOR: converters: add function to browse converters
11389 - MINOR: lua: wrapper for converters
11390 - MINOR: lua: replace function (req|get)_channel by a variable
11391 - MINOR: lua: fetches and converters can return an empty string in place of nil
11392 - DOC: lua api
11393 - BUG/MEDIUM: sample: fix random number upper-bound
11394 - BUG/MINOR: stats:Fix incorrect printf type.
11395 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
11396 - BUG/MINOR: logs: properly initialize and count log sockets
11397 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
11398 - BUG/MINOR: counters: do not untrack counters before logging
11399 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
11400 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
11401 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
11402 - BUILD: remove TODO from the spec file and add README
11403 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
11404 - MEDIUM: log: support a user-configurable max log line length
11405 - DOC: provide an example of how to use ssl_c_sha1
11406 - BUILD: checks: external checker needs signal.h
11407 - BUILD: checks: kill a minor warning on Solaris in external checks
11408 - BUILD: http: fix isdigit & isspace warnings on Solaris
11409 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
11410 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
11411 - MEDIUM: listener: implement a per-protocol pause() function
11412 - MEDIUM: listener: support rebinding during resume()
11413 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
11414 - DOC: explicitly mention the limits of abstract namespace sockets
11415 - DOC: minor fix on {sc,src}_kbytes_{in,out}
11416 - DOC: fix alphabetical sort of converters
11417 - MEDIUM: stick-table: implement lookup from a sample fetch
11418 - MEDIUM: stick-table: add new converters to fetch table data
11419 - MINOR: samples: add two converters for the date format
11420 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
11421 - DOC: remove references to CPU=native in the README
11422 - DOC: mention that "compression offload" is ignored in defaults section
11423 - DOC: mention that Squid correctly responds 400 to PPv2 header
11424 - BUILD: fix dependencies between config and compat.h
11425 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
11426 - MEDIUM: stick-table: make it easier to register extra data types
11427 - BUG/MINOR: http: base32+src should use the big endian version of base32
11428 - MINOR: sample: allow IP address to cast to binary
11429 - MINOR: sample: add new converters to hash input
11430 - MINOR: sample: allow integers to cast to binary
11431 - BUILD: report commit ID in git versions as well
11432 - CLEANUP: session: move the stick counters declarations to stick_table.h
11433 - MEDIUM: http: add the track-sc* actions to http-request rules
11434 - BUG/MEDIUM: connection: fix proxy v2 header again!
11435 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
11436 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
11437 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
11438 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
11439 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
11440 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
11441 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
11442 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
11443 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
11444 - MEDIUM: http: enable header manipulation for 101 responses
11445 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
11446 - MEDIUM: config: properly propagate process binding between proxies
11447 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
11448 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
11449 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
11450 - MEDIUM: config: report it when tcp-request rules are misplaced
11451 - DOC: indicate in the doc that track-sc* can wait if data are missing
11452 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
11453 - MEDIUM: systemd-wrapper: support multiple executable versions and names
11454 - BUG/MEDIUM: remove debugging code from systemd-wrapper
11455 - BUG/MEDIUM: http: adjust close mode when switching to backend
11456 - BUG/MINOR: config: don't propagate process binding on fatal errors.
11457 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
11458 - BUG/MINOR: tcp-check: report the correct failed step in the status
11459 - DOC: indicate that weight zero is reported as DRAIN
11460 - BUG/MEDIUM: config: avoid skipping disabled proxies
11461 - BUG/MINOR: config: do not accept more track-sc than configured
11462 - BUG/MEDIUM: backend: fix URI hash when a query string is present
11463 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
11464 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
11465 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
11466 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
11467 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
11468 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
11469 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
11470 - MEDIUM: ssl: add support for smaller SSL records
11471 - MINOR: session: release a few other pools when stopping
11472 - MINOR: task: release the task pool when stopping
11473 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
11474 - BUG/MAJOR: frontend: initialize capture pointers earlier
11475 - BUG/MINOR: stats: correctly set the request/response analysers
11476 - MAJOR: polling: centralize calls to I/O callbacks
11477 - DOC: fix typo in the body parser documentation for msg.sov
11478 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
11479 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
11480 - DEBUG: pools: apply poisonning on every allocated pool
11481 - BUG/MAJOR: sessions: unlink session from list on out of memory
11482 - BUG/MEDIUM: patterns: previous fix was incomplete
11483 - BUG/MEDIUM: payload: ensure that a request channel is available
11484 - BUG/MINOR: tcp-check: don't condition data polling on check type
11485 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
11486 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
11487 - BUG/MINOR: config: fix typo in condition when propagating process binding
11488 - BUG/MEDIUM: config: do not propagate processes between stopped processes
11489 - BUG/MAJOR: stream-int: properly check the memory allocation return
11490 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
11491 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
11492 - BUG/MEDIUM: compression: correctly report zlib_mem
11493 - CLEANUP: lists: remove dead code
11494 - CLEANUP: memory: remove dead code
11495 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
11496 - MINOR: memory: cut pool allocator in 3 layers
11497 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
11498 - MINOR: stream-int: retrieve session pointer from stream-int
11499 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
11500 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
11501 - MINOR: buffer: move buffer initialization after channel initialization
11502 - MINOR: buffer: only use b_free to release buffers
11503 - MEDIUM: buffer: always assign a dummy empty buffer to channels
11504 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
11505 - MEDIUM: channel: do not report full when buf_empty is present on a channel
11506 - MINOR: session: group buffer allocations together
11507 - MINOR: buffer: implement b_alloc_fast()
11508 - MEDIUM: buffer: implement b_alloc_margin()
11509 - MEDIUM: session: implement a basic atomic buffer allocator
11510 - MAJOR: session: implement a wait-queue for sessions who need a buffer
11511 - MAJOR: session: only allocate buffers when needed
11512 - MINOR: stats: report a "waiting" flags for sessions
11513 - MAJOR: session: only wake up as many sessions as available buffers permit
11514 - MINOR: config: implement global setting tune.buffers.reserve
11515 - MINOR: config: implement global setting tune.buffers.limit
11516 - MEDIUM: channel: implement a zero-copy buffer transfer
11517 - MEDIUM: stream-int: support splicing from applets
11518 - OPTIM: stream-int: try to send pending spliced data
11519 - CLEANUP: session: remove session_from_task()
11520 - DOC: add missing entry for log-format and clarify the text
11521 - MINOR: logs: add a new per-proxy "log-tag" directive
11522 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
11523 - MINOR: config: extend the default max hostname length to 64 and beyond
11524 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
11525 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
11526 - MINOR: channel: add channel_in_transit()
11527 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
11528 - MEDIUM: channel: make bi_avail() use channel_in_transit()
11529 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
11530 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
11531 - MINOR: channel: rename channel_full() to !channel_may_recv()
11532 - MINOR: channel: rename buffer_reserved() to channel_reserved()
11533 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
11534 - MINOR: channel: rename bi_avail() to channel_recv_max()
11535 - MINOR: channel: rename bi_erase() to channel_truncate()
11536 - BUG/MAJOR: log: don't try to emit a log if no logger is set
11537 - MINOR: tools: add new round_2dig() function to round integers
11538 - MINOR: global: always export some SSL-specific metrics
11539 - MINOR: global: report information about the cost of SSL connections
11540 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
11541 - MINOR: http: add a new fetch "query" to extract the request's query string
11542 - MINOR: hash: add new function hash_crc32
11543 - MINOR: samples: provide a "crc32" converter
11544 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
11545 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
11546 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
11547 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
11548 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
11549 - MINOR: args: add type-specific flags for each arg in a list
11550 - MINOR: args: implement a new arg type for regex : ARGT_REG
11551 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
11552 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
11553 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
11554 - MEDIUM: http: implement http-request set-{method,path,query,uri}
11555 - DOC: fix missing closing brackend on regsub
11556 - MEDIUM: samples: provide basic arithmetic and bitwise operators
11557 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
11558 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
11559 - BUG/MINOR: http: abort request processing on filter failure
11560 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
11561 - MINOR: ssl/server: add the "no-ssl-reuse" server option
11562 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
11563 - MINOR: http: add a new function to iterate over each header line
11564 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
11565 - MEDIUM: task: always ensure that the run queue is consistent
11566 - BUILD: Makefile: add -Wdeclaration-after-statement
11567 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
11568 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
11569 - MEDIUM: protocol: use a family array to index the protocol handlers
11570 - BUILD: lua: cleanup many mixed occurrences declarations & code
11571 - BUG/MEDIUM: task: fix recently introduced scheduler skew
11572 - BUG/MINOR: lua: report the correct function name in an error message
11573 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
11574 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
11575 - MINOR: lua: convert IP addresses to type string
11576 - CLEANUP: lua: use the same function names in C and Lua
11577 - REORG/MAJOR: move session's req and resp channels back into the session
11578 - CLEANUP: remove now unused channel pool
11579 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
11580 - MEDIUM: stream-int: add a flag indicating which side the SI is on
11581 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
11582 - MEDIUM: stream-interface: remove now unused pointers to channels
11583 - MEDIUM: stream-int: make si_sess() use the stream int's side
11584 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
11585 - MEDIUM: stream-int: remove any reference to the owner
11586 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
11587 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
11588 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
11589 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
11590 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
11591 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
11592 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
11593 - CLEANUP: session: use local variables to access channels / stream ints
11594 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
11595 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
11596 - CLEANUP: stream-int: limit usage of si_ic/si_oc
11597 - CLEANUP: lua: limit usage of si_ic/si_oc
11598 - MINOR: channel: add chn_sess() helper to retrieve session from channel
11599 - MEDIUM: session: simplify receive buffer allocator to only use the channel
11600 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
11601 - CLEANUP: lua: remove the session pointer from hlua_channel
11602 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
11603 - MEDIUM: lua: remove struct hlua_channel
11604 - MEDIUM: lua: remove hlua_sample_fetch
11605
Willy Tarreau15480d72014-06-19 21:10:58 +0200116062014/06/19 : 1.6-dev0
11607 - exact copy of 1.5.0
11608
Willy Tarreau9229f122014-06-19 21:01:06 +0200116092014/06/19 : 1.5.0
11610 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
11611 - MEDIUM: ssl: basic OCSP stapling support.
11612 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
11613 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
11614 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
11615 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
11616 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
11617 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
11618 - MEDIUM: Break out check establishment into connect_chk()
11619 - MEDIUM: Add port_to_str helper
11620 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
11621 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
11622 - MINOR: regex: fix a little configuration memory leak.
11623 - MINOR: regex: Create JIT compatible function that return match strings
11624 - MEDIUM: regex: replace all standard regex function by own functions
11625 - MEDIUM: regex: Remove null terminated strings.
11626 - MINOR: regex: Use native PCRE API.
11627 - MINOR: missing regex.h include
11628 - DOC: Add Exim as Proxy Protocol implementer.
11629 - BUILD: don't use type "uint" which is not portable
11630 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
11631 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
11632 - CLEANUP: http: don't clear CF_READ_NOEXP twice
11633 - DOC: fix proxy protocol v2 decoder example
11634 - DOC: fix remaining occurrences of "pattern extraction"
11635 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
11636 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
11637 - MINOR: sample: improve sample_fetch_string() to report partial contents
11638 - MINOR: capture: extend the captures to support non-header keys
11639 - MINOR: tcp: prepare support for the "capture" action
11640 - MEDIUM: tcp: add a new tcp-request capture directive
11641 - MEDIUM: session: allow shorter retry delay if timeout connect is small
11642 - MEDIUM: session: don't apply the retry delay when redispatching
11643 - MEDIUM: session: redispatch earlier when possible
11644 - MINOR: config: warn when tcp-check rules are used without option tcp-check
11645 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
11646 - DOC: proxy protocol example parser was still wrong
11647 - DOC: minor updates to the proxy protocol doc
11648 - CLEANUP: connection: merge proxy proto v2 header and address block
11649 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
11650 - MINOR: tools: add new functions to quote-encode strings
11651 - DOC: clarify the CSV format
11652 - MEDIUM: stats: report the last check and last agent's output on the CSV status
11653 - MINOR: freq_ctr: introduce a new averaging method
11654 - MEDIUM: session: maintain per-backend and per-server time statistics
11655 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
11656 - BUG/MINOR: http: fix typos in previous patch
11657 - DOC: remove the ultra-obsolete TODO file
11658 - DOC: update roadmap
11659 - DOC: minor updates to the README
11660 - DOC: mention the maxconn limitations with the select poller
11661 - DOC: commit a few old design thoughts files
11662
Willy Tarreau2e858402014-05-28 17:50:53 +0200116632014/05/28 : 1.5-dev26
11664 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
11665 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
11666 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
11667 - MINOR: fix a few memory usage errors
11668 - CONTRIB: halog: Filter input lines by date and time through timestamp
11669 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
11670 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
11671 - MINOR: acl: set "str" as default match for strings
11672 - DOC: Add some precisions about acl default matching method
11673 - MEDIUM: acl: strenghten the option parser to report invalid options
11674 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
11675 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
11676 - MINOR: stats: improve alignment of color codes to save one line of header
11677 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
11678 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
11679 - MINOR: server: use functions to detect state changes and to update them
11680 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
11681 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
11682 - BUG/MAJOR: config: don't free valid regex memory
11683 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
11684 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
11685 - MEDIUM: proxy: make timeout parser a bit stricter
11686 - REORG/MEDIUM: server: split server state and flags in two different variables
11687 - REORG/MEDIUM: server: move the maintenance bits out of the server state
11688 - MAJOR: server: use states instead of flags to store the server state
11689 - REORG: checks: put the functions in the appropriate files !
11690 - MEDIUM: server: properly support and propagate the maintenance status
11691 - MEDIUM: server: allow multi-level server tracking
11692 - CLEANUP: checks: rename the server_status_printf function
11693 - MEDIUM: checks: simplify server up/down/nolb transitions
11694 - MAJOR: checks: move health checks changes to set_server_check_status()
11695 - MINOR: server: make the status reporting function support a reason
11696 - MINOR: checks: simplify health check reporting functions
11697 - MINOR: server: implement srv_set_stopped()
11698 - MINOR: server: implement srv_set_running()
11699 - MINOR: server: implement srv_set_stopping()
11700 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
11701 - MEDIUM: checks: simplify success notification using srv_set_running()
11702 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
11703 - MEDIUM: stats: report a server's own state instead of the tracked one's
11704 - MINOR: server: make use of srv_is_usable() instead of checking eweight
11705 - MAJOR: checks: add support for a new "drain" administrative mode
11706 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
11707 - MEDIUM: stats: introduce new actions to simplify admin status management
11708 - MINOR: cli: introduce a new "set server" command
11709 - MINOR: stats: report a distinct output for DOWN caused by agent
11710 - MINOR: checks: support specific check reporting for the agent
11711 - MINOR: checks: support a neutral check result
11712 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
11713 - MEDIUM: cli: add support for enabling/disabling health checks.
11714 - MEDIUM: stats: report down caused by agent prior to reporting up
11715 - MAJOR: agent: rework the response processing and support additional actions
11716 - MINOR: stats: improve the stats web page to support more actions
11717 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
11718 - DOC: document the workarouds for Google Chrome's bogus pre-connect
11719 - MINOR: stats: report SSL key computations per second
11720 - MINOR: stats: add counters for SSL cache lookups and misses
11721
Willy Tarreaua3393952014-05-10 15:16:43 +0200117222014/05/10 : 1.5-dev25
11723 - MEDIUM: connection: Implement and extented PROXY Protocol V2
11724 - MINOR: ssl: clean unused ACLs declarations
11725 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
11726 - MINOR: ssl: merge client's and frontend's certificate functions.
11727 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
11728 - MINOR: ssl: adds sample converter base64 for binary type.
11729 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
11730 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
11731 - MAJOR: ssl: Change default locks on ssl session cache.
11732 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
11733 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
11734 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
11735 - BUG/MEDIUM: patterns: last fix was still not enough
11736 - MINOR: http: export the smp_fetch_cookie function
11737 - MINOR: http: generic pointer to rule argument
11738 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
11739 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
11740 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
11741 - BUG/MINOR: http: log 407 in case of proxy auth
11742 - MINOR: http: rely on the message body parser to send 100-continue
11743 - MEDIUM: http: move reqadd after execution of http_request redirect
11744 - MEDIUM: http: jump to dedicated labels after http-request processing
11745 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
11746 - BUG/MINOR: http: block rules forgot to increment the session's request counter
11747 - MEDIUM: http: move Connection header processing earlier
11748 - MEDIUM: http: remove even more of the spaghetti in the request path
11749 - MINOR: http: silently support the "block" action for http-request
11750 - CLEANUP: proxy: rename "block_cond" to "block_rules"
11751 - MEDIUM: http: emulate "block" rules using "http-request" rules
11752 - MINOR: http: remove the now unused loop over "block" rules
11753 - MEDIUM: http: factorize the "auth" action of http-request and stats
11754 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
11755 - MINOR: config: add minimum support for emitting warnings only once
11756 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
11757 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
11758 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
11759 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
11760 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
11761 - BUILD: config: remove a warning with clang
11762 - BUG/MAJOR: http: connection setup may stall on balance url_param
11763 - BUG/MEDIUM: http/session: disable client-side expiration only after body
11764 - BUG/MEDIUM: http: correctly report request body timeouts
11765 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
11766 - MEDIUM: listener: make the accept function more robust against pauses
11767 - BUILD: syscalls: remove improper inline statement in front of syscalls
11768 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
11769 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
11770 - DOC: add some explanation on the shared cache build options in the readme.
11771 - MEDIUM: proxy: only adjust the backend's bind-process when already set
11772 - MEDIUM: config: limit nbproc to the machine's word size
11773 - MEDIUM: config: check the bind-process settings according to nbproc
11774 - MEDIUM: listener: parse the new "process" bind keyword
11775 - MEDIUM: listener: inherit the process mask from the proxy
11776 - MAJOR: listener: only start listeners bound to the same processes
11777 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
11778 - CLEANUP: config: set the maxaccept value for peers listeners earlier
11779 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
11780 - BUG/MINOR: checks: correctly configure the address family and protocol
11781 - MINOR: tools: split is_addr() and is_inet_addr()
11782 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
11783 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
11784 - MEDIUM: checks: only complain about the missing port when the check uses TCP
11785 - MEDIUM: unix: implement support for Linux abstract namespace sockets
11786 - DOC: map_beg was missing from the table of map_* converters
11787 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
11788 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
11789 - BUILD: remove the obsolete BSD and OSX makefiles
11790 - MEDIUM: unix: avoid a double connect probe when no data are sent
11791 - DOC: stop referencing the slow git repository in the README
11792 - BUILD: only build the systemd wrapper on Linux 2.6 and above
11793 - DOC: update roadmap with completed tasks
11794 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
11795
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200117962014/04/26 : 1.5-dev24
11797 - MINOR: pattern: find element in a reference
11798 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
11799 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
11800 - DOC: Full section dedicated to the converters
11801 - MEDIUM: http: register http-request and http-response keywords
11802 - BUG/MINOR: compression: correctly report incoming byte count
11803 - BUG/MINOR: http: don't report server aborts as client aborts
11804 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
11805 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
11806 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
11807 - BUG/MAJOR: http: fix timeouts during data forwarding
11808 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
11809 - MEDIUM: http: move skipping of 100-continue earlier
11810 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
11811 - CLEANUP: general: get rid of all old occurrences of "session *t"
11812 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
11813 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
11814 - MEDIUM: http: enable analysers to have keep-alive on stats
11815 - REORG: http: move HTTP Connection response header parsing earlier
11816 - MINOR: stats: always emit HTTP/1.1 in responses
11817 - MINOR: http: add capture.req.ver and capture.res.ver
11818 - MINOR: checks: add a new global max-spread-checks directive
11819 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
11820 - MINOR: http: implement the max-keep-alive-queue setting
11821 - DOC: fix alphabetic order of tcp-check
11822 - MINOR: connection: add a new error code for SSL with heartbeat
11823 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
11824 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
11825 - BUILD: http: remove a warning on strndup
11826 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
11827 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
11828 - MINOR: ssl: finally catch the heartbeats missing the padding
11829
Willy Tarreau8317b282014-04-23 01:49:41 +0200118302014/04/23 : 1.5-dev23
11831 - BUG/MINOR: reject malformed HTTP/0.9 requests
11832 - MINOR: systemd wrapper: re-execute on SIGUSR2
11833 - MINOR: systemd wrapper: improve logging
11834 - MINOR: systemd wrapper: propagate exit status
11835 - BUG/MINOR: tcpcheck connect wrong behavior
11836 - MEDIUM: proxy: support use_backend with dynamic names
11837 - MINOR: stats: Enhancement to stats page to provide information of last session time.
11838 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
11839 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
11840 - DOC: fix fetching samples syntax
11841 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
11842 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
11843 - DOC: fix typo
11844 - CLEANUP: code style: use tabs to indent codes instead of spaces
11845 - DOC: fix a few config typos.
11846 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
11847 - DOC: lowercase format string in unique-id
11848 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
11849 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
11850 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
11851 - BUG/MINOR: build: handle whitespaces in wc -l output
11852 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
11853 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
11854 - BUG/MEDIUM: map: The map parser includes blank lines.
11855 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
11856 - MINOR: standard: add function "encode_chunk"
11857 - BUG/MINOR: http: fix encoding of samples used in http headers
11858 - MINOR: sample: add hex converter
11859 - MEDIUM: sample: change the behavior of the bin2str cast
11860 - MAJOR: auth: Change the internal authentication system.
11861 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
11862 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
11863 - MEDIUM: pattern: Change the prototype of the function pattern_register().
11864 - CONTRIB: ip6range: add a network IPv6 range to mask converter
11865 - MINOR: pattern: separe list element from the data part.
11866 - MEDIUM: pattern: add indexation function.
11867 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
11868 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
11869 - MINOR: sample: dont call the sample cast function "c_none"
11870 - MINOR: standard: Add function for converting cidr to network mask.
11871 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
11872 - MEDIUM: sample/http_proto: Add new type called method
11873 - MINOR: dumpstats: Group map inline help
11874 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
11875 - MINOR: dumpstats: change map inline sentences
11876 - MINOR: dumpstats: change the "get map" display management
11877 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
11878 - MEDIUM: pattern: The match function browse itself the list or the tree.
11879 - MEDIUM: pattern: Index IPv6 addresses in a tree.
11880 - MEDIUM: pattern: add delete functions
11881 - MEDIUM: pattern: add prune function
11882 - MEDIUM: pattern: add sample lookup function.
11883 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
11884 - MINOR: map/pattern: The sample parser is stored in the pattern
11885 - MAJOR: pattern/map: Extends the map edition system in the patterns
11886 - MEDIUM: pattern: merge same pattern
11887 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
11888 - MINOR: pattern: Each pattern is identified by unique id.
11889 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
11890 - MINOR: pattern: The function "pattern_register()" is no longer used.
11891 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
11892 - MINOR: pattern: store configuration reference for each acl or map pattern.
11893 - MINOR: pattern: Each pattern expression element store the reference struct.
11894 - MINOR: dumpstats: display the reference for th key/pattern and value.
11895 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
11896 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
11897 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
11898 - MINOR: pattern/map/acl: Centralization of the file parsers
11899 - MINOR: pattern: Check if the file reference is not used with acl and map
11900 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
11901 - MEDIUM: dumpstats: Display error message during add of values.
11902 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
11903 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
11904 - MINOR: cli: Block the usage of the command "acl add" in many cases.
11905 - MINOR: doc: Update the documentation about the map and acl
11906 - MINOR: pattern: index duplicates
11907 - MINOR: configuration: File and line propagation
11908 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
11909 - MINOR: standard: Disable ip resolution during the runtime
11910 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
11911 - MINOR: pattern: forbid dns resolutions
11912 - DOC: document "get map" / "get acl" on the CLI
11913 - MEDIUM: acl: Change the acl register struct
11914 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
11915 - DOC: pattern: pattern organisation schematics
11916 - MINOR: pattern/cli: Update used terms in documentation and cli
11917 - MINOR: cli: remove information about acl or map owner.
11918 - MINOR: session: don't always assume there's a listener
11919 - MINOR: pattern: Add function to prune and reload pattern list.
11920 - MINOR: standard: Add ipv6 support in the function url2sa().
11921 - MEDIUM: config: Dynamic sections.
11922 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
11923 - MINOR: http: Add the "language" converter to for use with accept-language
11924 - BUG/MINOR: log: Don't dump empty unique-id
11925 - BUG/MAJOR: session: fix a possible crash with src_tracked
11926 - DOC: Update "language" documentation
11927 - MINOR: http: add the function "del-header" to the directives http-request and http-response
11928 - DOC: add some information on capture.(req|res).hdr
11929 - MINOR: http: capture.req.method and capture.req.uri
11930 - MINOR: http: optimize capture.req.method and capture.req.uri
11931 - MINOR: session: clean up the connection free code
11932 - BUG/MEDIUM: checks: immediately report a connection success
11933 - MEDIUM: connection: don't use real send() flags in snd_buf()
11934 - OPTIM: ssl: implement dynamic record size adjustment
11935 - MINOR: stats: report exact last session time in backend too
11936 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
11937 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
11938 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
11939 - MINOR: channel: add the date of last read in the channel
11940 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
11941 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
11942 - MINOR: config: make the stream interface idle timer user-configurable
11943 - MINOR: config: add global directives to set default SSL ciphers
11944 - MINOR: sample: add a rand() sample fetch to return a sample.
11945 - BUG/MEDIUM: config: immediately abort if peers section has no name
11946 - BUG/MINOR: ssl: fix syntax in config error message
11947 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
11948 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
11949 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
11950 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
11951 - MEDIUM: acl: fix pattern type for payload / payload_lv
11952 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
11953 - BUG/MEDIUM: compression: fix the output type of the compressor name
11954 - BUG/MEDIUM: http: don't start to forward request data before the connect
11955 - MINOR: http: release compression context only in http_end_txn()
11956 - MINOR: protect ebimtree/ebistree against multiple inclusions
11957 - MEDIUM: proxy: create a tree to store proxies by name
11958 - MEDIUM: proxy: make findproxy() use trees to look up proxies
11959 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
11960 - MEDIUM: stick-table: lookup table names using trees.
11961 - MEDIUM: config: faster lookup for duplicated proxy name
11962 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
11963 - MINOR: sample: move smp_to_type to sample.c
11964 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
11965 - REORG: cfgparse: move server keyword parsing to server.c
11966 - BUILD: adjust makefile for AIX 5.1
11967 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
11968 - CLEANUP: pattern: move array definitions to proto/ and not types/
11969 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
11970 - BUILD: ssl: previous patch failed
11971 - BUILD/MEDIUM: standard: get rid of the last strcpy()
11972 - BUILD/MEDIUM: standard: get rid of sprintf()
11973 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
11974 - BUILD/MEDIUM: checks: get rid of sprintf()
11975 - BUILD/MEDIUM: http: remove calls to sprintf()
11976 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
11977 - BUILD/MINOR: ssl: remove one call to sprintf()
11978 - MEDIUM: http: don't reject anymore message bodies not containing the url param
11979 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
11980 - CLEANUP: http: rename http_process_request_body()
11981 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
11982 - MINOR: http: make msg->eol carry the last CRLF length
11983 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
11984 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
11985 - MAJOR: http: don't update msg->sov anymore while processing the body
11986 - MINOR: http: add a small helper to compute the amount of body bytes present
11987 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
11988 - MINOR: http: add a small helper to compute how far to rewind to find URI
11989 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
11990 - MAJOR: http: reset msg->sov after headers are forwarded
11991 - MEDIUM: http: forward headers again while waiting for connection to complete
11992 - BUG/MINOR: http: deinitialize compression after a parsing error
11993 - BUG/MINOR: http: deinitialize compression after a compression error
11994 - MEDIUM: http: headers must be forwarded even if data was already inspected
11995 - MAJOR: http: re-enable compression on chunked encoding
11996 - MAJOR: http/compression: fix chunked-encoded response processing
11997 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
11998 - MEDIUM: http: start to centralize the forwarding code
11999 - MINOR: http: further cleanups of response forwarding function
12000 - MEDIUM: http: only allocate the temporary compression buffer when needed
12001 - MAJOR: http: centralize data forwarding in the request path
12002 - CLEANUP: http: document the response forwarding states
12003 - CLEANUP: http: remove all calls to http_silent_debug()
12004 - DOC: internal: add some reminders about HTTP parsing and pointer states
12005 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
12006 - BUG/MINOR: stats: last session was not always set
12007 - DOC: add pointer to the Cyril's HTML doc in the README
12008 - MEDIUM: config: relax use_backend check to make the condition optional
12009 - MEDIUM: config: report misplaced http-request rules
12010 - MEDIUM: config: report misplaced use-server rules
12011 - DOC: update roadmap with what was done.
12012
Willy Tarreau1a34d572014-02-03 00:41:29 +0100120132014/02/03 : 1.5-dev22
12014 - MEDIUM: tcp-check new feature: connect
12015 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
12016 - MINOR: ssl: handshake optim for long certificate chains.
12017 - BUG/MINOR: pattern: pattern comparison executed twice
12018 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
12019 - BUG/MEDIUM: pattern: Segfault in binary parser
12020 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
12021 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
12022 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
12023 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
12024 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
12025 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
12026 - MINOR: doc: Bad cli function name.
12027 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
12028 - BUILD: last release inadvertently prepended a "+" in front of the date
12029 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
12030 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
12031 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
12032 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
12033 - MINOR: http: try to stick to same server after status 401/407
12034 - BUG/MINOR: http: always disable compression on HTTP/1.0
12035 - OPTIM: poll: restore polling after a poll/stop/want sequence
12036 - OPTIM: http: don't stop polling for read on the client side after a request
12037 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
12038 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
12039 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
12040 - BUG/MINOR: stream-int: do not clear the owner upon unregister
12041 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
12042 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
12043 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
12044 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
12045 - OPTIM: session: set the READ_DONTWAIT flag when connecting
12046 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
12047 - MINOR: session: factor out the connect time measurement
12048 - MEDIUM: session: prepare to support earlier transitions to the established state
12049 - MEDIUM: stream-int: make si_connect() return an established state when possible
12050 - MINOR: checks: use an inline function for health_adjust()
12051 - OPTIM: session: put unlikely() around the freewheeling code
12052 - MEDIUM: config: report a warning when multiple servers have the same name
12053 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
12054 - BUILD/MINOR: listener: remove a glibc warning on accept4()
12055 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
12056 - BUILD: listener: fix recent accept4() again
12057 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
12058 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
12059 - MEDIUM: listener: fix polling management in the accept loop
12060 - MINOR: protocol: improve the proto->drain() API
12061 - MINOR: connection: add a new conn_drain() function
12062 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
12063 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
12064 - MINOR: connection: add more error codes to report connection errors
12065 - MEDIUM: tcp: report connection error at the connection level
12066 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
12067 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
12068 - DOC: fix misleading information about SIGQUIT
12069 - BUG/MAJOR: fix freezes during compression
12070 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
12071 - BUILD: fix VERDATE exclusion regex
12072 - CLEANUP: polling: rename "spec_e" to "state"
12073 - DOC: add a diagram showing polling state transitions
12074 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
12075 - REORG: polling: rename "fd_spec" to "fd_cache"
12076 - REORG: polling: rename the cache allocation functions
12077 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
12078 - MAJOR: polling: rework the whole polling system
12079 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
12080 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
12081 - MEDIUM: connection: add check for readiness in I/O handlers
12082 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
12083 - MINOR: stream-interface: no need to call fd_stop_both() on error
12084 - MEDIUM: connection: no need to recheck FD state
12085 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
12086 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
12087 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
12088 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
12089 - MEDIUM: polling: centralize polled events processing
12090 - MINOR: polling: create function fd_compute_new_polled_status()
12091 - MINOR: cli: add more information to the "show info" output
12092 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
12093 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
12094 - REORG: stats: move the stats socket states to dumpstats.c
12095 - MINOR: cli: add the new "show pools" command
12096 - BUG/MEDIUM: counters: flush content counters after each request
12097 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
12098 - MINOR: tools: add very basic support for composite pointers
12099 - MEDIUM: counters: stop relying on session flags at all
12100 - BUG/MINOR: cli: fix missing break in command line parser
12101 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
12102 - MAJOR: http: update connection mode configuration
12103 - MEDIUM: http: make keep-alive + httpclose be passive mode
12104 - MAJOR: http: switch to keep-alive mode by default
12105 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
12106 - BUG/MEDIUM: listener: improve detection of non-working accept4()
12107 - BUILD: listener: add fcntl.h and unistd.h
12108 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
12109
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100121102013/12/17 : 1.5-dev21
12111 - MINOR: stats: don't use a monospace font to report numbers
12112 - MINOR: session: remove debugging code
12113 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
12114 - MEDIUM: http: make option http_proxy automatically rewrite the URL
12115 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
12116 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
12117 - BUG/MEDIUM: checks: servers must not start in slowstart mode
12118 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
12119 - MEDIUM: stream-int: implement a very simplistic idle connection manager
12120 - DOC: update the ROADMAP file
12121
Willy Tarreau11f64d62013-12-16 02:32:37 +0100121222013/12/16 : 1.5-dev20
12123 - DOC: add missing options to the manpage
12124 - DOC: add manpage references to all system calls
12125 - DOC: update manpage reference to haproxy-en.txt
12126 - DOC: remove -s and -l options from the manpage
12127 - DOC: missing information for the "description" keyword
12128 - DOC: missing http-send-name-header keyword in keyword table
12129 - MINOR: tools: function my_memmem() to lookup binary contents
12130 - MEDIUM: checks: add send/expect tcp based check
12131 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
12132 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
12133 - DOC: Documentation for hashing function, with test results.
12134 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
12135 - BUILD: ssl: compilation issue with openssl v0.9.6.
12136 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
12137 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
12138 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
12139 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
12140 - CLEANUP: session: remove event_accept() which was not used anymore
12141 - BUG/MINOR: deinit: free fdinfo while doing cleanup
12142 - DOC: minor typo fix in documentation
12143 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
12144 - BUG/MINOR: use the same check condition for server as other algorithms
12145 - DOC: fix typo in comments
12146 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
12147 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
12148 - MINOR: buffer: align the last output line of buffer_dump()
12149 - MINOR: buffer: align the last output line if there are less than 8 characters left
12150 - DOC: stick-table: modify the description
12151 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
12152 - CLEANUP: code style: use tabs to indent codes
12153 - DOC: checkcache: block responses with cacheable cookies
12154 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
12155 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
12156 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
12157 - LOW: systemd-wrapper: Write debug information to stdout
12158 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
12159 - MEDIUM: http: add IPv6 support for "set-tos"
12160 - DOC: ssl: update build instructions to use new SSL_* variables
12161 - BUILD/MINOR: systemd: fix compiler warning about unused result
12162 - url32+src - like base32+src but whole url including parameters
12163 - BUG/MINOR: fix forcing fastinter in "on-error"
12164 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
12165 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
12166 - MEDIUM: Split up struct server's check element
12167 - MEDIUM: Move result element to struct check
12168 - MEDIUM: Paramatise functions over the check of a server
12169 - MEDIUM: cfgparse: Factor out check initialisation
12170 - MEDIUM: Add state to struct check
12171 - MEDIUM: Move health element to struct check
12172 - MEDIUM: Add helper for task creation for checks
12173 - MEDIUM: Add helper function for failed checks
12174 - MEDIUM: Log agent fail, stopped or down as info
12175 - MEDIUM: Remove option lb-agent-chk
12176 - MEDIUM: checks: Add supplementary agent checks
12177 - MEDIUM: Do not mark a server as down if the agent is unavailable
12178 - MEDIUM: Set rise and fall of agent checks to 1
12179 - MEDIUM: Add enable and disable agent unix socket commands
12180 - MEDIUM: Add DRAIN state and report it on the stats page
12181 - BUILD/MINOR: missing header file
12182 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
12183 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
12184 - MINOR: http: some exported functions were not in the header file
12185 - MINOR: http: change url_decode to return the size of the decoded string.
12186 - BUILD/MINOR: missing header file
12187 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
12188 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
12189 - MINOR: sample: export the generic sample conversion parser
12190 - MINOR: sample: export sample_casts
12191 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
12192 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
12193 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
12194 - MINOR: tools: Add a function to convert buffer to an ipv6 address
12195 - MINOR: acl: export acl arrays
12196 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
12197 - MINOR: acl: Extract the pattern matching function
12198 - MINOR: sample: Define new struct sample_storage
12199 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
12200 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
12201 - MEDIUM: pattern: create pattern expression
12202 - MEDIUM: pattern: rename "acl" prefix to "pat"
12203 - MEDIUM: sample: let the cast functions set their output type
12204 - MINOR: sample: add a private field to the struct sample_conv
12205 - MINOR: map: Define map types
12206 - MEDIUM: sample: add the "map" converter
12207 - MEDIUM: http: The redirect strings follows the log format rules.
12208 - BUG/MINOR: acl: acl parser does not recognize empty converter list
12209 - BUG/MINOR: map: The map list was declared in the map.h file
12210 - MINOR: map: Cleanup the initialisation of map descriptors.
12211 - MEDIUM: map: merge identical maps
12212 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
12213 - BUG/MEDIUM: map: Bad map file parser
12214 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
12215 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
12216 - MINOR: map: export map_get_reference() function
12217 - MINOR: pattern: Each pattern sets the expected input type
12218 - MEDIUM: acl: Last patch change the output type
12219 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
12220 - MINOR: standard: The function parse_binary() can use preallocated buffer
12221 - MINOR: regex: Change the struct containing regex
12222 - MINOR: regex: Copy the original regex expression into string.
12223 - MINOR: pattern: add support for compiling patterns for lookups
12224 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
12225 - MINOR: map: export parse output sample functions
12226 - MINOR: pattern: add function to lookup a specific entry in pattern list
12227 - MINOR: pattern/map: Each pattern must free the associated sample
12228 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
12229 - MEDIUM: map: dynamic manipulation of maps
12230 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
12231 - BUG/MINOR: log: junk at the end of syslog packet
12232 - MINOR: Makefile: provide cscope rule
12233 - DOC: compression: chunk are not compressed anymore
12234 - MEDIUM: session: disable lingering on the server when the client aborts
12235 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
12236 - DOC: remove the comment saying that SSL certs are not checked on the server side
12237 - BUG: counters: third counter was not stored if others unset
12238 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
12239 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
12240 - BUG/MAJOR: http: sample prefetch code was not properly migrated
12241 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
12242 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
12243 - OPTIM: splicing: use splice() for the last block when relevant
12244 - MEDIUM: sample: handle comma-delimited converter list
12245 - MINOR: sample: fix sample_process handling of unstable data
12246 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
12247 - MINOR: sample: add a new "date" fetch to return the current date
12248 - MINOR: samples: add the http_date([<offset>]) sample converter.
12249 - DOC: minor improvements to the part on the stats socket.
12250 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
12251 - MINOR: payload: split smp_fetch_rdp_cookie()
12252 - MINOR: counters: factor out smp_fetch_sc*_tracked
12253 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
12254 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
12255 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
12256 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
12257 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
12258 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
12259 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
12260 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
12261 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
12262 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
12263 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
12264 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
12265 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
12266 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
12267 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
12268 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
12269 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
12270 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
12271 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
12272 - MINOR: session: make the number of stick counter entries more configurable
12273 - MEDIUM: counters: support passing the counter number as a fetch argument
12274 - MEDIUM: counters: support looking up a key in an alternate table
12275 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
12276 - MINOR: cli: make it possible to enter multiple values at once with "set table"
12277 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
12278 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
12279 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
12280 - MINOR: config: warn when a server with no specific port uses rdp-cookie
12281 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
12282 - DOC: add a mention about the limited chunk size
12283 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
12284 - MEDIUM: stick-tables: flush old entries upon soft-stop
12285 - MINOR: tcp: add new "close" action for tcp-response
12286 - MINOR: payload: provide the "res.len" fetch method
12287 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
12288 - MINOR: http: compute response time before processing headers
12289 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
12290 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
12291 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
12292 - BUG/MEDIUM: session: risk of crash on out of memory conditions
12293 - BUG/MINOR: peers: set the accept date in outgoing connections
12294 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
12295 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
12296 - MINOR: acl: add a warning when an ACL keyword is used without any value
12297 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
12298 - BUG/MINOR: acl: remove patterns from the tree before freeing them
12299 - MEDIUM: backend: add support for the wt6 hash
12300 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
12301 - OPTIM/MINOR: mark the source address as already known on accept()
12302 - BUG/MINOR: stats: don't count tarpitted connections twice
12303 - CLEANUP: http: homogenize processing of denied req counter
12304 - CLEANUP: http: merge error handling for req* and http-request *
12305 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
12306 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
12307 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
12308 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
12309 - MINOR: stats: report correct throttling percentage for servers in slowstart
12310 - OPTIM: connection: fold the error handling with handshake handling
12311 - MINOR: peers: accept to learn strings of different lengths
12312 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
12313 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
12314 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
12315 - BUG/MINOR: connection: fix typo in error message report
12316 - BUG/MINOR: backend: fix target address retrieval in transparent mode
12317 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
12318 - BUG/MINOR: log: fix log-format parsing errors
12319 - DOC: add some information about how to apply converters to samples
12320 - MINOR: acl/pattern: use types different from int to clarify who does what.
12321 - MINOR: pattern: import acl_find_match_name() into pattern.h
12322 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
12323 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
12324 - BUG/MINOR: http: usual deinit stuff in last commit
12325 - BUILD: log: silent a warning about isblank() with latest patches
12326 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
12327 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
12328 - BUG/MINOR: checks: don't consider errno and use conn->err_code
12329 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
12330 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
12331 - BUG/MINOR: tcp: check that no error is pending during a connect probe
12332 - BUG/MINOR: connection: check EINTR when sending a PROXY header
12333 - MEDIUM: connection: set the socket shutdown flags on socket errors
12334 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
12335 - MINOR: connection: clear errno prior to checking for errors
12336 - BUG/MINOR: checks: do not trust errno in write event before any syscall
12337 - MEDIUM: checks: centralize error reporting
12338 - OPTIM: checks: don't poll on recv when using plain TCP connects
12339 - OPTIM: checks: avoid setting SO_LINGER twice
12340 - MINOR: tools: add a generic binary hex string parser
12341 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
12342 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
12343 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
12344 - BUG/MINOR: acl: fix sample expression error reporting
12345 - BUG/MINOR: checks: tcp-check actions are enums, not flags
12346 - MEDIUM: checks: make tcp-check perform multiple send() at once
12347 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
12348 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
12349 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
12350 - CLEANUP: stream_interface: remove unused field err_loc
12351 - MEDIUM: stats: don't use conn->xprt_st anymore
12352 - MINOR: session: add a simple function to retrieve a session from a task
12353 - MEDIUM: stats: don't use conn->xprt_ctx anymore
12354 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
12355 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
12356 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
12357 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
12358 - MAJOR: stats: move the HTTP stats handling to its applet
12359 - MEDIUM: stats: move request argument processing to the final step
12360 - MEDIUM: session: detect applets from the session by using s->target
12361 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
12362 - MAJOR: session: pass applet return traffic through the response analysers
12363 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
12364 - MINOR: stream-int: make the shutr/shutw functions void
12365 - MINOR: obj: provide a safe and an unsafe access to pointed objects
12366 - MINOR: connection: add a field to store an object type
12367 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
12368 - MEDIUM: stream interface: move the peers' ptr into the applet context
12369 - MINOR: stream-interface: move the applet context to its own struct
12370 - MINOR: obj: introduce a new type appctx
12371 - MINOR: stream-int: rename ->applet to ->appctx
12372 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
12373 - MINOR: stream-int: add a new pointer to the end point
12374 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
12375 - MAJOR: stream interface: remove the ->release function pointer
12376 - MEDIUM: stream-int: make ->end point to the connection or the appctx
12377 - CLEANUP: stream-int: remove obsolete si_ctrl function
12378 - MAJOR: stream-int: stop using si->conn and use si->end instead
12379 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
12380 - MEDIUM: session: attach incoming connection to target on embryonic sessions
12381 - MINOR: connection: add conn_init() to (re)initialize a connection
12382 - MINOR: checks: call conn_init() to properly initialize the connection.
12383 - MINOR: peers: make use of conn_init() to initialize the connection
12384 - MINOR: session: use conn_init() to initialize the connections
12385 - MINOR: http: use conn_init() to reinitialize the server connection
12386 - MEDIUM: connection: replace conn_prepare with conn_assign
12387 - MINOR: get rid of si_takeover_conn()
12388 - MINOR: connection: add conn_new() / conn_free()
12389 - MAJOR: connection: add two new flags to indicate readiness of control/transport
12390 - MINOR: stream-interface: introduce si_reset() and si_set_state()
12391 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
12392 - MINOR: connection: replace conn_assign with conn_attach
12393 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
12394 - MAJOR: stream interface: dynamically allocate the outgoing connection
12395 - MEDIUM: connection: move the send_proxy offset to the connection
12396 - MINOR: connection: check for send_proxy during the connect(), not the SI
12397 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
12398 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
12399 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
12400 - MAJOR: stream-interface: dynamically allocate the applet context
12401 - MEDIUM: session: automatically register the applet designated by the target
12402 - MEDIUM: stats: delay appctx initialization
12403 - CLEANUP: peers: use less confusing state/status code names
12404 - MEDIUM: peers: delay appctx initialization
12405 - MINOR: stats: provide some appctx information in "show sess all"
12406 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
12407 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
12408 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
12409 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
12410 - DIET/MINOR: session: reduce the struct session size by 8 bytes
12411 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
12412 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
12413 - MINOR: http: switch the http state to an enum
12414 - MINOR: http: use an enum for the auth method in http_auth_data
12415 - DIET/MINOR: task: reduce struct task size by 8 bytes
12416 - MINOR: stream_interface: add reporting of ressouce allocation errors
12417 - MINOR: session: report lack of resources using the new stream-interface's error code
12418 - BUILD: simplify the date and version retrieval in the makefile
12419 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
12420 - BUILD: use format tags in VERDATE and SUBVERS files
12421 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
12422 - CLEANUP: check: server port is unsigned
12423 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
12424 - MINOR: tools: buf2ip6 must not modify output on failure
12425 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
12426 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
12427 - MINOR: arg: improve wording on error reporting
12428 - BUG/MEDIUM: sample: simplify and fix the argument parsing
12429 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
12430 - MEDIUM: acl: fix the initialization order of the ACL expression
12431 - CLEANUP: acl: remove useless blind copy-paste from sample converters
12432 - TESTS: add regression tests for ACL and sample expression parsers
12433 - BUILD: time: adapt the type of TV_ETERNITY to the local system
12434 - MINOR: chunks: allocate the trash chunks before parsing the config
12435 - BUILD: definitely silence some stupid GCC warnings
12436 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
12437 - MINOR: checks: improve handling of the servers tracking chain
12438 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
12439 - MINOR: checks: use an enum instead of flags to report a check result
12440 - MINOR: checks: rename the state flags
12441 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
12442 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
12443 - MINOR: checks: fix agent check interval computation
12444 - MINOR: checks: add a PAUSED state for the checks
12445 - MINOR: checks: create the agent tasks even when no check is configured
12446 - MINOR: checks: add a flag to indicate what check is an agent
12447 - MEDIUM: checks: enable agent checks even if health checks are disabled
12448 - BUG/MEDIUM: checks: ensure we can enable a server after boot
12449 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
12450 - BUG/MAJOR: session: repair tcp-request connection rules
12451 - BUILD: fix SUBVERS extraction in the Makefile
12452 - BUILD: pattern: silence a warning about uninitialized value
12453 - BUILD: log: fix build warning on Solaris
12454 - BUILD: dumpstats: fix build error on Solaris
12455 - DOC: move option pgsql-check to the correct place
12456 - DOC: move option tcp-check to the proper place
12457 - MINOR: connection: add simple functions to report connection readiness
12458 - MEDIUM: connection: centralize handling of nolinger in fd management
12459 - OPTIM: http: set CF_READ_DONTWAIT on response message
12460 - OPTIM: http: do not re-enable reading on client side while closing the server side
12461 - MINOR: config: add option http-keep-alive
12462 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
12463 - MAJOR: stream-int: handle the connection reuse in si_connect()
12464 - MAJOR: http: add the keep-alive transition on the server side
12465 - MAJOR: backend: enable connection reuse
12466 - MINOR: http: add option prefer-last-server
12467 - MEDIUM: http: do not report connection errors for second and further requests
12468
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200124692013/06/17 : 1.5-dev19
12470 - MINOR: stats: remove the autofocus on the scope input field
12471 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
12472 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
12473 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
12474 - MEDIUM: ssl: improve crt-list format to support negation
12475 - BUG: ssl: fix crt-list for clients not supporting SNI
12476 - MINOR: stats: show soft-stopped servers in different color
12477 - BUG/MINOR: config: "source" does not work in defaults section
12478 - BUG: regex: fix pcre compile error when using JIT
12479 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
12480 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
12481 - MINOR: show PCRE version and JIT status in -vv
12482 - BUG/MINOR: jit: don't rely on USE flag to detect support
12483 - DOC: readme: add suggestion to link against static openssl
12484 - DOC: examples: provide simplified ssl configuration
12485 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
12486 - MINOR: tproxy: add support for FreeBSD
12487 - MINOR: tproxy: add support for OpenBSD
12488 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
12489 - CLEANUP: fix minor typo in error message.
12490 - CLEANUP: fix missing include <string.h> in proto/listener.h
12491 - CLEANUP: protect checks.h from multiple inclusions
12492 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
12493 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
12494 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
12495 - BUG/MEDIUM: splicing is broken since 1.5-dev12
12496 - BUG/MAJOR: acl: add implicit arguments to the resolve list
12497 - BUG/MINOR: tcp: fix error reporting for TCP rules
12498 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
12499 - MINOR: stick-table: allow to allocate an entry without filling it
12500 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
12501 - MINOR: session: only call http_send_name_header() when changing the server
12502 - MINOR: tcp: report the erroneous word in tcp-request track*
12503 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
12504 - BUG/MEDIUM: log: fix regression on log-format handling
12505 - MEDIUM: log: report file name, line number, and directive name with log-format errors
12506 - BUG/MINOR: cli: "clear table" did not work anymore without a key
12507 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
12508 - BUG/MAJOR: http: compression still has defects on chunked responses
12509 - BUG/MINOR: stats: fix confirmation links on the stats interface
12510 - BUG/MINOR: stats: the status bar does not appear anymore after a change
12511 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
12512 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
12513 - BUG/MINOR: fix unterminated ACL array in compression
12514 - BUILD: last fix broke non-linux platforms
12515 - MINOR: init: indicate the SSL runtime version on -vv.
12516 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
12517 - BUILD: stdbool is not portable (again)
12518 - DOC: readme: add a small reminder about restrictions to respect in the code
12519 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
12520 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
12521 - DOC: fix wrong copy-paste in the rspdel example
12522 - MINOR: counters: make it easier to extend the amount of tracked counters
12523 - MEDIUM: counters: add support for tracking a third counter
12524 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
12525 - BUG/MAJOR: http: always ensure response buffer has some room for a response
12526 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
12527 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
12528 - MINOR: log: add a new flag 'L' for locally processed requests
12529 - MINOR: http: add full-length header fetch methods
12530 - MEDIUM: protocol: implement a "drain" function in protocol layers
12531 - MEDIUM: http: add a new "http-response" ruleset
12532 - MEDIUM: http: add the "set-nice" action to http-request and http-response
12533 - MEDIUM: log: add a log level override value in struct session
12534 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
12535 - MEDIUM: http: add support for "set-tos" in http-request/http-response
12536 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
12537 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
12538 - MEDIUM: acl: automatically detect the type of certain fetches
12539 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
12540 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
12541 - DOC: major reorg of ACL + sample fetch
12542 - CLEANUP: http: remove the bogus urlp_ip ACL match
12543 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
12544 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
12545 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
12546 - DOC: update ROADMAP file
12547 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
12548 - MEDIUM: stats: add proxy name filtering on the statistic page
12549
Willy Tarreau289dd922013-04-03 02:26:31 +0200125502013/04/03 : 1.5-dev18
12551 - DOCS: Add explanation of intermediate certs to crt paramater
12552 - DOC: typo and minor fixes in compression paragraph
12553 - MINOR: config: http-request configuration error message misses new keywords
12554 - DOC: minor typo fix in documentation
12555 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
12556 - MEDIUM: ssl: add bind-option "strict-sni"
12557 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
12558 - MEDIUM: regex: Use PCRE JIT in acl
12559 - DOC: simplify bind option "interface" explanation
12560 - DOC: tfo: bump required kernel to linux-3.7
12561 - BUILD: add explicit support for TFO with USE_TFO
12562 - MEDIUM: New cli option -Ds for systemd compatibility
12563 - MEDIUM: add haproxy-systemd-wrapper
12564 - MEDIUM: add systemd service
12565 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
12566 - BUG/MEDIUM: remove supplementary groups when changing gid
12567 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
12568 - BUG/MINOR: Correct logic in cut_crlf()
12569 - CLEANUP: checks: Make desc argument to set_server_check_status const
12570 - CLEANUP: dumpstats: Make cli_release_handler() static
12571 - MEDIUM: server: Break out set weight processing code
12572 - MEDIUM: server: Allow relative weights greater than 100%
12573 - MEDIUM: server: Tighten up parsing of weight string
12574 - MEDIUM: checks: Add agent health check
12575 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
12576 - BUG/MINOR: time: frequency counters are not totally accurate
12577 - BUG/MINOR: http: don't process abortonclose when request was sent
12578 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
12579 - BUG/MEDIUM: checks: ignore late resets after valid responses
12580 - DOC: fix bogus recommendation on usage of gpc0 counter
12581 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
12582 - MINOR: signal: don't block SIGPROF by default
12583 - OPTIM: epoll: make use of EPOLLRDHUP
12584 - OPTIM: splice: detect shutdowns and avoid splice() == 0
12585 - OPTIM: splice: assume by default that splice is working correctly
12586 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
12587 - BUG/MEDIUM: peers: only the last peers section was used by tables
12588 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
12589 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
12590 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
12591 - BUG/MINOR: config: free peer's address when exiting upon parsing error
12592 - BUG/MINOR: config: check the proper variable when parsing log minlvl
12593 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
12594 - BUG/MINOR: cli: show sess should always validate s->listener
12595 - BUG/MINOR: log: improper NULL return check on utoa_pad()
12596 - CLEANUP: http: remove a useless null check
12597 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
12598 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
12599 - BUG/MEDIUM: tools: off-by-one in quote_arg()
12600 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
12601 - BUG/MINOR: unix: remove the 'level' field from the ux struct
12602 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
12603 - CLEANUP: config: slowstart is never negative
12604 - CLEANUP: config: maxcompcpuusage is never negative
12605 - BUG/MEDIUM: log: emit '-' for empty fields again
12606 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
12607 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
12608 - BUILD: improve the makefile's support for libpcre
12609 - MEDIUM: halog: add support for counting per source address (-ic)
12610 - MEDIUM: tools: make str2sa_range support all address syntaxes
12611 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
12612 - MEDIUM: config: use str2sa_range() to parse server addresses
12613 - MEDIUM: config: use str2sa_range() to parse peers addresses
12614 - MINOR: tests: add a config file to ease address parsing tests.
12615 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
12616 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
12617 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
12618 - MINOR: config: report missing peers section name
12619 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
12620 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
12621 - MINOR: tools: prepare str2sa_range() to return an error message
12622 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
12623 - MINOR: tools: prepare str2sa_range() to accept a prefix
12624 - MEDIUM: tools: make str2sa_range() parse unix addresses too
12625 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
12626 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
12627 - MEDIUM: config: use str2sa_range() to parse log addresses
12628 - CLEANUP: tools: remove str2sun() which is not used anymore.
12629 - MEDIUM: config: add complete support for str2sa_range() in dispatch
12630 - MEDIUM: config: add complete support for str2sa_range() in server addr
12631 - MEDIUM: config: add complete support for str2sa_range() in 'server'
12632 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
12633 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
12634 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
12635 - CLEANUP: config: do not use multiple errmsg at once
12636 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
12637 - MAJOR: listener: support inheriting a listening fd from the parent
12638 - MAJOR: tools: support environment variables in addresses
12639 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
12640 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
12641 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
12642 - DOC: mention the new HTTP 307 and 308 redirect statues
12643 - MEDIUM: poll: do not use FD_* macros anymore
12644 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
12645 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
12646 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
12647 - BUILD: fix usual isdigit() warning on solaris
12648 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
12649 - OPTIM: buffer: remove one jump in buffer_count()
12650 - OPTIM: http: improve branching in chunk size parser
12651 - OPTIM: http: optimize the response forward state machine
12652 - BUILD: enable poll() by default in the makefile
12653 - BUILD: add explicit support for Mac OS/X
12654 - BUG/MAJOR: http: use a static storage for sample fetch context
12655 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
12656 - BUG/MAJOR: http: fix regression introduced by commit a890d072
12657 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
12658 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
12659 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
12660 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
12661 - MINOR: log: indicate it when some unreliable sample fetches are logged
12662 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
12663 - MINOR: backend: rename sample fetch functions and declare the sample keywords
12664 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
12665 - MINOR: listener: rename sample fetch functions and declare the sample keywords
12666 - MEDIUM: http: unify acl and sample fetch functions
12667 - MINOR: session: rename sample fetch functions and declare the sample keywords
12668 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
12669 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
12670 - MAJOR: acl: remove fetch argument validation from the ACL struct
12671 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
12672 - MINOR: payload: add new direction-explicit sample fetches
12673 - CLEANUP: acl: remove ACL hooks which were never used
12674 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
12675 - MINOR: sample: provide a function to report the name of a sample check point
12676 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
12677 - CLEANUP: acl: remove unused references to ACL_USE_*
12678 - MINOR: http: replace acl_parse_ver with acl_parse_str
12679 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
12680 - MAJOR: acl: add option -m to change the pattern matching method
12681 - MINOR: acl: remove the use_count in acl keywords
12682 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
12683 - MEDIUM: acl: support using sample fetches directly in ACLs
12684 - MEDIUM: http: remove val_usr() to validate user_lists
12685 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
12686 - MINOR: ssl: add support for the "alpn" bind keyword
12687 - MINOR: http: status code 303 is HTTP/1.1 only
12688 - MEDIUM: http: implement redirect 307 and 308
12689 - MINOR: http: status 301 should not be marked non-cacheable
12690
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100126912012/12/28 : 1.5-dev17
12692 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
12693 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
12694 - BUG/MINOR: stats: last fix was still wrong
12695 - BUG/MINOR: stats: http-request rules still don't cope with stats
12696 - BUG/MINOR: http: http-request add-header emits a corrupted header
12697 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
12698 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
12699 - BUILD: log: unused variable svid
12700 - CLEANUP: http: rename the misleading http_check_access_rule
12701 - MINOR: http: move redirect rule processing to its own function
12702 - REORG: config: move the http redirect rule parser to proto_http.c
12703 - MEDIUM: http: add support for "http-request redirect" rules
12704 - MEDIUM: http: add support for "http-request tarpit" rule
12705
Willy Tarreau69eda352012-12-24 16:48:14 +0100127062012/12/24 : 1.5-dev16
12707 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
12708 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
12709 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
12710 - MINOR: contrib: make the iprange tool grep for addresses
12711 - CLEANUP: polling: gcc doesn't always optimize constants away
12712 - OPTIM: poll: optimize fd management functions for low register count CPUs
12713 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
12714 - OPTIM: epoll: use a temp variable for intermediary flag computations
12715 - OPTIM: epoll: current fd does not count as a new one
12716 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
12717 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
12718 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
12719 - BUG/MINOR: stream_interface: don't return when the fd is already set
12720 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
12721 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
12722 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
12723 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
12724 - BUG/MINOR: http: don't abort client connection on premature responses
12725 - BUILD: no need to clean up when making git-tar
12726 - MINOR: log: add a tag for amount of bytes uploaded from client to server
12727 - BUG/MEDIUM: log: fix possible segfault during config parsing
12728 - MEDIUM: log: change a few log tokens to make them easier to remember
12729 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
12730 - MEDIUM: log-format: make the format parser more robust and more extensible
12731 - MINOR: sample: support cast from bool to string
12732 - MINOR: samples: add a function to fetch and convert any sample to a string
12733 - MINOR: log: add lf_text_len
12734 - MEDIUM: log: add the ability to include samples in logs
12735 - REORG: stats: massive code reorg and cleanup
12736 - REORG: stats: move the HTTP header injection to proto_http
12737 - REORG: stats: functions are now HTTP/CLI agnostic
12738 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
12739 - MINOR: chunks: centralize the trash chunk allocation
12740 - MEDIUM: stats: use hover boxes instead of title to report details
12741 - MEDIUM: stats: use multi-line tips to display detailed counters
12742 - MINOR: tools: simplify the use of the int to ascii macros
12743 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
12744 - MINOR: http: prepare to support more http-request actions
12745 - MINOR: log: make parse_logformat_string() take a const char *
12746 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
12747
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100127482012/12/12 : 1.5-dev15
12749 - DOC: add a few precisions on compression
12750 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
12751 - BUG/MINOR: ssl: One free session in cache remains unused.
12752 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
12753 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
12754 - MINOR: acl: add fetch for server session rate
12755 - BUG/MINOR: compression: Content-Type is case insensitive
12756 - MINOR: compression: disable on multipart or status != 200
12757 - BUG/MINOR: http: don't report client aborts as server errors
12758 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
12759 - MINOR: http: factor out the content-type checks
12760 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
12761 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
12762 - BUG/MINOR: http: disable compression when message has no body
12763 - MINOR: compression: make the stats a bit more robust
12764 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
12765 - MINOR: connection: don't remove failed handshake flags
12766 - MEDIUM: connection: add an error code in connections
12767 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
12768 - MEDIUM: connection: add error reporting for the PROXY protocol header
12769 - MEDIUM: connection: add error reporting for the SSL
12770 - DOC: document the connection error format in logs
12771 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
12772 - BUILD: stdbool is not portable
12773 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
12774 - BUG/MAJOR: raw_sock: must check error code on hangup
12775 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
12776 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
12777 - MINOR: stats: add a few more information on session dump
12778 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
12779 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
12780 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
12781 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
12782 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
12783 - CLEANUP: proto_tcp: use the same code to bind servers and backends
12784 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
12785 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
12786 - MEDIUM: proto_tcp: add support for tracking L7 information
12787 - MEDIUM: counters: add sc1_trackers/sc2_trackers
12788 - MINOR: http: add the "base32" pattern fetch function
12789 - MINOR: http: add the "base32+src" fetch method.
12790 - CLEANUP: session: use an array for the stick counters
12791 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
12792 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
12793 - BUG/MAJOR: connection: always recompute polling status upon I/O
12794 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
12795 - MINOR: config: improve error checking on TCP stick-table tracking
12796 - DOC: add some clarifications to the readme
12797
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100127982012/11/26 : 1.5-dev14
12799 - DOC: fix minor typos
12800 - BUG/MEDIUM: compression: does not forward trailers
12801 - MINOR: buffer_dump with ASCII
12802 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
12803 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
12804 - BUG/MINOR: checks: don't mark the FD as closed before transport close
12805 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
12806 - MINOR: cli: report the msg state in full text in "show sess $PTR"
12807 - CLEANUP: checks: rename some server check flags
12808 - MAJOR: checks: rework completely bogus state machine
12809 - BUG/MINOR: checks: slightly clean the state machine up
12810 - MEDIUM: checks: avoid waking the application up for pure TCP checks
12811 - MEDIUM: checks: close the socket as soon as we have a response
12812 - BUG/MAJOR: checks: close FD on all timeouts
12813 - MINOR: checks: fix recv polling after connect()
12814 - MEDIUM: connection: provide a common conn_full_close() function
12815 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
12816 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
12817 - MINOR: listeners: make the accept loop more robust when maxaccept==0
12818 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
12819 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
12820 - BUG/MINOR: stats: fix inversion of the report of a check in progress
12821 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
12822 - BUG/MEDIUM: connection: always disable polling upon error
12823 - MINOR: connection: abort earlier when errors are detected
12824 - BUG/MEDIUM: checks: report handshake failures
12825 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
12826 - MINOR: tcp: add support for the "v6only" bind option
12827 - MINOR: stats: also report the computed compression savings in html stats
12828 - MINOR: stats: report the total number of compressed responses per front/back
12829 - MINOR: tcp: add support for the "v4v6" bind option
12830 - DOC: stats: document the comp_rsp stats column
12831 - BUILD: buffer: fix another isprint() warning on solaris
12832 - MINOR: cli: add support for the "show sess all" command
12833 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
12834 - MINOR: cli: improve output format for show sess $ptr
12835
Willy Tarreauad15d122012-11-22 01:11:33 +0100128362012/11/22 : 1.5-dev13
12837 - BUILD: fix build issue without USE_OPENSSL
12838 - BUILD: fix compilation error with DEBUG_FULL
12839 - DOC: ssl: remove prefer-server-ciphers documentation
12840 - DOC: ssl: surround keywords with quotes
12841 - DOC: fix minor typo on http-send-name-header
12842 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
12843 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
12844 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
12845 - BUILD: report zlib support in haproxy -vv
12846 - DOC: compression: add some details and clean up the formatting
12847 - DOC: Change is_ssl acl to ssl_fc acl in example
12848 - DOC: make it clear what the HTTP request size is
12849 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
12850 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
12851 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
12852 - DOC: ssl: add 'ecdhe' statement on 'bind'
12853 - MEDIUM: ssl: add client certificate authentication support
12854 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
12855 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
12856 - DOC: ssl: add fetch and ACL 'client_cert'
12857 - MINOR: ssl: add ignore verify errors options
12858 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
12859 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
12860 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
12861 - MINOR: ssl: add fetches and ACLs to return verify errors
12862 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
12863 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
12864 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
12865 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12866 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12867 - MEDIUM: config: authorize frontend and listen without bind.
12868 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
12869 - DOC: ssl: add 'no-tls-tickets' statement documentation.
12870 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
12871 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
12872 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
12873 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
12874 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
12875 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
12876 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
12877 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
12878 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
12879 - MINOR: ssl: use bit fields to store ssl options instead of one int each
12880 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
12881 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
12882 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
12883 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
12884 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
12885 - MEDIUM: ssl: reject ssl server keywords in default-server statement
12886 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
12887 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
12888 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
12889 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
12890 - MINOR: acl: add parse and match primitives to use binary type on ACLs
12891 - MINOR: sample: export 'sample_get_trash_chunk(void)'
12892 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
12893 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
12894 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
12895 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
12896 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
12897 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
12898 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
12899 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
12900 - MINOR: ssl: add 'crt' statement on server.
12901 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
12902 - BUG/MEDIUM: ssl: review polling on reneg.
12903 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
12904 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
12905 - MINOR: build: allow packagers to specify the ssl cache size
12906 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
12907 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
12908 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
12909 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
12910 - DOC: duplicate ssl_sni section
12911 - MEDIUM: HTTP compression (zlib library support)
12912 - CLEANUP: use struct comp_ctx instead of union
12913 - BUILD: remove dependency to zlib.h
12914 - MINOR: compression: memlevel and windowsize
12915 - MEDIUM: use pool for zlib
12916 - MINOR: compression: try init in cfgparse.c
12917 - MINOR: compression: init before deleting headers
12918 - MEDIUM: compression: limit RAM usage
12919 - MINOR: compression: tune.comp.maxlevel
12920 - MINOR: compression: maximum compression rate limit
12921 - MINOR: log-format: check number of arguments in cfgparse.c
12922 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
12923 - BUG/MINOR: compression: deinit zlib only when required
12924 - MEDIUM: compression: don't compress when no data
12925 - MEDIUM: compression: use pool for comp_ctx
12926 - MINOR: compression: rate limit in 'show info'
12927 - MINOR: compression: report zlib memory usage
12928 - BUG/MINOR: compression: dynamic level increase
12929 - DOC: compression: unsupported cases.
12930 - MINOR: compression: CPU usage limit
12931 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
12932 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
12933 - MINOR: config: add a function to indent error messages
12934 - REORG: split "protocols" files into protocol and listener
12935 - MEDIUM: config: replace ssl_conf by bind_conf
12936 - CLEANUP: listener: remove unused conf->file and conf->line
12937 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
12938 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
12939 - MEDIUM: move bind SSL parsing to ssl_sock
12940 - MINOR: config: improve error reporting for "bind" lines
12941 - MEDIUM: config: move the common "bind" settings to listener.c
12942 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
12943 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
12944 - MINOR: listener: add a scope field in the bind keyword lists
12945 - MINOR: config: pass the file and line to config keyword parsers
12946 - MINOR: stats: fill the file and line numbers in the stats frontend
12947 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
12948 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
12949 - REORG: listener: move unix perms from the listener to the bind_conf
12950 - BUG: backend: balance hdr was broken since 1.5-dev11
12951 - MINOR: standard: make memprintf() support a NULL destination
12952 - MINOR: config: make str2listener() use memprintf() to report errors.
12953 - MEDIUM: stats: remove the stats_sock struct from the global struct
12954 - MINOR: ssl: set the listeners' data layer to ssl during parsing
12955 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
12956 - DOC: move bind options to their own section
12957 - DOC: stats: refer to "bind" section for "stats socket" settings
12958 - DOC: fix index to reference bind and server options
12959 - BUG: http: do not print garbage on invalid requests in debug mode
12960 - BUG/MINOR: config: check the proper pointer to report unknown protocol
12961 - CLEANUP: connection: offer conn_prepare() to set up a connection
12962 - CLEANUP: config: fix typo inteface => interface
12963 - BUG: stats: fix regression introduced by commit 4348fad1
12964 - MINOR: cli: allow to set frontend maxconn to zero
12965 - BUG/MAJOR: http: chunk parser was broken with buffer changes
12966 - MEDIUM: monitor: simplify handling of monitor-net and mode health
12967 - MINOR: connection: add a pointer to the connection owner
12968 - MEDIUM: connection: make use of the owner instead of container_of
12969 - BUG/MINOR: ssl: report the L4 connection as established when possible
12970 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
12971 - BUG/MINOR: config: use a copy of the file name in proxy configurations
12972 - BUG/MEDIUM: listener: don't pause protocols that do not support it
12973 - MEDIUM: proxy: add the global frontend to the list of normal proxies
12974 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
12975 - MINOR: signal: really ignore signals configured with no handler
12976 - MINOR: buffers: add a few functions to write chars, strings and blocks
12977 - MINOR: raw_sock: always report asynchronous connection errors
12978 - MEDIUM: raw_sock: improve connection error reporting
12979 - REORG: connection: rename the data layer the "transport layer"
12980 - REORG: connection: rename app_cb "data"
12981 - MINOR: connection: provide a generic data layer wakeup callback
12982 - MINOR: connection: split conn_prepare() in two functions
12983 - MINOR: connection: add an init callback to the data_cb struct
12984 - MEDIUM: session: use a specific data_cb for embryonic sessions
12985 - MEDIUM: connection: use a generic data-layer init() callback
12986 - MEDIUM: connection: reorganize connection flags
12987 - MEDIUM: connection: only call the data->wake callback on activity
12988 - MEDIUM: connection: make it possible for data->wake to return an error
12989 - MEDIUM: session: register a data->wake callback to process errors
12990 - MEDIUM: connection: don't call the data->init callback upon error
12991 - MEDIUM: connection: it's not the data layer's role to validate the connection
12992 - MEDIUM: connection: automatically disable polling on error
12993 - REORG: connection: move the PROXY protocol management to connection.c
12994 - MEDIUM: connection: add a new local send-proxy transport callback
12995 - MAJOR: checks: make use of the connection layer to send checks
12996 - REORG: server: move the check-specific parts into a check subsection
12997 - MEDIUM: checks: use real buffers to store requests and responses
12998 - MEDIUM: check: add the ctrl and transport layers in the server check structure
12999 - MAJOR: checks: completely use the connection transport layer
13000 - MEDIUM: checks: add the "check-ssl" server option
13001 - MEDIUM: checks: enable the PROXY protocol with health checks
13002 - CLEANUP: checks: remove minor warnings for assigned but not used variables
13003 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
13004 - BUG: connection: fix regression from commit 9e272bf9
13005 - CLEANUP: cttproxy: remove a warning on undeclared close()
13006 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
13007 - MEDIUM: listener: add support for linux's accept4() syscall
13008 - MINOR: halog: sort output by cookie code
13009 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
13010 - BUG/MINOR: halog: fix help message for -ut/-uto
13011 - MINOR: halog: add a parameter to limit output line count
13012 - BUILD: accept4: move the socketcall declaration outside of accept4()
13013 - MINOR: server: add minimal infrastructure to parse keywords
13014 - MINOR: standard: make indent_msg() support empty messages
13015 - MEDIUM: server: check for registered keywords when parsing unknown keywords
13016 - MEDIUM: server: move parsing of keyword "id" to server.c
13017 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
13018 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
13019 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
13020 - MEDIUM: connection: always unset the transport layer upon close
13021 - BUG/MINOR: session: fix some leftover from debug code
13022 - BUG/MEDIUM: session: enable the conn_session_update() callback
13023 - MEDIUM: connection: add a flag to hold the transport layer
13024 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
13025 - MINOR: log: make lf_text use a const char *
13026 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
13027 - REORG: http: rename msg->buf to msg->chn since it's a channel
13028 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
13029 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
13030 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
13031 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
13032 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
13033 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
13034 - OPTIM: channel: reorganize struct members to improve cache efficiency
13035 - CLEANUP: session: remove term_trace which is not used anymore
13036 - OPTIM: session: reorder struct session fields
13037 - OPTIM: connection: pack the struct target
13038 - DOC: document relations between internal entities
13039 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
13040 - BUILD: ssl: fix shctx build on older compilers
13041 - MEDIUM: ssl: add support for the "npn" bind keyword
13042 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
13043 - MINOR: chunk: provide string compare functions
13044 - MINOR: sample: accept fetch keywords without parenthesis
13045 - MEDIUM: sample: pass an empty list instead of a null for fetch args
13046 - MINOR: ssl: improve socket behaviour upon handshake abort.
13047 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
13048 - MEDIUM: listener: provide a fallback for accept4() when not supported
13049 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
13050 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
13051 - OPTIM: channel: inline channel_forward's fast path
13052 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
13053 - OPTIM: tools: inline hex2i()
13054 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
13055 - MINOR: compression: automatically disable compression for older browsers
13056 - MINOR: compression: optimize memLevel to improve byte rate
13057 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
13058 - BUILD: fix coexistence of openssl and zlib
13059 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
13060 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
13061 - MINOR: tools: add a clear_addr() function to unset an address
13062 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
13063 - CLEANUP: remove trashlen
13064 - MAJOR: session: detach the connections from the stream interfaces
13065 - DOC: update document describing relations between internal entities
13066 - BUILD: make it possible to specify ZLIB path
13067 - MINOR: compression: add an offload option to remove the Accept-Encoding header
13068 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
13069 - CLEANUP: completely remove trashlen
13070 - MINOR: chunk: add a function to reset a chunk
13071 - CLEANUP: replace chunk_printf() with chunk_appendf()
13072 - MEDIUM: make the trash be a chunk instead of a char *
13073 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
13074 - MEDIUM: stick-table: allocate the table key of size buffer size
13075 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
13076 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
13077 - OPTIM: session: don't process the whole session when only timers need a refresh
13078 - BUG/MINOR: session: mark the handshake as complete earlier
13079 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
13080 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
13081 - MAJOR: sepoll: make the poller totally event-driven
13082 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
13083 - BUILD: compression: remove a build warning
13084 - MEDIUM: fd: don't unset fdtab[].updated upon delete
13085 - REORG: fd: move the speculative I/O management from ev_sepoll
13086 - REORG: fd: move the fd state management from ev_sepoll
13087 - REORG: fd: centralize the processing of speculative events
13088 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
13089 - BUILD: stream_interface: remove si_fd() and its references
13090 - BUILD: compression: enable build in BSD and OSX Makefiles
13091 - MAJOR: ev_select: make the poller support speculative events
13092 - MAJOR: ev_poll: make the poller support speculative events
13093 - MAJOR: ev_kqueue: make the poller support speculative events
13094 - MAJOR: polling: replace epoll with sepoll and remove sepoll
13095 - MAJOR: polling: remove unused callbacks from the poller struct
13096 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
13097 - CLEANUP: channel: remove any reference of the hijackers
13098 - CLEANUP: stream_interface: remove the external task type target
13099 - MAJOR: connection: replace struct target with a pointer to an enum
13100 - BUG: connection: fix typo in previous commit
13101 - BUG: polling: don't skip polled events in the spec list
13102 - MINOR: splice: disable it when the system returns EBADF
13103 - MINOR: build: allow packagers to specify the default maxzlibmem
13104 - BUG: halog: fix broken output limitation
13105 - BUG: proxy: fix server name lookup in get_backend_server()
13106 - BUG: compression: do not always increment the round counter on allocation failure
13107 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
13108 - MINOR: global: don't prevent nbproc from being redefined
13109 - MINOR: config: support process ranges for "bind-process"
13110 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
13111 - MINOR: ssl: rename and document the tune.ssl.cachesize option
13112 - DOC: update the PROXY protocol spec to support v2
13113 - MINOR: standard: add a simple popcount function
13114 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
13115 - BUG: compression: properly disable compression when content-type does not match
13116 - MINOR: cli: report connection status in "show sess xxx"
13117 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
13118 - BUILD: cli: fix build when SSL is enabled
13119 - MINOR: cli: report the fd state in "show sess xxx"
13120 - MINOR: cli: report an error message on missing argument to compression rate
13121 - MINOR: http: add some debugging functions to pretty-print msg state names
13122 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
13123 - DOC: documentation on http header capture is wrong
13124 - MINOR: http: allow the cookie capture size to be changed
13125 - DOC: http header capture has not been limited in size for a long time
13126 - DOC: update readme with build methods for BSD
13127 - BUILD: silence a warning on Solaris about usage of isdigit()
13128 - MINOR: stats: report HTTP compression stats per frontend and per backend
13129 - MINOR: log: add '%Tl' to log-format
13130 - MINOR: samples: update the url_param fetch to match parameters in the path
13131
Willy Tarreau16216822012-09-10 09:46:55 +0200131322012/09/10 : 1.5-dev12
13133 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
13134 - MEDIUM: ssl: add support for prefer-server-ciphers option
13135 - MINOR: IPv6 support for transparent proxy
13136 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
13137 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
13138 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
13139 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
13140 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
13141 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
13142 - MEDIUM: ssl: protect against client-initiated renegociation
13143 - BUILD: add optional support for SSL via the USE_OPENSSL flag
13144 - MEDIUM: ssl: add shared memory session cache implementation.
13145 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
13146 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
13147 - MEDIUM: ssl: add support for SNI and wildcard certificates
13148 - DOC: Typos cleanup
13149 - DOC: fix name for "option independant-streams"
13150 - DOC: specify the default value for maxconn in the context of a proxy
13151 - BUG/MINOR: to_log erased with unique-id-format
13152 - LICENSE: add licence exception for OpenSSL
13153 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
13154 - BUILD: add an AIX 5.2 (and later) target.
13155 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
13156 - MINOR: halog: use the more recent dual-mode fgets2 implementation
13157 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
13158 - CLEANUP: halog: make clean should also remove .o files
13159 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
13160 - OPTIM: halog: improve cold-cache behaviour when loading a file
13161 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
13162 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
13163 - MEDIUM: pattern: add the "base" sample fetch method
13164 - OPTIM: i386: make use of kernel-mode-linux when available
13165 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
13166 - BUG/MINOR: polling: some events were not set in various pollers
13167 - MINOR: http: add the urlp_val ACL match
13168 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
13169 - MINOR: stats/cli: add plans to support more stick-table actions
13170 - MEDIUM: stats/cli: add support for "set table key" to enter values
13171 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
13172 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
13173 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
13174 - REORG/MINOR: connection: move declaration to its own include file
13175 - REORG/MINOR: checks: put a struct connection into the server
13176 - MINOR: connection: add flags to the connection struct
13177 - MAJOR: get rid of fdtab[].state and use connection->flags instead
13178 - MINOR: fd: add a new I/O handler to fdtab
13179 - MEDIUM: polling: prepare to call the iocb() function when defined.
13180 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
13181 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
13182 - MINOR: connection: add a handler for fd-based connections
13183 - MAJOR: connection: replace direct I/O callbacks with the connection callback
13184 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
13185 - MEDIUM: connection: remove the FD_POLL_* flags only once
13186 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
13187 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
13188 - CLEANUP: remove the now unused fdtab direct I/O callbacks
13189 - MAJOR: remove the stream interface and task management code from sock_*
13190 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
13191 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
13192 - MAJOR: connection: add a new CO_FL_CONNECTED flag
13193 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
13194 - MAJOR: connection: call data layer handshakes from the handler
13195 - MEDIUM: fd: remove the EV_FD_COND_* primitives
13196 - MINOR: sock_raw: move calls to si_data_close upper
13197 - REORG: connection: replace si_data_close() with conn_data_close()
13198 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
13199 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
13200 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
13201 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
13202 - MEDIUM: connection: add definitions for dual polling mechanisms
13203 - MEDIUM: connection: make use of the new polling functions
13204 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
13205 - MEDIUM: checks: don't use FD_WAIT_* anymore
13206 - MINOR: fd: get rid of FD_WAIT_*
13207 - MEDIUM: stream_interface: offer a generic function for connection updates
13208 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
13209 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
13210 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
13211 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
13212 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
13213 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
13214 - REORG/MAJOR: extract "struct buffer" from "struct channel"
13215 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
13216 - REORG: sock_raw: rename the files raw_sock*
13217 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
13218 - MAJOR: raw_sock: temporarily disable splicing
13219 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
13220 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
13221 - MAJOR: connection: split the send call into connection and stream interface
13222 - MAJOR: stream-interface: restore splicing mechanism
13223 - MAJOR: stream-interface: make conn_notify_si() more robust
13224 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
13225 - MAJOR: stream-interface: don't commit polling changes in every callback
13226 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
13227 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
13228 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
13229 - REORG: buffers: split buffers into chunk,buffer,channel
13230 - MAJOR: channel: remove the BF_OUT_EMPTY flag
13231 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
13232 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
13233 - MINOR: buffer: provide a new buffer_full() function
13234 - MAJOR: channel: stop relying on BF_FULL to take action
13235 - MAJOR: channel: remove the BF_FULL flag
13236 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
13237 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
13238 - CLEANUP: channel: use "channel" instead of "buffer" in function names
13239 - REORG: connection: move the target pointer from si to connection
13240 - MAJOR: connection: move the addr field from the stream_interface
13241 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
13242 - MEDIUM: proto_tcp: remove any dependence on stream_interface
13243 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
13244 - MEDIUM: connection: add an ->init function to data layer
13245 - MAJOR: session: introduce embryonic sessions
13246 - MAJOR: connection: make the PROXY decoder a handshake handler
13247 - CLEANUP: frontend: remove the old proxy protocol decoder
13248 - MAJOR: connection: rearrange the polling flags.
13249 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
13250 - MEDIUM: connection: complete the polling cleanups
13251 - MEDIUM: connection: avoid calling handshakes when polling is required
13252 - MAJOR: stream_interface: continue to update data polling flags during handshakes
13253 - CLEANUP: fd: remove fdtab->flags
13254 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
13255 - CLEANUP: includes: fix includes for a number of users of fd.h
13256 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
13257 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
13258 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
13259 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
13260 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
13261 - BUILD: ssl: fix shctx build on RHEL with futex
13262 - BUILD: include sys/socket.h to fix build failure on FreeBSD
13263 - BUILD: fix build error without SSL (ssl_cert)
13264 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
13265 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
13266 - MEDIUM: config: support per-listener backlog and maxconn
13267 - MINOR: session: do not send an HTTP/500 error on SSL sockets
13268 - MEDIUM: config: implement maxsslconn in the global section
13269 - BUG: tcp: close socket fd upon connect error
13270 - MEDIUM: connection: improve error handling around the data layer
13271 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
13272 - BUILD: shut a gcc warning introduced by commit 269ab31
13273 - MEDIUM: config: centralize handling of SSL config per bind line
13274 - BUILD: makefile: report USE_OPENSSL status in build options
13275 - BUILD: report openssl build settings in haproxy -vv
13276 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
13277 - DOC: add a special acknowledgement for the stud project
13278 - DOC: add missing SSL options for servers and listeners
13279 - BUILD: automatically add -lcrypto for SSL
13280 - DOC: add some info about openssl build in the README
13281
Willy Tarreau02c7c142012-06-04 00:43:45 +0200132822012/06/04 : 1.5-dev11
13283 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
13284 - BUG/MAJOR: trash must always be the size of a buffer
13285 - DOC: fix minor regex example issue and improve doc on stats
13286 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
13287 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
13288 - MINOR: checks: add on-marked-up option
13289 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
13290 - MEDIUM: stream_interface: remove the si->init
13291 - MINOR: buffers: add a rewind function
13292 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
13293 - MAJOR: http: stop using msg->sol outside the parsers
13294 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
13295 - MEDIUM: http: get rid of msg->som which is not used anymore
13296 - MEDIUM: http: msg->sov and msg->sol will never wrap
13297 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
13298 - BUG/MINOR: stop connect timeout when connect succeeds
13299 - REORG: move the send-proxy code to tcp_connect_write()
13300 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
13301 - MINOR: stream_interface: introduce a new "struct connection" type
13302 - REORG/MINOR: stream_interface: move si->fd to struct connection
13303 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
13304 - MINOR: stream_interface: add a data channel close function
13305 - MEDIUM: stream_interface: call si_data_close() before releasing the si
13306 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
13307 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
13308 - MINOR: add a new function call tracer for debugging purposes
13309 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
13310 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
13311 - BUG/MEDIUM: register peer sync handler in the proper order
13312 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
13313 - BUG/MINOR: fix option httplog validation with TCP frontends
13314 - BUG/MINOR: log: don't report logformat errors in backends
13315 - REORG/MINOR: use dedicated proxy flags for the cookie handling
13316 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
13317 - MINOR: http: add support for "httponly" and "secure" cookie attributes
13318 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
13319 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
13320 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
13321 - MEDIUM: stats: add the ability to kill sessions from the admin interface
13322 - BUILD: add support for linux kernels >= 2.6.28
13323
Willy Tarreauffb89472012-05-14 07:26:56 +0200133242012/05/14 : 1.5-dev10
13325 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
13326 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
13327 - CLEANUP: auth: make the code build again with DEBUG_AUTH
13328 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
13329 - REORG: use the name sock_raw instead of stream_sock
13330 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
13331 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
13332 - CLEANUP: sock_raw: remove last references to stream_sock
13333 - CLEANUP: stream_interface: stop exporting socket layer functions
13334 - MINOR: stream_interface: add an init callback to sock_ops
13335 - MEDIUM: stream_interface: derive the socket operations from the target
13336 - MAJOR: fd: remove the need for the socket layer to recheck the connection
13337 - MINOR: session: call the socket layer init function when a session establishes
13338 - MEDIUM: session: add support for tunnel timeouts
13339 - MINOR: standard: add a new debug macro : fddebug()
13340 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
13341 - OPTIM: proto_http: don't enable quick-ack on empty buffers
13342 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
13343 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
13344
Willy Tarreaua0564f32012-05-08 21:56:27 +0200133452012/05/08 : 1.5-dev9
13346 - MINOR: Add release callback to si_applet
13347 - CLEANUP: Fix some minor typos
13348 - MINOR: Add TO/FROM_SET flags to struct stream_interface
13349 - CLEANUP: Fix some minor whitespace issues
13350 - MINOR: stats admin: allow unordered parameters in POST requests
13351 - CLEANUP: fix typo in findserver() log message
13352 - MINOR: stats admin: use the backend id instead of its name in the form
13353 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
13354 - DOC: cleanup indentation, alignment, columns and chapters
13355 - DOC: fix some keywords arguments documentation
13356 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
13357 - BUG/MAJOR: log: possible segfault with logformat
13358 - MEDIUM: log: split of log_format generation
13359 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
13360 - MEDIUM: log: Unique ID
13361 - MINOR: log: log-format: usable without httplog and tcplog
13362 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
13363 - MINOR: contrib/iprange: add a network IP range to mask converter
13364 - MEDIUM: session: implement the "use-server" directive
13365 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
13366 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
13367 - MEDIUM: http: add cookie and scookie ACLs
13368 - CLEANUP: lb_first: add reference to a paper describing the original idea
13369 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
13370 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
13371 - BUILD: http: make extract_cookie_value() return an int not size_t
13372 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
13373 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
13374 - MINOR: standard: add a memprintf() function to build formatted error messages
13375 - CLEANUP: remove a few warning about unchecked return values in debug code
13376 - MEDIUM: move message-related flags from transaction to message
13377 - DOC: add a diagram to explain how circular buffers work
13378 - MAJOR: buffer rework: replace ->send_max with ->o
13379 - MAJOR: buffer: replace buf->l with buf->{o+i}
13380 - MINOR: buffers: provide simple pointer normalization functions
13381 - MINOR: buffers: remove unused function buffer_contig_data()
13382 - MAJOR: buffers: replace buf->w with buf->p - buf->o
13383 - MAJOR: buffers: replace buf->r with buf->p + buf->i
13384 - MAJOR: http: move buffer->lr to http_msg->next
13385 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
13386 - CLEANUP: http: remove unused http_msg->col
13387 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
13388 - MEDIUM: http: add a pointer to the buffer in http_msg
13389 - MAJOR: http: make http_msg->sol relative to buffer's origin
13390 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
13391 - MEDIUM: http: remove buffer arg in a few header manipulation functions
13392 - MEDIUM: http: remove buffer arg in http_capture_bad_message
13393 - MEDIUM: http: remove buffer arg in http_msg_analyzer
13394 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
13395 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
13396 - MEDIUM: http: remove buffer arg in chunk parsing functions
13397 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
13398 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
13399 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
13400 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
13401 - MEDIUM: buffers: rename a number of buffer management functions
13402 - MEDIUM: http: add a prefetch function for ACL pattern fetch
13403 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
13404 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
13405 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
13406 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
13407 - MEDIUM: add a new typed argument list parsing framework
13408 - MAJOR: acl: make use of the new argument parsing framework
13409 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
13410 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
13411 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
13412 - MAJOR: acl: ensure that implicit table and proxies are valid
13413 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
13414 - MEDIUM: pattern: replace type pattern_arg with type arg
13415 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
13416 - MEDIUM: pattern: use the standard arg parser
13417 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
13418 - MEDIUM: pattern: report the precise argument parsing error when known.
13419 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
13420 - MINOR: pattern: add a new 'sample' type to store fetched data
13421 - MEDIUM: pattern: add new sample types to replace pattern types
13422 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
13423 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
13424 - MEDIUM: acl: get rid of the SET_RES flags
13425 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
13426 - MINOR: pattern: replace struct pattern with struct sample
13427 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
13428 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
13429 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
13430 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
13431 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
13432 - MEDIUM: acl/pattern: use the same direction scheme
13433 - MEDIUM: acl/pattern: start merging common sample fetch functions
13434 - MEDIUM: pattern: ensure that sample types always cast into other types.
13435 - MEDIUM: acl/pattern: factor out the src/dst address fetches
13436 - MEDIUM: acl: implement payload and payload_lv
13437 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
13438 - MINOR: stick_table: centralize the handling of empty keys
13439 - MINOR: pattern: centralize handling of unstable data in pattern_process()
13440 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
13441 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
13442 - MINOR: acl: add a val_args field to keywords
13443 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
13444 - MEDIUM: http: merge acl and pattern header fetch functions
13445 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
13446 - MEDIUM: acl: report parsing errors to the caller
13447 - MINOR: arg: improve error reporting on invalid arguments
13448 - MINOR: acl: report errors encountered when loading patterns from files
13449 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
13450 - REORG: use the name "sample" instead of "pattern" to designate extracted data
13451 - REORG: rename "pattern" files
13452 - MINOR: acl: add types to ACL patterns
13453 - MINOR: standard: add an IPv6 parsing function (str62net)
13454 - MEDIUM: acl: support IPv6 address matching
13455 - REORG: stream_interface: create a struct sock_ops to hold socket operations
13456 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
13457 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
13458 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
13459 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
13460 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
13461 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
13462 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
13463 - MEDIUM: http: improve error capture reports
13464 - MINOR: acl: add the cook_val() match to match a cookie against an integer
13465 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
13466 - MEDIUM: memory: add the ability to poison memory at run time
13467 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
13468 - MINOR: cfgparse: use a common errmsg pointer for all parsers
13469 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
13470 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
13471 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
13472
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200134732012/03/26 : 1.5-dev8
13474 - MINOR: patch for minor typo (ressources/resources)
13475 - MEDIUM: http: add support for sending the server's name in the outgoing request
13476 - DOC: mention that default checks are TCP connections
13477 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
13478 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
13479 - CLEANUP: Fix HCHK spelling errors
13480 - BUG/MINOR: fix typo in processing of http-send-name-header
13481 - MEDIUM: log: Use linked lists for loggers
13482 - BUILD: fix declaration inside a scope block
13483 - REORG: log: split send_log function
13484 - MINOR: config: Parse the string of the log-format config keyword
13485 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
13486 - MINOR: Date and time fonctions that don't use snprintf
13487 - MEDIUM: log: make http_sess_log use log_format
13488 - DOC: log-format documentation
13489 - MEDIUM: log: use log_format for mode tcplog
13490 - MEDIUM: log-format: backend source address %Bi %Bp
13491 - BUG/MINOR: log-format: fix %o flag
13492 - BUG/MEDIUM: bad length in log_format and __send_log
13493 - MINOR: logformat %st is signed
13494 - BUILD/MINOR: fix the source URL in the spec file
13495 - DOC: acl is http_first_req, not http_req_first
13496 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
13497 - MINOR: acl: add new matches for header/path/url length
13498 - BUILD: halog: make halog build on solaris
13499 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
13500 - MINOR: remove the client/server side distinction in SI addresses
13501 - MINOR: halog: add support for matching queued requests
13502 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
13503 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
13504 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
13505 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
13506 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
13507 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
13508 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
13509 - CLEANUP: rename possibly confusing struct field "tracked"
13510 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
13511 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
13512 - MEDIUM: buffers: add some new primitives and rework existing ones
13513 - BUG: buffers: don't return a negative value on buffer_total_space_res()
13514 - MINOR: buffers: make buffer_pointer() support negative pointers too
13515 - CLEANUP: kill buffer_replace() and use an inline instead
13516 - BUG: tcp: option nolinger does not work on backends
13517 - CLEANUP: ebtree: remove a few annoying signedness warnings
13518 - CLEANUP: ebtree: clarify licence and update to 6.0.6
13519 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
13520 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
13521 - BUG: ebtree: ebst_lookup() could return the wrong entry
13522 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
13523 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
13524 - MINOR: acl: add support for TLS server name matching using SNI
13525 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
13526 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
13527 - MINOR: pattern: export the global temporary pattern
13528 - CLEANUP: patterns: get rid of pattern_data_setstring()
13529 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
13530 - MINOR: acl: include pattern.h to make pattern migration more transparent
13531 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
13532 - MEDIUM: acl: use temp_pattern to store any integer-type information
13533 - MEDIUM: acl: use temp_pattern to store any address-type information
13534 - CLEANUP: acl: integer part of acl_test is not used anymore
13535 - MEDIUM: acl: use temp_pattern to store any string-type information
13536 - CLEANUP: acl: remove last data fields from the acl_test struct
13537 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
13538 - MEDIUM: patterns: the hdr() pattern is now of type string
13539 - DOC: add minimal documentation on how ACLs work internally
13540 - DOC: add a coding-style file
13541 - OPTIM: halog: keep a fast path for the lines-count only
13542 - CLEANUP: silence a warning when building on sparc
13543 - BUG: http: tighten the list of allowed characters in a URI
13544 - MEDIUM: http: block non-ASCII characters in URIs by default
13545 - DOC: add some documentation from RFC3986 about URI format
13546 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
13547 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
13548 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
13549 - MINOR: halog: add some help on the command line
13550 - BUILD: fix build error on FreeBSD
13551 - BUG: fix double free in peers config error path
13552 - MEDIUM: improve config check return codes
13553 - BUILD: make it possible to look for pcre in the default system paths
13554 - MINOR: config: emit a warning when 'default_backend' masks servers
13555 - MINOR: backend: rework the LC definition to support other connection-based algos
13556 - MEDIUM: backend: add the 'first' balancing algorithm
13557 - BUG: fix httplog trailing LF
13558 - MEDIUM: increase chunk-size limit to 2GB-1
13559 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
13560 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
13561 - BUG: checks: fix server maintenance exit sequence
13562 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
13563 - DOC: enumerate valid status codes for "observe layer7"
13564 - MINOR: buffer: switch a number of buffer args to const
13565 - CLEANUP: silence signedness warning in acl.c
13566 - BUG: stream_sock: si->release was not called upon shutw()
13567 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
13568 - BUG/CRITICAL: log: fix risk of crash in development snapshot
13569 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
13570 - MINOR: config: disable header captures in TCP mode and complain
13571
Willy Tarreau60612eb2011-09-10 23:43:11 +0200135722011/09/10 : 1.5-dev7
13573 - [BUG] fix binary stick-tables
13574 - [MINOR] http: *_dom matching header functions now also split on ":"
13575 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
13576 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
13577 - [MINOR] check: add redis check support
13578 - [DOC] small fixes to clearly distinguish between keyword and variables
13579 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
13580 - [DOC] Minor spelling fixes and grammatical enhancements
13581 - [CLEANUP] dumpstats: make symbols static where possible
13582 - [MINOR] Break out dumping table
13583 - [MINOR] Break out processing of clear table
13584 - [MINOR] Allow listing of stick table by key
13585 - [MINOR] Break out all stick table socat command parsing
13586 - [MINOR] More flexible clearing of stick table
13587 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
13588 - [MINOR] Allow showing and clearing by key of integer stick tables
13589 - [MINOR] Allow showing and clearing by key of string stick tables
13590 - [CLEANUP] Remove assigned but unused variables
13591 - [CLEANUP] peers.h: fix declarations
13592 - [CLEANUP] session.c: Make functions static where possible
13593 - [MINOR] Add active connection list to server
13594 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
13595 - [MINOR] Add down termination condition
13596 - [MINOR] Make appsess{,ion}_refresh static
13597 - [MINOR] Add rdp_cookie pattern fetch function
13598 - [CLEANUP] Remove unnecessary casts
13599 - [MINOR] Add non-stick server option
13600 - [MINOR] Consistently use error in tcp_parse_tcp_req()
13601 - [MINOR] Consistently free expr on error in cfg_parse_listen()
13602 - [MINOR] Free rdp_cookie_name on denint()
13603 - [MINOR] Free tcp rules on denint()
13604 - [MINOR] Free stick table pool on denint()
13605 - [MINOR] Free stick rules on denint()
13606 - [MEDIUM] Fix stick-table replication on soft-restart
13607 - [MEDIUM] Correct ipmask() logic
13608 - [MINOR] Correct type in table dump examples
13609 - [MINOR] Fix build error in stream_int_register_handler()
13610 - [MINOR] Use DPRINTF in assign_server()
13611 - [BUG] checks: http-check expect could fail a check on multi-packet responses
13612 - [DOC] fix minor typo in the "dispatch" doc
13613 - [BUG] proto_tcp: fix address binding on remote source
13614 - [MINOR] http: don't report the "haproxy" word on the monitoring response
13615 - [REORG] http: move HTTP error codes back to proto_http.h
13616 - [MINOR] http: make the "HTTP 200" status code configurable.
13617 - [MINOR] http: partially revert the chunking optimization for now
13618 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
13619 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
13620 - [MEDIUM] http: add support for "http-no-delay"
13621 - [OPTIM] http: optimize chunking again in non-interactive mode
13622 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
13623 - [OPTIM] stream_sock: don't use splice on too small payloads
13624 - [MINOR] config: make it possible to specify a cookie even without a server
13625 - [BUG] stats: support url-encoded forms
13626 - [MINOR] config: automatically compute a default fullconn value
13627 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
13628 - [DOC] add missing entry or stick store-response
13629 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
13630 - [BUG] halog: correctly handle truncated last line
13631 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
13632 - [MINOR] halog: add support for HTTP log matching (-H)
13633 - [MINOR] halog: gain back performance before SKIP_CHAR fix
13634 - [OPTIM] halog: cache some common fields positions
13635 - [OPTIM] halog: check once for correct line format and reuse the pointer
13636 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
13637 - [OPTIM] halog: remove support for tab delimiters in input data
13638 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
13639 - [MINOR] session: try to emit a 500 response on memory allocation errors
13640 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
13641 - [BUG] stream_sock: disable listener when system resources are exhausted
13642 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
13643 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
13644 - [MINOR] listeners: add listen_full() to mark a listener full
13645 - [MINOR] listeners: add support for queueing resource limited listeners
13646 - [MEDIUM] listeners: put listeners in queue upon resource shortage
13647 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
13648 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
13649 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
13650 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
13651 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
13652 - [MINOR] proxy: make session rate-limit more accurate
13653 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
13654 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
13655 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
13656 - [MINOR] task: new function task_schedule() to schedule a wake up
13657 - [MAJOR] proxy: finally get rid of maintain_proxies()
13658 - [BUG] proxy: stats frontend and peers were missing many initializers
13659 - [MEDIUM] listeners: add a global listener management task
13660 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
13661 - [DOC] fix typos, "#" is a sharp, not a dash
13662 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
13663 - [MEDIUM] checks: group health checks methods by values and save option bits
13664 - [MINOR] session-counters: add the ability to clear the counters
13665 - [BUG] check: http-check expect + regex would crash in defaults section
13666 - [MEDIUM] http: make x-forwarded-for addition conditional
13667 - [REORG] build: move syscall redefinition to specific places
13668 - [CLEANUP] update the year in the copyright banner
13669 - [BUG] possible crash in 'show table' on stats socket
13670 - [BUG] checks: use the correct destination port for sending checks
13671 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
13672 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
13673 - [DOC] fixed a few "sensible" -> "sensitive" errors
13674 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
13675 - [BUG] http: trailing white spaces must also be trimmed after headers
13676 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
13677 - [MINOR] http: take a capture of too large requests and responses
13678 - [MINOR] http: take a capture of truncated responses
13679 - [MINOR] http: take a capture of bad content-lengths.
13680 - [DOC] add a few old and uncommitted docs
13681 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
13682 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
13683 - [MINOR] halog: support backslash-escaped quotes
13684 - [CLEANUP] remove dirty left-over of a debugging message
13685 - [MEDIUM] stats: disable complex socket reservation for stats socket
13686 - [CLEANUP] remove a useless test in manage_global_listener_queue()
13687 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
13688 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
13689 - [MINOR] stats: report the current and max global connection rates
13690 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
13691 - [BUG] peers: don't pre-allocate 65000 connections to each peer
13692 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
13693 - [BUG] peers: the peer frontend must not emit any log
13694 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
13695 - [BUG] peers: don't keep a peers section which has a NULL frontend
13696 - [BUG] peers: ensure the peers are resumed if they were paused
13697 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
13698 - [MEDIUM] session: make session_shutdown() an independant function
13699 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
13700 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
13701 - [MEDIUM] stats: offer the possibility to kill sessions by server
13702 - [MINOR] halog: do not consider byte 0x8A as end of line
13703 - [MINOR] frontend: ensure debug message length is always initialized
13704 - [OPTIM] halog: make fgets parse more bytes by blocks
13705 - [OPTIM] halog: add assembly version of the field lookup code
13706 - [MEDIUM] poll: add a measurement of idle vs work time
13707 - [CLEANUP] startup: report only the basename in the usage message
13708 - [MINOR] startup: add an option to change to a new directory
13709 - [OPTIM] task: don't scan the run queue if we know it's empty
13710 - [BUILD] stats: stdint is not present on solaris
13711 - [DOC] update the README file to reflect new naming rules for patches
13712 - [MINOR] stats: report the number of requests intercepted by the frontend
13713 - [DOC] update ROADMAP file
13714
Willy Tarreau04df1122011-04-08 00:56:41 +0200137152011/04/08 : 1.5-dev6
13716 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
13717 - [BUG] TCP source tracking was broken with IPv6 changes
13718 - [BUG] stick-tables did not work when converting IPv6 to IPv4
13719 - [CRITICAL] fix risk of crash when dealing with space in response cookies
13720
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200137212011/03/29 : 1.5-dev5
13722 - [BUG] standard: is_addr return value for IPv4 was inverted
13723 - [MINOR] update comment about IPv6 support for server
13724 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
13725 - [DOC] update IPv6 support for bind
13726 - [DOC] document IPv6 support for server
13727 - [DOC] fix a minor typo
13728 - [MEDIUM] IPv6 support for syslog
13729 - [DOC] document IPv6 support for syslog
13730 - [MEDIUM] IPv6 support for stick-tables
13731 - [DOC] document IPv6 support for stick-tables
13732 - [DOC] update ROADMAP file
13733 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
13734 - [MINOR] frontend: add a make_proxy_line function
13735 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
13736 - [MEDIUM] server: add support for the "send-proxy" option
13737 - [DOC] update the spec on the proxy protocol
13738 - [BUILD] proto_tcp: fix build issue with CTTPROXY
13739 - [DOC] update ROADMAP file
13740 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
13741 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
13742 - [BUILD] add the USE_GETADDRINFO build option
13743 - [TESTS] provide a test case for various address formats
13744 - [BUG] session: conn_retries was not always initialized
13745 - [BUG] log: retrieve the target from the session, not the SI
13746 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
13747 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
13748 - [BUG] http: fix content-length handling on 32-bit platforms
13749 - [OPTIM] buffers: uninline buffer_forward()
13750 - [BUG] stream_sock: fix handling for server side PROXY protocol
13751 - [MINOR] acl: add support for table_cnt and table_avl matches
13752 - [DOC] update ROADMAP file
13753
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100137542011/03/13 : 1.5-dev4
13755 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
13756 - [MINOR] unix sockets : inherits the backlog size from the listener
13757 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
13758 - [DOC] fix a minor typo
13759 - [DOC] fix ignore-persist documentation
13760 - [MINOR] add warnings on features not compatible with multi-process mode
13761 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
13762 - [MINOR] stats: add support for several packets in stats admin
13763 - [BUG] stats: admin commands must check the proxy state
13764 - [BUG] stats: admin web interface must check the proxy state
13765 - [MINOR] http: add pattern extraction method to stick on query string parameter
13766 - [MEDIUM] add internal support for IPv6 server addresses
13767 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
13768 - [MINOR] log: add support for passing the forwarded hostname
13769 - [MINOR] log: ability to override the syslog tag
13770 - [MINOR] checks: add PostgreSQL health check
13771 - [DOC] update ROADMAP file
13772 - [BUILD] pattern: use 'int' instead of 'int32_t'
13773 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
13774 - [BUG] debug: report the correct poller list in verbose mode
13775 - [BUG] capture: do not capture a cookie if there is no memory left
13776 - [BUG] appsession: fix possible double free in case of out of memory
13777 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
13778 - [BUG] http: correctly update the header list when removing two consecutive headers
13779 - [BUILD] add the CPU=native and ARCH=32/64 build options
13780 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
13781 - [CLEANUP] hash: move the avalanche hash code globally available
13782 - [MEDIUM] hash: add support for an 'avalanche' hash-type
13783 - [DOC] update roadmap file
13784 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
13785 - [OPTIM] http: don't send each chunk in a separate packet
13786 - [DOC] fix minor typos reported recently in the peers section
13787 - [DOC] fix another typo in the doc
13788 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
13789 - [BUG] http chunking: don't report a parsing error on connection errors
13790 - [BUG] stream_interface: truncate buffers when sending error messages
13791 - [MINOR] http: support wrapping messages in error captures
13792 - [MINOR] http: capture incorrectly chunked message bodies
13793 - [MINOR] stats: add global event ID and count
13794 - [BUG] http: analyser optimizations broke pipelining
13795 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
13796 - [BUG] http: fix incorrect error reporting during data transfers
13797 - [CRITICAL] session: correctly leave turn-around and queue states on abort
13798 - [BUG] session: release slot before processing pending connections
13799 - [MINOR] tcp: add support for dynamic MSS setting
13800 - [BUG] stick-table: correctly terminate string keys during lookups
13801 - [BUG] acl: fix handling of empty lines in pattern files
13802 - [BUG] stick-table: use the private buffer when padding strings
13803 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
13804 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
13805 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
13806 - [REVERT] undo the stick-table string key lookup fixes
13807 - [MINOR] http: improve url_param pattern extraction to ignore empty values
13808 - [BUILD] frontend: shut a warning with TCP_MAXSEG
13809 - [BUG] http: update the header list's tail when removing the last header
13810 - [DOC] fix minor typo in the proxy protocol doc
13811 - [DOC] fix typos (http-request instead of http-check)
13812 - [BUG] http: use correct ACL pointer when evaluating authentication
13813 - [BUG] cfgparse: correctly count one socket per port in ranges
13814 - [BUG] startup: set the rlimits before binding ports, not after.
13815 - [BUG] acl: srv_id must return no match when the server is NULL
13816 - [MINOR] acl: add ability to check for internal response-only parameters
13817 - [MINOR] acl: srv_id is only valid in responses
13818 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
13819 - [BUG] acl: fd leak when reading patterns from file
13820 - [DOC] fix minor typo in "usesrc"
13821 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
13822 - [BUG] http: fix computation of message body length after forwarding has started
13823 - [BUG] http: balance url_param did not work with first parameters on POST
13824 - [TESTS] update the url_param regression test to test check_post too
13825 - [DOC] update ROADMAP
13826 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
13827 - [BUG] config: don't crash on empty pattern files.
13828 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
13829 - [REORG] stream_interface: move the st0, st1 and private members to the applet
13830 - [REORG] stream_interface: split the struct members in 3 parts
13831 - [REORG] session: move client and server address to the stream interface
13832 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
13833 - [MEDIUM] stream_interface: store the target pointer and type
13834 - [CLEANUP] stream_interface: remove the applet.handler pointer
13835 - [MEDIUM] log: take the logged server name from the stream interface
13836 - [CLEANUP] session: remove data_source from struct session
13837 - [CLEANUP] stats: make all dump functions only rely on the stream interface
13838 - [REORG] session: move the data_ctx struct to the stream interface's applet
13839 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
13840 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
13841 - [MINOR] session: add a pointer to the new target into the session
13842 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
13843 - [CLEANUP] stream_interface: use inline functions to manipulate targets
13844 - [MAJOR] session: remove the ->srv pointer from struct session
13845 - [MEDIUM] stats: split frontend and backend stats
13846 - [MEDIUM] http: always evaluate http-request rules before stats http-request
13847 - [REORG] http: move the http-request rules to proto_http
13848 - [BUG] http: stats were not incremented on http-request deny
13849 - [MINOR] checks: report it if checks fail due to socket creation error
13850
Willy Tarreau442e8342010-11-11 23:29:35 +0100138512010/11/11 : 1.5-dev3
13852 - [DOC] fix http-request documentation
13853 - [MEDIUM] enable/disable servers from the stats web interface
13854 - [MEDIUM] stats: add an admin level
13855 - [DOC] stats: document the "stats admin" statement
13856 - [MINOR] startup: print the proxy socket which caused an error
13857 - [CLEANUP] Remove unneeded chars allocation
13858 - [MINOR] config: detect options not supported due to compilation options
13859 - [MINOR] Add pattern's fetchs payload and payload_lv
13860 - [MINOR] frontend: improve accept-proxy header parsing
13861 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
13862 - [MEDIUM] Enhance message errors management on binds
13863 - [MINOR] Manage unix socket source field on logs
13864 - [MINOR] Manage unix socket source field on session dump on sock stats
13865 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
13866 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
13867 - [MINOR] Manage socket type unix for some logs
13868 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
13869 - [MINOR] Support listener's sockets unix on http logs.
13870 - [MEDIUM] Add supports of bind on unix sockets.
13871 - [BUG] stick table purge failure if size less than 255
13872 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
13873 - [MEDIUM] Implement tcp inspect response rules
13874 - [DOC] tcp-response content and inspect
13875 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
13876 - [DOC] acls rep_ssl_hello and req_ssl_hello
13877 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
13878 - [DOC] new type binary in stick-table
13879 - [DOC] stick store-response and new patterns payload and payload_lv
13880 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
13881 - [MEDIUM] Create updates tree on stick table to manage sync.
13882 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
13883 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
13884 - [MEDIUM] Manage soft stop on peers proxy
13885 - [DOC] add documentation for peers section
13886 - [MINOR] checks: add support for LDAPv3 health checks
13887 - [MINOR] add better support to "mysql-check"
13888 - [BUG] Restore info about available active/backup servers
13889 - [CONTRIB] Update haproxy.pl
13890 - [CONTRIB] Update Cacti Tempates
13891 - [CONTRIB] add templates for Cacti.
13892 - [BUG] http: don't consider commas as a header delimitor within quotes
13893 - [MINOR] support a global jobs counter
13894 - [DOC] add a summary about cookie incompatibilities between specs and browsers
13895 - [DOC] fix description of cookie "insert" and "indirect" modes
13896 - [MEDIUM] http: fix space handling in the request cookie parser
13897 - [MEDIUM] http: fix space handling in the response cookie parser
13898 - [DOC] fix typo in the queue() definition (backend, not frontend)
13899 - [BUG] deinit: unbind listeners before freeing them
13900 - [BUG] stream_interface: only call si->release when both dirs are closed
13901 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
13902 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
13903 - [MINOR] halog: add '-tc' to sort by termination codes
13904 - [MINOR] halog: skip non-traffic logs for -st and -tc
13905 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
13906 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
13907 - [DOC] bind option is "defer-accept", not "defer_accept"
13908 - [DOC] missing index entry for http-check send-state
13909 - [DOC] tcp-request inspect-delay is for backends too
13910 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
13911 - [BUG] stream_sock: try to flush any extra pending request data after a POST
13912 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
13913 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
13914 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
13915 - [MEDIUM] checks: add support for HTTP contents lookup
13916 - [TESTS] add test-check-expect to test various http-check methods
13917 - [MINOR] global: add "tune.chksize" to change the default check buffer size
13918 - [MINOR] cookie: add options "maxidle" and "maxlife"
13919 - [MEDIUM] cookie: support client cookies with some contents appended to their value
13920 - [MINOR] http: make some room in the transaction flags to extend cookies
13921 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
13922 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
13923 - [MINOR] add encode/decode function for 30-bit integers from/to base64
13924 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
13925 - [MEDIUM] cookie: set the date in the cookie if needed
13926 - [DOC] document the cookie maxidle and maxlife parameters
13927 - [BUG] checks: don't log backend down for all zero-weight servers
13928 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
13929 - [BUG] config: report correct keywords for "observe"
13930 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
13931 - [MINOR] acl: add the http_req_first match
13932 - [DOC] fix typos about bind-process syntax
13933 - [BUG] cookie: correctly unset default cookie parameters
13934 - [MINOR] cookie: add support for the "preserve" option
13935 - [BUG] ebtree: fix duplicate strings insertion
13936 - [CONTRIB] halog: report per-url counts, errors and times
13937 - [CONTRIB] halog: minor speed improvement in timer parser
13938 - [MINOR] buffers: add a new request analyser flag for PROXY mode
13939 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
13940 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
13941 - [MINOR] standard: change arg type from const char* to char*
13942 - [MINOR] frontend: add a new analyser to parse a proxied connection
13943 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
13944 - [DOC] add the proxy protocol's specifications
13945 - [DOC] document the 'accept-proxy' bind option
13946 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
13947 - [DOC] add references to unix socket handling
13948 - [MINOR] move MAXPATHLEN definition to compat.h
13949 - [MEDIUM] unix sockets: cleanup the error reporting path
13950 - [BUG] session: don't stop forwarding of data upon last packet
13951 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
13952 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
13953 - [BUG] accept: don't close twice upon error
13954 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
13955 - [OPTIM] stream_sock: don't clear FDs that are already cleared
13956 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
13957
Willy Tarreau37242fa2010-08-28 19:21:00 +0200139582010/08/28 : 1.5-dev2
13959 - [MINOR] startup: release unused structs after forking
13960 - [MINOR] startup: don't wait for nothing when no old pid remains
13961 - [CLEANUP] reference product branch 1.5
13962 - [MEDIUM] signals: add support for registering functions and tasks
13963 - [MEDIUM] signals: support redistribution of signal zero when stopping
13964 - [BUG] http: don't set auto_close if more data are expected
13965
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200139662010/08/25 : 1.5-dev1
13967 - [BUG] stats: session rate limit gets garbaged in the stats
13968 - [DOC] mention 'option http-server-close' effect in Tq section
13969 - [DOC] summarize and highlight persistent connections behaviour
13970 - [DOC] add configuration samples
13971 - [BUG] http: dispatch and http_proxy modes were broken for a long time
13972 - [BUG] http: the transaction must be initialized even in TCP mode
13973 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
13974 - [BUG] consistent hash: balance on all servers, not only 2 !
13975 - [CONTRIB] halog: report per-server status codes, errors and response times
13976 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
13977 - [BUG] client: always ensure to zero rep->analysers
13978 - [BUG] session: clear BF_READ_ATTACHED before next I/O
13979 - [BUG] http: automatically close response if req is aborted
13980 - [BUG] proxy: connection rate limiting was eating lots of CPU
13981 - [BUG] http: report correct flags in case of client aborts during body
13982 - [TESTS] refine non-regression tests and add 4 new tests
13983 - [BUG] debug: wrong pointer was used to report a status line
13984 - [BUG] debug: correctly report truncated messages
13985 - [DOC] document the "dispatch" keyword
13986 - [BUG] stick_table: fix possible memory leak in case of connection error
13987 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
13988 - [MINOR] accept: count the incoming connection earlier
13989 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
13990 - [CLEANUP] client: move some ACLs away to their respective locations
13991 - [CLEANUP] rename client -> frontend
13992 - [MEDIUM] separate protocol-level accept() from the frontend's
13993 - [MINOR] proxy: add a list to hold future layer 4 rules
13994 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
13995 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
13996 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
13997 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
13998 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
13999 - [CLEANUP] buffer->cto is not used anymore
14000 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
14001 - [MEDIUM] session: initialize server-side timeouts after connect()
14002 - [MEDIUM] backend: initialize the server stream_interface upon connect()
14003 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
14004 - [MEDIUM] session: move the conn_retries attribute to the stream interface
14005 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
14006 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
14007 - [MAJOR] frontend: reorder the session initialization upon accept
14008 - [MINOR] proxy: add an accept() callback for the application layer
14009 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
14010 - [MEDIUM] stats: rely on the standard session_accept() function
14011 - [MINOR] buffer: refine the flags that may wake an analyser up.
14012 - [MINOR] stream_sock: don't dereference a non-existing frontend
14013 - [MINOR] session: differenciate between accepted connections and received connections
14014 - [MEDIUM] frontend: count the incoming connection earlier
14015 - [MINOR] frontend: count denied TCP requests separately
14016 - [CLEANUP] stick_table: add/clarify some comments
14017 - [BUILD] memory: add a few missing parenthesis to the pool management macros
14018 - [MINOR] stick_table: add support for variable-sized data
14019 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
14020 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
14021 - [MEDIUM] stick_table: add room for extra data types
14022 - [MINOR] stick_table: add support for "conn_cum" data type.
14023 - [MEDIUM] stick_table: don't overwrite data when storing an entry
14024 - [MINOR] config: initialize stick tables after all the parsing
14025 - [MINOR] stick_table: provide functions to return stksess data from a type
14026 - [MEDIUM] stick_table: move the server ID to a generic data type
14027 - [MINOR] stick_table: enable it for frontends too
14028 - [MINOR] stick_table: export the stick_table_key
14029 - [MINOR] tcp: add per-source connection rate limiting
14030 - [MEDIUM] stick_table: separate storage and update of session entries
14031 - [MEDIUM] stick-tables: add a reference counter to each entry
14032 - [MINOR] session: add a pointer to the tracked counters for the source
14033 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
14034 - [BUG] config: report the correct proxy type in tcp-request errors
14035 - [MINOR] config: provide a function to quote args in a more friendly way
14036 - [BUG] stick_table: the fix for the memory leak caused a regression
14037 - [MEDIUM] backend: support servers on 0.0.0.0
14038 - [BUG] stick-table: correctly refresh expiration timers
14039 - [MEDIUM] stream-interface: add a ->release callback
14040 - [MINOR] proxy: add a "parent" member to the structure
14041 - [MEDIUM] session: make it possible to call an I/O handler on both SI
14042 - [MINOR] tools: add a fast div64_32 function
14043 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
14044 - [MINOR] errors: provide new status codes for config parsing functions
14045 - [BUG] http: denied requests must not be counted as denied resps in listeners
14046 - [MINOR] tools: add a get_std_op() function to parse operators
14047 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
14048 - [MAJOR] stream_sock: better wakeup conditions on read()
14049 - [BUG] session: analysers must be checked when SI state changes
14050 - [MINOR] http: reset analysers to listener's, not frontend's
14051 - [MEDIUM] session: support "tcp-request content" rules in backends
14052 - [BUILD] always match official tags when doing git-tar
14053 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
14054 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
14055 - [MINOR] tcp: src_count acl does not have a permanent result
14056 - [MAJOR] session: add track-counters to track counters related to the session
14057 - [MINOR] stick-table: provide a table lookup function
14058 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
14059 - [MEDIUM] session: move counter ACL fetches from proto_tcp
14060 - [MEDIUM] session: add concurrent connections counter
14061 - [MEDIUM] session: add data in and out volume counters
14062 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
14063 - [MEDIUM] session-counters: automatically update tracked connection count
14064 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
14065 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
14066 - [MEDIUM] session: add a counter on the cumulated number of sessions
14067 - [MINOR] config: support a comma-separated list of store data types in stick-table
14068 - [MEDIUM] stick-tables: add support for arguments to data_types
14069 - [MEDIUM] stick-tables: add stored data argument type checking
14070 - [MEDIUM] session counters: add conn_rate and sess_rate counters
14071 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
14072 - [MINOR] stktable: add a stktable_update_key() function
14073 - [MINOR] session-counters: add a general purpose counter (gpc0)
14074 - [MEDIUM] session-counters: add HTTP req/err tracking
14075 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
14076 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
14077 - [CLEANUP] stick-table: declare stktable_data_types as extern
14078 - [MEDIUM] stick-table: make use of generic types for stored data
14079 - [MINOR] stats: correctly report errors on "show table" and "clear table"
14080 - [MEDIUM] stats: add the ability to dump table entries matching criteria
14081 - [DOC] configuration: document all the new tracked counters
14082 - [DOC] stats: document "show table" and "clear table"
14083 - [MAJOR] session-counters: split FE and BE track counters
14084 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
14085 - [MEDIUM] session counters: automatically remove expired entries.
14086 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
14087 - [MEDIUM] session-counters: make it possible to count connections from frontend
14088 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
14089 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
14090 - [CLEANUP] stats: use stksess_kill() to remove table entries
14091 - [DOC] update the references to session counters and to tcp-request connection
14092 - [DOC] cleanup: split a few long lines
14093 - [MEDIUM] http: forward client's close when abortonclose is set
14094 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
14095 - [BUG] stats: global stats timeout may be specified before stats socket.
14096 - [BUG] conf: add tcp-request content rules to the correct list
14097
Willy Tarreau21475e32010-05-23 08:46:08 +0200140982010/05/23 : 1.5-dev0
14099 - exact copy of 1.4.6
14100
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200141012010/05/16 : 1.4.6
14102 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
14103 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
14104 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
14105 - [DOC] add a few precisions about the use of RDP cookies
14106
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200141072010/05/13 : 1.4.5
14108 - [DOC] report minimum kernel version for tproxy in the Makefile
14109 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
14110 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
14111 - [DOC] fix ignore-persist/force-persist documentation
14112 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
14113 - [DOC] doc/configuration.txt: fix typos
14114 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
14115 - [MINOR] fix possible crash in debug mode with invalid responses
14116 - [MINOR] halog: add support for statisticts on status codes
14117 - [OPTIM] halog: use a faster zero test in fgets()
14118 - [OPTIM] halog: minor speedup by using unlikely()
14119 - [OPTIM] halog: speed up fgets2-64 by about 10%
14120 - [DOC] refresh the README file and merge the CONTRIB file into it
14121 - [MINOR] acl: support loading values from files
14122 - [MEDIUM] ebtree: upgrade to version 6.0
14123 - [MINOR] acl trees: add flags and union members to store values in trees
14124 - [MEDIUM] acl: add ability to insert patterns in trees
14125 - [MEDIUM] acl: add tree-based lookups of exact strings
14126 - [MEDIUM] acl: add tree-based lookups of networks
14127 - [MINOR] acl: ignore empty lines and comments in pattern files
14128 - [MINOR] stick-tables: add support for "stick on hdr"
14129
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200141302010/04/07 : 1.4.4
14131 - [BUG] appsession should match the whole cookie name
14132 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
14133 - [MEDIUM] backend: move the transparent proxy address selection to backend
14134 - [MINOR] add very fast IP parsing functions
14135 - [MINOR] add new tproxy flags for dynamic source address binding
14136 - [MEDIUM] add ability to connect to a server from an IP found in a header
14137 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
14138 - [MINOR] http: make it possible to pretend keep-alive when doing close
14139 - [MINOR] config: report "default-server" instead of "(null)" in error messages
14140
Willy Tarreau75934a12010-03-30 09:50:08 +0200141412010/03/30 : 1.4.3
14142 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
14143 - [MEDIUM] session: better fix for connection to servers with closed input
14144 - [DOC] indicate in the doc how to bind to port ranges
14145 - [BUG] backend: L7 hashing must not be performed on incomplete requests
14146 - [TESTS] add a simple program to test connection resets
14147 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
14148 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
14149 - [MINOR] config: allow "slowstart 0s"
14150 - [BUILD] 'make tags' did not consider files ending in '.c'
14151 - [MINOR] checks: add the ability to disable a server in the config
14152
Willy Tarreauda618cb2010-03-17 23:41:57 +0100141532010/03/17 : 1.4.2
14154 - [CLEANUP] product branch update
14155 - [DOC] Some more documentation cleanups
14156 - [BUG] clf logs segfault when capturing a non existant header
14157 - [OPTIM] config: only allocate check buffer when checks are enabled
14158 - [MEDIUM] checks: support multi-packet health check responses
14159 - [CLEANUP] session: remove duplicate test
14160 - [BUG] http: don't wait for response data to leave buffer is client has left
14161 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
14162 - [MINOR] stats: don't send empty lines in "show errors"
14163 - [MINOR] stats: make the data dump function reusable for other purposes
14164 - [MINOR] stats socket: add show sess <id> to dump details about a session
14165 - [BUG] stats: connection reset counters must be plain ascii, not HTML
14166 - [BUG] url_param hash may return a down server
14167 - [MINOR] force null-termination of hostname
14168 - [MEDIUM] connect to servers even when the input has already been closed
14169 - [BUG] don't merge anonymous ACLs !
14170 - [BUG] config: fix endless loop when parsing "on-error"
14171 - [MINOR] http: don't mark a server as failed when it returns 501/505
14172 - [OPTIM] checks: try to detect the end of response without polling again
14173 - [BUG] checks: don't report an error when recv() returns an error after data
14174 - [BUG] checks: don't abort when second poll returns an error
14175 - [MINOR] checks: make shutdown() silently fail
14176 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
14177 - [BUG] init: unconditionally catch SIGPIPE
14178 - [BUG] checks: don't wait for a close to start parsing the response
14179
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100141802010/03/04 : 1.4.1
14181 - [BUG] Clear-cookie path issue
14182 - [DOC] fix typo on stickiness rules
14183 - [BUILD] fix BSD and OSX makefiles for missing files
14184 - [BUILD] includes order breaks OpenBSD build
14185 - [BUILD] fix some build warnings on Solaris with is* macros
14186 - [BUG] logs: don't report "last data" when we have just closed after an error
14187 - [BUG] logs: don't report "proxy request" when server closes early
14188 - [BUILD] fix platform-dependant build issues related to crypt()
14189 - [STATS] count transfer aborts caused by client and by server
14190 - [STATS] frontend requests were not accounted for failed requests
14191 - [MINOR] report total number of processed connections when stopping a proxy
14192 - [DOC] be more clear about the limitation to one single monitor-net entry
14193
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100141942010/02/26 : 1.4.0
14195 - [MINOR] stats: report maint state for tracking servers too
14196 - [DOC] fix summary to add pattern extraction
14197 - [DOC] Documentation cleanups
14198 - [BUG] cfgparse memory leak and missing free calls in deinit()
14199 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
14200 - [EXAMPLES] add auth.cfg
14201 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
14202 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
14203 - [BUILD] auth: don't use unnamed unions
14204 - [BUG] config: report unresolvable host names as errors
14205 - [BUILD] fix build breakage with DEBUG_FULL
14206 - [DOC] fix a typo about timeout check and clarify the explanation.
14207 - [MEDIUM] http: don't use trash to realign large buffers
14208 - [STATS] report HTTP requests (total and rate) in frontends
14209 - [STATS] separate frontend and backend HTTP stats
14210 - [MEDIUM] http: revert to use a swap buffer for realignment
14211 - [MINOR] stats: report the request rate in frontends as cell titles
14212 - [MINOR] stats: mark areas with an underline when tooltips are available
14213 - [DOC] reorder some entries to maintain the alphabetical order
14214 - [DOC] cleanup of the keyword matrix
14215
Willy Tarreaub05613d2010-02-02 10:18:28 +0100142162010/02/02 : 1.4-rc1
14217 - [MEDIUM] add a maintenance mode to servers
14218 - [MINOR] http-auth: last fix was wrong
14219 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
14220 - [MINOR] Base64 decode
14221 - [MINOR] generic auth support with groups and encrypted passwords
14222 - [MINOR] add ACL_TEST_F_NULL_MATCH
14223 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
14224 - [MINOR] acl: add http_auth and http_auth_group
14225 - [MAJOR] use the new auth framework for http stats
14226 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
14227 - [STATS] make it possible to change a CLI connection timeout
14228 - [BUG] patterns: copy-paste typo in type conversion arguments
14229 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
14230 - [MINOR] standard: str2mask: string to netmask converter
14231 - [MINOR] pattern: add support for argument parsers for converters
14232 - [MINOR] pattern: add the "ipmask()" converting function
14233 - [MINOR] config: off-by-one in "stick-table" after list of converters
14234 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
14235 - [BUG] restore accidentely removed line in last patch !
14236 - [MINOR] checks: make the HTTP check code add the CRLF itself
14237 - [MINOR] checks: add the server's status in the checks
14238 - [BUILD] halog: make without arch-specific optimizations
14239 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
14240 - [MINOR] http: disable keep-alive when process is going down
14241 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
14242 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
14243 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
14244 - [MINOR] prepare req_*/rsp_* to receive a condition
14245 - [CLEANUP] config: specify correct const char types to warnif_* functions
14246 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
14247 - [MEDIUM] http: make the request filter loop check for optional conditions
14248 - [MEDIUM] http: add support for conditional request filter execution
14249 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
14250 - [MEDIUM] http: add support for conditional request header addition
14251 - [MEDIUM] http: add support for conditional response header rewriting
14252 - [DOC] add some missing ACLs about response header matching
14253 - [MEDIUM] http: add support for proxy authentication
14254 - [MINOR] http-auth: make the 'unless' keyword work as expected
14255 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
14256 - [MEDIUM] add support for anonymous ACLs
14257 - [MEDIUM] http: switch to tunnel mode after status 101 responses
14258 - [MEDIUM] http: stricter processing of the CONNECT method
14259 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
14260 - [MINOR] config: fix too large ssl-hello-check message.
14261 - [BUG] fix error response in case of server error
14262
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100142632010/01/25 : 1.4-dev8
14264 - [CLEANUP] Keep in sync "defaults" support between documentation and code
14265 - [MEDIUM] http: add support for Proxy-Connection header
14266 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
14267 - [MINOR] http: remove a copy-paste typo in transaction cleaning
14268 - [BUG] http: trim any excess buffer data when recycling a connection
14269
Willy Tarreau6939b552010-01-25 01:54:37 +0100142702010/01/25 : 1.4-dev7
14271 - [BUG] appsession: possible memory leak in case of out of memory condition
14272 - [MINOR] config: don't accept 'appsession' in defaults section
14273 - [MINOR] Add function to parse a size in configuration
14274 - [MEDIUM] Add stick table (persistence) management functions and types
14275 - [MEDIUM] Add pattern fetch management types and functions
14276 - [MEDIUM] Add src dst and dport pattern fetches.
14277 - [MEDIUM] Add stick table configuration and init.
14278 - [MEDIUM] Add stick and store rules analysers.
14279 - [MINOR] add option "mysql-check" to use MySQL health checks
14280 - [BUG] health checks: fix requeued message
14281 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
14282 - [BUG] checks: fix newline termination
14283 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
14284 - [BUG] appsession's sessid must be reset at end of transaction
14285 - [BUILD] appsession did not build anymore under gcc-2.95
14286 - [BUG] server redirection used an uninitialized string.
14287 - [MEDIUM] http: fix handling of message pointers
14288 - [MINOR] http: fix double slash prefix with server redirect
14289 - [MINOR] http redirect: add the ability to append a '/' to the URL
14290 - [BUG] stream_interface: fix retnclose and remove cond_close
14291 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
14292 - [MINOR] http: move appsession 'sessid' from session to http_txn
14293 - [OPTIM] reorder http_txn to optimize cache lines placement
14294 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
14295 - [MINOR] http: add a separate "http-keep-alive" timeout
14296 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
14297 - [DOC] fix various too large lines
14298 - [DOC] remove several trailing spaces
14299 - [DOC] add the doc about stickiness
14300 - [BUILD] remove a warning in standard.h on AIX
14301 - [BUG] checks: chars are unsigned on AIX, check was always true
14302 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
14303 - [BUG] check: we must not check for error before reading a response
14304 - [BUG] buffers: remove remains of wrong obsolete length check
14305 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
14306 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
14307 - [MEDIUM] http: don't switch to tunnel mode upon close
14308 - [DOC] add documentation about connection header processing
14309 - [MINOR] http: add http_remove_header2() to remove a header value.
14310 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
14311 - [MAJOR] http: rework request Connection header handling
14312 - [MAJOR] http: rework response Connection header handling
14313 - [MINOR] add the ability to force kernel socket buffer size.
14314 - [BUG] http_server_error() must not purge a previous pending response
14315 - [OPTIM] http: don't delay response if next request is incomplete
14316 - [MINOR] add the "force-persist" statement to force persistence on down servers
14317 - [MINOR] http: logs must report persistent connections to down servers
14318 - [BUG] buffer_replace2 must never change the ->w entry
14319
Willy Tarreau11f8f542010-01-08 07:49:44 +0100143202010/01/08 : 1.4-dev6
14321 - [BUILD] warning in stream_interface.h
14322 - [BUILD] warning ultoa_r returns char *
14323 - [MINOR] hana: only report stats if it is enabled
14324 - [MINOR] stats: add "a link" & "a href" for sockets
14325 - [MINOR]: stats: add show-legends to report additional informations
14326 - [MEDIUM] default-server support
14327 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
14328 - [MINOR] stats: add href to tracked server
14329 - [BUG] stats: show UP/DOWN status also in tracking servers
14330 - [DOC] Restore ability to search a keyword at the beginning of a line
14331 - [BUG] stats: cookie should be reported under backend not under proxy
14332 - [BUG] cfgparser/stats: fix error message
14333 - [BUG] http: disable auto-closing during chunk analysis
14334 - [BUG] http: fix hopefully last closing issue on data forwarding
14335 - [DEBUG] add an http_silent_debug function to debug HTTP states
14336 - [MAJOR] http: fix again the forward analysers
14337 - [BUG] http_process_res_common() must not skip the forward analyser
14338 - [BUG] http: some possible missed close remain in the forward chain
14339 - [BUG] http: redirect needed to be updated after recent changes
14340 - [BUG] http: don't set no-linger on response in case of forced close
14341 - [MEDIUM] http: restore the original behaviour of option httpclose
14342 - [TESTS] add a file to test various connection modes
14343 - [BUG] http: check options before the connection header
14344 - [MAJOR] session: fix the order by which the analysers are run
14345 - [MEDIUM] session: also consider request analysers added during response
14346 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
14347 - [BUG] http: memory leak with captures when using keep-alive
14348 - [BUG] http: fix for capture memory leak was incorrect
14349 - [MINOR] http redirect: use proper call to return last response
14350 - [MEDIUM] http: wait for some flush of the response buffer before a new request
14351 - [MEDIUM] session: limit the number of analyser loops
14352
Willy Tarreau1f445892010-01-03 23:23:36 +0100143532010/01/03 : 1.4-dev5
14354 - [MINOR] server tracking: don't care about the tracked server's mode
14355 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
14356 - [MEDIUM] appsession: add the "request-learn" option
14357 - [BUG] Configuration parser bug when escaping characters
14358 - [MINOR] CSS & HTML fun
14359 - [MINOR] Collect & provide http response codes received from servers
14360 - [BUG] Fix silly typo: hspr_other -> hrsp_other
14361 - [MINOR] Add "a name" to stats page
14362 - [MINOR] add additional "a href"s to stats page
14363 - [MINOR] Collect & provide http response codes for frontends, fix backends
14364 - [DOC] some small spell fixes and unifications
14365 - [MEDIUM] Decrease server health based on http responses / events, version 3
14366 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
14367 - [BUG] config: fix erroneous check on cookie domain names, again
14368 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
14369 - [DOC] trivial fix for man page
14370 - [MINOR] config: report all supported options for the "bind" keyword
14371 - [MINOR] tcp: add support for the defer_accept bind option
14372 - [MINOR] unix socket: report the socket path in case of bind error
14373 - [CONTRIB] halog: support searching by response time
14374 - [DOC] add a reminder about obsolete documents
14375 - [DOC] point to 1.4 doc, not 1.3
14376 - [DOC] option tcp-smart-connect was missing from index
14377 - [MINOR] http: detect connection: close earlier
14378 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
14379 - [OPTIM] move some rarely used fields out of fdtab
14380 - [MEDIUM] fd: merge fd_list into fdtab
14381 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
14382 - [MINOR] http: add new transaction flags for keep-alive and content-length
14383 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
14384 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
14385 - [MINOR] http request: simplify the test of no-data
14386 - [MEDIUM] http request: simplify POST length detection
14387 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
14388 - [MAJOR] http: create the analyser which waits for a response
14389 - [MINOR] http: pre-set the persistent flags in the transaction
14390 - [MEDIUM] http response: check body length and set transaction flags
14391 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
14392 - [MINOR] http: remove the last call to stream_int_return
14393 - [IMPORT] import ebtree v5.0 into directory ebtree/
14394 - [MEDIUM] build: switch ebtree users to use new ebtree version
14395 - [CLEANUP] ebtree: remove old unused files
14396 - [BUG] definitely fix regparm issues between haproxy core and ebtree
14397 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
14398 - [BUILD] missing #ifndef in ebmbtree.h
14399 - [BUILD] missing #ifndef in ebsttree.h
14400 - [MINOR] tools: add hex2i() function to convert hex char to int
14401 - [MINOR] http: create new MSG_BODY sub-states
14402 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
14403 - [DOC] option is "defer-accept", not "defer_accept"
14404 - [MINOR] http: keep pointer to beginning of data
14405 - [BUG] x-original-to: name was not set in default instance
14406 - [MINOR] http: detect tunnel mode and set it in the session
14407 - [BUG] config: fix error message when config file is not found
14408 - [BUG] config: fix wrong handling of too large argument count
14409 - [BUG] config: disable 'option httplog' on TCP proxies
14410 - [BUG] config: fix erroneous check on cookie domain names
14411 - [BUG] config: cookie domain was ignored in defaults sections
14412 - [MINOR] config: support passing multiple "domain" statements to cookies
14413 - [MINOR] ebtree: add functions to lookup non-null terminated strings
14414 - [MINOR] config: don't report error on all subsequent files on failure
14415 - [BUG] second fix for the printf format warning
14416 - [BUG] check_post: limit analysis to the buffer length
14417 - [MEDIUM] http: process request body in a specific analyser
14418 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
14419 - [MAJOR] http: completely process the "connection" header
14420 - [MINOR] http: only consider chunk encoding with HTTP/1.1
14421 - [MAJOR] buffers: automatically compute the maximum buffer length
14422 - [MINOR] http: move the http transaction init/cleanup code to proto_http
14423 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
14424 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
14425 - [MEDIUM] http: rework chunk-size parser
14426 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
14427 - [MINOR] buffers: add buffer_ignore() to skip some bytes
14428 - [BUG] http: offsets are relative to the buffer, not to ->som
14429 - [MEDIUM] http: automatically re-aling request buffer
14430 - [BUG] http: body parsing must consider the start of message
14431 - [MINOR] new function stream_int_cond_close()
14432 - [MAJOR] http: implement body parser
14433 - [BUG] http: typos on several unlikely() around header insertion
14434 - [BUG] stream_sock: wrong max computation on recv
14435 - [MEDIUM] http: rework the buffer alignment logic
14436 - [BUG] buffers: wrong size calculation for displaced data
14437 - [MINOR] stream_sock: prepare for closing when all pending data are sent
14438 - [MEDIUM] http: add two more states for the closing period
14439 - [MEDIUM] http: properly handle "option forceclose"
14440 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
14441 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
14442 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
14443 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
14444 - [MINOR] config: option forceclose is valid in frontends too
14445 - [BUILD] halog: insufficient include path in makefile
14446 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
14447 - [MEDIUM] http: make the parsers able to wait for a buffer flush
14448 - [MAJOR] http: add support for option http-server-close
14449 - [BUG] http: ensure we abort data transfer on write error
14450 - [BUG] last fix was overzealous and disabled server-close
14451 - [BUG] http: fix erroneous trailers size computation
14452 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
14453 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
14454 - [BUG] http: redirects were broken by chunk changes
14455 - [BUG] http: the request URI pointer is relative to the buffer
14456 - [OPTIM] http: don't immediately enable reading on request
14457 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
14458 - [BUG] http: take care of errors, timeouts and aborts during the data phase
14459 - [MINOR] http: don't wait for sending requests to the server
14460 - [MINOR] http: make the conditional redirect support keep-alive
14461 - [BUG] http: fix cookie parser to support spaces and commas in values
14462 - [MINOR] config: some options were missing for "redirect"
14463 - [MINOR] redirect: add support for unconditional rules
14464 - [MINOR] config: centralize proxy struct initialization
14465 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
14466 - [MEDIUM] config: remove the limitation of 10 config files
14467 - [CLEANUP] http: remove a remaining impossible condition
14468 - [OPTIM] http: optimize a bit the construct of the forward loops
14469
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200144702009/10/12 : 1.4-dev4
14471 - [DOC] add missing rate_lim and rate_max
14472 - [MAJOR] struct chunk rework
14473 - [MEDIUM] Health check reporting code rework + health logging, v3
14474 - [BUG] check if rise/fall has an argument and it is > 0
14475 - [MINOR] health checks logging unification
14476 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
14477 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
14478 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
14479 - [MINOR] Introduce include/types/counters.h
14480 - [CLEANUP] Move counters to dedicated structures
14481 - [MINOR] Add "clear counters" to clear statistics counters
14482 - [MEDIUM] Collect & provide separate statistics for sockets, v2
14483 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
14484 - [MINOR] acl: don't report valid acls as potential mistakes
14485 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
14486 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
14487 - [MINOR] Capture & display more data from health checks, v2
14488 - [BUG] task.c: don't assing last_timer to node-less entries
14489 - [BUG] http stats: large outputs sometimes got some parts chopped off
14490 - [MINOR] backend: export some functions to recount servers
14491 - [MINOR] backend: uninline some LB functions
14492 - [MINOR] include time.h from freq_ctr.h as is uses "now".
14493 - [CLEANUP] backend: move LB algos to individual files
14494 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
14495 - [CLEANUP] proxy: move last lb-specific bits to their respective files
14496 - [MINOR] backend: separate declarations of LB algos from their lookup method
14497 - [MINOR] backend: reorganize the LB algorithm selection
14498 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
14499 - [MINOR] report list of supported pollers with -vv
14500 - [DOC] log-health-checks is an option, not a directive
14501 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
14502 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
14503 - [MINOR] stats: strip CR and LF from the input command line
14504 - [BUG] don't refresh timeouts late after detected activity
14505 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
14506 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
14507 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
14508 - [MEDIUM] stats: don't use s->ana_state anymore
14509 - [MINOR] remove now obsolete ana_state from the session struct
14510 - [MEDIUM] stats: make HTTP stats use an I/O handler
14511 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
14512 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
14513 - [MINOR] config: reference file and line with any listener/proxy/server declaration
14514 - [MINOR] config: report places of duplicate names or IDs
14515 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
14516 - [MINOR] tools: add a new get_next_id() function
14517 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
14518 - [OPTIM] counters: move some max numbers to the counters struct
14519 - [BUG] counters: fix segfault on missing counters for a listener
14520 - [MEDIUM] backend: implement consistent hashing variation
14521 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
14522 - [MINOR] stats: use 'clear counters all' to clear all values
14523 - [MEDIUM] add access restrictions to the stats socket
14524 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
14525 - [MINOR] proxy: provide function to retrieve backend/server pointers
14526 - [MINOR] add the "initial weight" to the server struct.
14527 - [MEDIUM] stats: add the "get weight" command to report a server's weight
14528 - [MEDIUM] stats: add the "set weight" command
14529 - [BUILD] add a 'make tags' target
14530 - [MINOR] stats: add support for numeric IDs in set weight/get weight
14531 - [MINOR] stats: use a dedicated state to output static data
14532 - [OPTIM] stats: check free space before trying to print
14533
Willy Tarreau9f389e02009-09-24 00:12:50 +0200145342009/09/24 : 1.4-dev3
14535 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
14536 - [MEDIUM] Collect & show information about last health check, v3
14537 - [MINOR] export the hostname variable so that all the code can access it
14538 - [MINOR] stats: add a new node-name setting
14539 - [MEDIUM] remove old experimental tcpsplice option
14540 - [BUILD] fix build for systems without SOL_TCP
14541 - [MEDIUM] move connection establishment from backend to the SI.
14542 - [MEDIUM] make the global stats socket part of a frontend
14543 - [MEDIUM] session: account per-listener connections
14544 - [MINOR] session: switch to established state if no connect function
14545 - [MEDIUM] make the unix stats sockets use the generic session handler
14546 - [CLEANUP] unix: remove uxst_process_session()
14547 - [CLEANUP] move remaining stats sockets code to dumpstats
14548 - [MINOR] move the initial task's nice value to the listener
14549 - [MINOR] cleanup set_session_backend by using pre-computed analysers
14550 - [MINOR] set s->srv_error according to the analysers
14551 - [MEDIUM] set rep->analysers from fe and be analysers
14552 - [MEDIUM] replace BUFSIZE with buf->size in computations
14553 - [MEDIUM] make it possible to change the buffer size in the configuration
14554 - [MEDIUM] report error on buffer writes larger than buffer size
14555 - [MEDIUM] stream_interface: add and use ->update function to resync
14556 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
14557 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
14558 - [BUG] tarpit did not work anymore
14559 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
14560 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
14561 - [MINOR] buffers: provide more functions to handle buffer data
14562 - [MEDIUM] buffers: provide new buffer_feed*() function
14563 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
14564 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
14565 - [BUG] buffer_forward() would not correctly consider data already scheduled
14566 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
14567 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
14568 - [MAJOR] http: add support for HTTP 1xx informational responses
14569 - [MINOR] buffers: inline buffer_si_putchar()
14570 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
14571 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
14572 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
14573 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
14574 - [MEDIUM] add support for infinite forwarding
14575 - [BUILD] stream_interface: fix conflicting declaration
14576 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
14577 - [BUG] variable buffer size ignored at initialization time
14578 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
14579 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
14580 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
14581 - [MINOR] stream_interface: add iohandler callback
14582 - [MINOR] stream_interface: add functions to support running as internal/external tasks
14583 - [MEDIUM] session: call iohandler for embedded tasks (applets)
14584 - [MINOR] add a ->private member to the stream_interface
14585 - [MEDIUM] stats: prepare the connection for closing before dumping
14586 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
14587
Willy Tarreau68dcd252009-08-09 22:57:09 +0200145882009/08/09 : 1.4-dev2
14589 - [BUG] task: fix possible crash when some timeouts are not configured
14590 - [BUG] log: option tcplog would log to global if no logger was defined
14591
Willy Tarreaub03d2982009-07-29 22:38:32 +0200145922009/07/29 : 1.4-dev1
14593 - [MINOR] acl: add support for matching of RDP cookies
14594 - [MEDIUM] add support for RDP cookie load-balancing
14595 - [MEDIUM] add support for RDP cookie persistence
14596 - [MINOR] add a new CLF log format
14597 - [MINOR] startup: don't imply -q with -D
14598 - [BUG] ensure that we correctly re-start old process in case of error
14599 - [MEDIUM] add support for binding to source port ranges during connect
14600 - [MINOR] config: track "no option"/"option" changes
14601 - [MINOR] config: support resetting options do default values
14602 - [MEDIUM] implement option tcp-smart-accept at the frontend
14603 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
14604 - [MEDIUM] implement tcp-smart-connect option at the backend
14605 - [MEDIUM] add support for TCP MSS adjustment for listeners
14606 - [MEDIUM] support setting a server weight to zero
14607 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
14608 - [MAJOR] session: don't clear buffer status flags anymore
14609 - [MAJOR] session: only check for timeouts when they have just occurred.
14610 - [MAJOR] session: simplify buffer error handling
14611 - [MEDIUM] config: split parser and checker in two functions
14612 - [MEDIUM] config: support loading multiple configuration files
14613 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
14614 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
14615 - [MEDIUM] splice: set the capability on each stream_interface
14616 - [BUG] http: redirect rules were processed too early
14617 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
14618 - [MEDIUM] http: split request waiter from request processor
14619 - [MEDIUM] session: tell analysers what bit they were called for
14620 - [MAJOR] http: complete splitting of the remaining stages
14621 - [MINOR] report in the proxies the requirements for ACLs
14622 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
14623 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
14624 - [MINOR] prepare callers of session_set_backend to handle errors
14625 - [BUG] default ACLs did not properly set the ->requires flag
14626 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
14627 - [MINOR] ensure we can jump from swiching rules to http without data
14628 - [MINOR] http: take http request timeout from the backend
14629 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
14630 - [BUILD] report commit date and not author's date as build date
14631 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
14632 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
14633 - [BUG] stream_sock: don't stop reading when the poller reports an error
14634 - [BUG] config: tcp-request content only accepts "if" or "unless"
14635 - [BUG] task: fix possible timer drift after update
14636 - [MINOR] apply tcp-smart-connect option for the checks too
14637 - [MINOR] stats: better displaying in MSIE
14638 - [MINOR] config: improve error reporting in global section
14639 - [MINOR] config: improve error reporting in listen sections
14640 - [MINOR] config: the "capture" keyword is not allowed in backends
14641 - [MINOR] config: improve error reporting when checking configuration
14642 - [BUILD] fix a minor build warning on AIX
14643 - [BUILD] use "git cmd" instead of "git-cmd"
14644 - [CLEANUP] report 2009 not 2008 in the copyright banner.
14645 - [MINOR] print usage on the stats sockets upon invalid commands
14646 - [MINOR] acl: detect and report potential mistakes in ACLs
14647 - [BUILD] fix incorrect printf arg count with tcp_splice
14648 - [BUG] fix random pauses on last segment of a series
14649 - [BUILD] add support for build under Cygwin
14650
Willy Tarreau79158882009-06-09 11:59:08 +0200146512009/06/09 : 1.4-dev0
14652 - exact copy of 1.3.18
14653
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200146542009/05/10 : 1.3.18
14655 - [MEDIUM] add support for "balance hdr(name)"
14656 - [CLEANUP] give a little bit more information in error message
14657 - [MINOR] add X-Original-To: header
14658 - [BUG] x-original-to: fix missing initialization to default value
14659 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
14660 - [MINOR] improve reporting of misplaced acl/reqxxx rules
14661 - [MEDIUM] http: add options to ignore invalid header names
14662 - [MEDIUM] http: capture invalid requests/responses even if accepted
14663 - [BUILD] add format(printf) to printf-like functions
14664 - [MINOR] fix several printf formats and missing arguments
14665 - [BUG] stats: total and lbtot are unsigned
14666 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
14667 - [CLEANUP] remove unused make option from haproxy.spec
14668 - [BUILD] make it possible to pass alternative arch at build time
14669 - [MINOR] switch all stat counters to 64-bit
14670 - [MEDIUM] ensure we don't recursively call pool_gc2()
14671 - [CRITICAL] uninitialized response field can sometimes cause crashes
14672 - [BUG] fix wrong pointer arithmetics in HTTP message captures
14673 - [MINOR] rhel init script : support the reload operation
14674 - [MINOR] add basic signal handling functions
14675 - [BUILD] add signal.o to all makefiles
14676 - [MEDIUM] call signal_process_queue from run_poll_loop
14677 - [MEDIUM] pollers: don't wait if a signal is pending
14678 - [MEDIUM] convert all signals to asynchronous signals
14679 - [BUG] O(1) pollers should check their FD before closing it
14680 - [MINOR] don't close stdio fds twice
14681 - [MINOR] add options dontlog-normal and log-separate-errors
14682 - [DOC] minor fixes and rearrangements
14683 - [BUG] fix parser crash on unconditional tcp content rules
14684 - [DOC] rearrange the configuration manual and add a summary
14685 - [MINOR] standard: provide a new 'my_strndup' function
14686 - [MINOR] implement per-logger log level limitation
14687 - [MINOR] compute the max of sessions/s on fe/be/srv
14688 - [MINOR] stats: report max sessions/s and limit in CSV export
14689 - [MINOR] stats: report max sessions/s and limit in HTML stats
14690 - [MINOR] stats/html: use the arial font before helvetica
14691
Willy Tarreauf459b422009-03-29 15:26:57 +0200146922009/03/29 : 1.3.17
14693 - Update specfile to build for v2.6 kernel.
14694 - [BUG] reset the stream_interface connect timeout upon connect or error
14695 - [BUG] reject unix accepts when connection limit is reached
14696 - [MINOR] show sess: report number of calls to each task
14697 - [BUG] don't call epoll_ctl() on closed sockets
14698 - [BUG] stream_sock: disable I/O on fds reporting an error
14699 - [MINOR] sepoll: don't count two events on the same FD.
14700 - [MINOR] show sess: report a lot more information about sessions
14701 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
14702 - [BUG] don't set an expiration date directly from now_ms
14703 - [MINOR] implement ulltoh() to write HTML-formatted numbers
14704 - [MINOR] stats/html: group digits by 3 to clarify numbers
14705 - [BUILD] remove haproxy-small.spec
14706 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
14707
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100147082009/03/22 : 1.3.16
14709 - [BUILD] Fixed Makefile for linking pcre
14710 - [CONTRIB] selinux policy for haproxy
14711 - [MINOR] show errors: encode backslash as well as non-ascii characters
14712 - [MINOR] cfgparse: some cleanups in the consistency checks
14713 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
14714 - [MINOR] tcp-inspect: permit the use of no-delay inspection
14715 - [MEDIUM] reverse internal proxy declaration order to match configuration
14716 - [CLEANUP] config: catch and report some possibly wrong rule ordering
14717 - [BUG] connect timeout is in the stream interface, not the buffer
14718 - [BUG] session: errors were not reported in termination flags in TCP mode
14719 - [MINOR] tcp_request: let the caller take care of errors and timeouts
14720 - [CLEANUP] http: remove some commented out obsolete code in process_response
14721 - [MINOR] update ebtree to version 4.1
14722 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
14723 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
14724 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
14725 - [MINOR] sched: permit a task to stay up between calls
14726 - [MINOR] task: keep a task count and clean up task creators
14727 - [MINOR] stats: report number of tasks (active and running)
14728 - [BUG] server check intervals must not be null
14729 - [OPTIM] stream_sock: don't retry to read after a large read
14730 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
14731 - [MEDIUM] session: don't resync FSMs on non-interesting changes
14732 - [BUG] check for global.maxconn before doing accept()
14733 - [OPTIM] sepoll: do not re-check whole list upon accepts
14734
Willy Tarreau8185ced2009-03-09 22:45:53 +0100147352009/03/09 : 1.3.16-rc2
14736 - [BUG] stream_sock: write timeout must be updated when forwarding !
14737
Willy Tarreauff63b432009-03-09 01:03:42 +0100147382009/03/09 : 1.3.16-rc1
14739 - appsessions: cleanup DEBUG_HASH and initialize request_counter
14740 - [MINOR] acl: add new keyword "connslots"
14741 - [MINOR] cfgparse: fix off-by 2 in error message size
14742 - [BUILD] fix build with gcc 4.3
14743 - [BUILD] fix MANDIR default location to match documentation
14744 - [TESTS] add a debug patch to help trigger the stats bug
14745 - [BUG] Flush buffers also where there are exactly 0 bytes left
14746 - [MINOR] Allow to specify a domain for a cookie
14747 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
14748 - [MEDIUM] Fix memory freeing at exit
14749 - [MEDIUM] Fix memory freeing at exit, part 2
14750 - [BUG] Fix listen & more of 2 couples <ip>:<port>
14751 - [DOC] remove buggy comment for use_backend
14752 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
14753 - [MEDIUM] add support for URI hash depth and length limits
14754 - [MINOR] permit renaming of x-forwarded-for header
14755 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
14756 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
14757 - [MEDIUM] upgrade to ebtree v4.0
14758 - [DOC] update the README file with new build options
14759 - [MEDIUM] reduce risk of event starvation in ev_sepoll
14760 - [MEDIUM] detect streaming buffers and tag them as such
14761 - [MEDIUM] add support for conditional HTTP redirection
14762 - [BUILD] make install should depend on haproxy not "all"
14763 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
14764 - [BUG] event pollers must not wait if a task exists in the run queue
14765 - [BUG] queue management: wake oldest request in queues
14766 - [BUG] log: reported queue position was offed-by-one
14767 - [BUG] fix the dequeuing logic to ensure that all requests get served
14768 - [DOC] documentation for the "retries" parameter was missing.
14769 - [MEDIUM] implement a monotonic internal clock
14770 - [MEDIUM] further improve monotonic clock by check forward jumps
14771 - [OPTIM] add branch prediction hints in list manipulations
14772 - [MAJOR] replace ultree with ebtree in wait-queues
14773 - [BUG] we could segfault during exit while freeing uri_auths
14774 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
14775 - [MINOR] introduce now_ms, the current date in milliseconds
14776 - [BUG] disable buffer read timeout when reading stats
14777 - [MEDIUM] rework the wait queue mechanism
14778 - [BUILD] change declaration of base64tab to fix build with Intel C++
14779 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
14780 - [MAJOR] use an ebtree instead of a list for the run queue
14781 - [MEDIUM] introduce task->nice and boot access to statistics
14782 - [OPTIM] task_queue: assume most consecutive timers are equal
14783 - [BUILD] silent a warning in unlikely() with gcc 4.x
14784 - [MAJOR] convert all expiration timers from timeval to ticks
14785 - [BUG] use_backend would not correctly consider "unless"
14786 - [TESTS] added test-acl.cfg to test some ACL combinations
14787 - [MEDIUM] add support for configuration keyword registration
14788 - [MEDIUM] modularize the global "stats" keyword configuration parser
14789 - [MINOR] cfgparse: add support for warnings in external functions
14790 - [MEDIUM] modularize the "timeout" keyword configuration parser
14791 - [MAJOR] implement tcp request content inspection
14792 - [MINOR] acl: add a new parsing function: parse_dotted_ver
14793 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
14794 - [CLEANUP] remove unused include/types/client.h
14795 - [CLEANUP] remove many #include <types/xxx> from C files
14796 - [CLEANUP] remove dependency on obsolete INTBITS macro
14797 - [DOC] document the new "tcp-request" keyword and associated ACLs
14798 - [MINOR] acl: add REQ_CONTENT to the list of default acls
14799 - [MEDIUM] acl: permit fetch() functions to set the result themselves
14800 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
14801 - [MINOR] acl: add the "wait_end" acl verb
14802 - [MEDIUM] acl: enforce ACL type checking
14803 - [MEDIUM] acl: set types on all currently known ACL verbs
14804 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
14805 - [CLEANUP] remove 65 useless NULL checks before free
14806 - [MEDIUM] memory: update pool_free2() to support NULL pointers
14807 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
14808 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
14809 - [MEDIUM] process_srv: don't rely at all on client state
14810 - [MEDIUM] process_cli: don't rely at all on server state
14811 - [BUG] fix segfault with url_param + check_post
14812 - [BUG] server timeout was not considered in some circumstances
14813 - [BUG] client timeout incorrectly rearmed while waiting for server
14814 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
14815 - [MAJOR] get rid of SV_STANALYZE (step 2)
14816 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
14817 - [MAJOR] completely separate HTTP and TCP states on the request path
14818 - [BUG] fix recently introduced loop when client closes early
14819 - [MAJOR] get rid of the SV_STHEADERS state
14820 - [MAJOR] better separation of response processing and server state
14821 - [MAJOR] clearly separate HTTP response processing from TCP server state
14822 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
14823 - [MINOR] term_trace: add better instrumentations to trace the code
14824 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
14825 - [BUG] process_response must not enable the read FD
14826 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
14827 - [BUG] process_response: do not touch srv_state
14828 - [BUG] maintain_proxies must not disable backends
14829 - [CLEANUP] get rid of BF_SHUT*_PENDING
14830 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
14831 - [MAJOR] process_session: rely only on buffer flags
14832 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
14833 - [MEDIUM] centralize buffer timeout checks at the top of process_session
14834 - [MINOR] ensure the termination flags are set by process_xxx
14835 - [MEDIUM] session: move the analysis bit field to the buffer
14836 - [OPTIM] process_cli/process_srv: reduce the number of tests
14837 - [BUG] regparm is broken on gcc < 3
14838 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
14839 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
14840 - [BUG] process_cli/process_srv: don't call shutdown when already done
14841 - [BUG] process_request: HTTP body analysis must return zero if missing data
14842 - [TESTS] test-fsm: 22 regression tests for state machines
14843 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
14844 - [BUG] fix harmless but wrong fd insertion sequence
14845 - [MEDIUM] make it possible for analysers to follow the whole session
14846 - [MAJOR] rework of the server FSM
14847 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
14848 - [MEDIUM] massive cleanup of process_srv()
14849 - [MEDIUM] second level of code cleanup for process_srv_data
14850 - [MEDIUM] third cleanup and optimization of process_srv_data()
14851 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
14852 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
14853 - [MAJOR] make the client side use stream_sock_process_data()
14854 - [MEDIUM] split stream_sock_process_data
14855 - [OPTIM] stream_sock_read must check for null-reads more often
14856 - [MINOR] only call flow analysers when their read side is connected.
14857 - [MEDIUM] reintroduce BF_HIJACK with produce_content
14858 - [MINOR] re-arrange buffer flags and rename some of them
14859 - [MINOR] do not check for BF_SHUTR when computing write timeout
14860 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
14861 - [OPTIM] reduce the number of calls to task_wakeup()
14862 - [OPTIM] force inlining of large functions with gcc >= 3
14863 - [MEDIUM] indicate a reason for a task wakeup
14864 - [MINOR] change type of fdtab[]->owner to void*
14865 - [MAJOR] make stream sockets aware of the stream interface
14866 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
14867 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
14868 - [MEDIUM] process_session: make use of the new buffer flags
14869 - [CLEANUP] process_session: move debug outputs out of the critical loop
14870 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
14871 - [OPTIM] add compiler hints in tick_is_expired()
14872 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
14873 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
14874 - [MINOR] add an expiration flag to the stream_sock_interface
14875 - [MAJOR] migrate the connection logic to stream interface
14876 - [MAJOR] add a connection error state to the stream_interface
14877 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
14878 - [MEDIUM] continue layering cleanups.
14879 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
14880 - [MEDIUM] remove stream_sock_update_data()
14881 - [MINOR] maintain a global session list in order to ease debugging
14882 - [BUG] shutw must imply close during a connect
14883 - [MEDIUM] process shutw during connection attempt
14884 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
14885 - [MAJOR] complete layer4/7 separation
14886 - [CLEANUP] move the session-related functions to session.c
14887 - [MINOR] call session->do_log() for logging
14888 - [MINOR] replace the ambiguous client_return function by stream_int_return
14889 - [MINOR] replace client_retnclose() with stream_int_retnclose()
14890 - [MINOR] replace srv_close_with_err() with http_server_error()
14891 - [MEDIUM] make the http server error function a pointer in the session
14892 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
14893 - [MINOR] stream_sock_data_finish() should not expose fd
14894 - [MEDIUM] extract TCP request processing from HTTP
14895 - [MEDIUM] extract the HTTP tarpit code from process_request().
14896 - [MEDIUM] move the HTTP request body analyser out of process_request().
14897 - [MEDIUM] rename process_request to http_process_request
14898 - [BUG] fix forgotten server session counter
14899 - [MINOR] declare process_session in session.h, not proto_http.h
14900 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
14901 - [MINOR] add an analyser code for UNIX stats request
14902 - [MINOR] pre-set analyser flags on the listener at registration time
14903 - [BUG] do not forward close from cons to prod with analysers
14904 - [MEDIUM] ensure that sock->shutw() also closes read for init states
14905 - [MINOR] add an analyser state in struct session
14906 - [MAJOR] make unix sockets work again with stats
14907 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
14908 - [MINOR] move the listener reference from fd to session
14909 - [MEDIUM] reference the current hijack function in the buffer itself
14910 - [MINOR] slightly rebalance stats_dump_{raw,http}
14911 - [MINOR] add a new back-reference type : struct bref
14912 - [MINOR] add back-references to sessions for later use by a dumper.
14913 - [MEDIUM] add support for "show sess" in unix stats socket
14914 - [BUG] do not release the connection slot during a retry
14915 - [BUG] dynamic connection throttling could return a max of zero conns
14916 - [BUG] do not try to pause backends during reload
14917 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
14918 - [BUG] acl-related keywords are not allowed in defaults sections
14919 - [BUG] cookie capture is declared in the frontend but checked on the backend
14920 - [BUG] critical errors should be reported even in daemon mode
14921 - [MINOR] redirect: add support for the "drop-query" option
14922 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
14923 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
14924 - [BUG] do not dequeue requests on a dead server
14925 - [BUG] do not dequeue the backend's pending connections on a dead server
14926 - [MINOR] stats: indicate if a task is running in "show sess"
14927 - [BUG] check timeout must not be changed if timeout.check is not set
14928 - [BUG] "option transparent" is for backend, not frontend !
14929 - [MINOR] transfer errors were not reported anymore in data phase
14930 - [MEDIUM] add a send limit to a buffer
14931 - [MEDIUM] don't report buffer timeout when there is I/O activity
14932 - [MEDIUM] indicate when we don't care about read timeout
14933 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
14934 - [MEDIUM] enable inter-stream_interface wakeup calls
14935 - [MAJOR] implement autonomous inter-socket forwarding
14936 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
14937 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
14938 - [MEDIUM] i/o: rework ->to_forward and ->send_max
14939 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
14940 - [OPTIM] buffer: replace rlim by max_len
14941 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
14942 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
14943 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
14944 - [MEDIUM] split stream_sock_write() into callback and core functions
14945 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
14946 - [MINOR] stream_sock: fix a few wrong empty calculations
14947 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
14948 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
14949 - [MEDIUM] splice: add configuration options and set global.maxpipes
14950 - [MINOR] introduce structures required to support Linux kernel splicing
14951 - [MEDIUM] add definitions for Linux kernel splicing
14952 - [MAJOR] complete support for linux 2.6 kernel splicing
14953 - [BUG] reserve some pipes for backends with splice enabled
14954 - [MEDIUM] splice: add hints to support older buggy kernels
14955 - [MEDIUM] introduce pipe pools
14956 - [MEDIUM] splice: make use of pipe pools
14957 - [STATS] report pipe usage in the statistics
14958 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
14959 - [BUILD] fix snapshot date extraction with negative timezones
14960 - [MEDIUM] move global tuning options to the global structure
14961 - [MEDIUM] splice: add the global "nosplice" option
14962 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
14963 - [BUG] we must not exit if protocol binding only returns a warning
14964 - [MINOR] add support for bind interface name
14965 - [BUG] inform the user when root is expected but not set
14966 - [MEDIUM] add support for source interface binding
14967 - [MEDIUM] add support for source interface binding at the server level
14968 - [MEDIUM] implement bind-process to limit service presence by process
14969 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
14970 - [DOC] filled the logging section of the configuration manual
14971 - [DOC] document HTTP status codes
14972 - [DOC] document a few missing info about errorfile
14973 - [BUG] fix random memory corruption using "show sess"
14974 - [BUG] fix unix socket processing of interrupted output
14975 - [DOC] add diagrams of queuing and future ACL design
14976 - [BUILD] proto_http did not build on gcc-2.95
14977 - [BUG] the "source" keyword must first clear optional settings
14978 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
14979 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
14980 - [MEDIUM] store a complete dump of request and response errors in proxies
14981 - [MEDIUM] implement error dump on unix socket with "show errors"
14982 - [DOC] document "show errors"
14983 - [MINOR] errors dump must use user-visible date, not internal date.
14984 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
14985 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
14986 - [MEDIUM] measure and report session rate on frontend, backends and servers
14987 - [BUG] the "connslots" keyword was matched as "connlots"
14988 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
14989 - [MEDIUM] implement "rate-limit sessions" for the frontend
14990 - [BUG] interface binding: length must include the trailing zero
14991 - [BUG] typo in timeout error reporting : report *res and not *err
14992 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
14993 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
14994 - [BUG] switch server-side stream interface to close in case of abort
14995 - [CLEANUP] remove last references to term_trace
14996 - [OPTIM] freq_ctr: do not rotate the counters when reading
14997 - [BUG] disable any analysers for monitoring requests
14998 - [BUG] rate-limit in defaults section was ignored
14999 - [BUG] task: fix handling of duplicate keys
15000 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
15001 - [OPTIM] displace tasks in the wait queue only if absolutely needed
15002 - [MEDIUM] minor update to the task api: let the scheduler queue itself
15003 - [BUG] event_accept() must always wake the task up, even in health mode
15004 - [CLEANUP] task: distinguish between clock ticks and timers
15005 - [OPTIM] task: reduce the number of calls to task_queue()
15006 - [OPTIM] do not re-check req buffer when only response has changed
15007 - [CLEANUP] don't enable kernel splicing when socket is closed
15008 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
15009 - [MINOR] buffers: implement buffer_flush()
15010 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
15011 - [BUILD] build fixes for Solaris
15012 - [BUILD] proto_http did not build on gcc-2.95 (again)
15013 - [CONTRIB] halog: fast log parser for haproxy
15014 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
15015
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200150162008/04/19 : 1.3.15
15017 - [BUILD] Added support for 'make install'
15018 - [BUILD] Added 'install-man' make target for installing the man page
15019 - [BUILD] Added 'install-bin' make target
15020 - [BUILD] Added 'install-doc' make target
15021 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
15022 - [BUILD] Changed 'install' target to install the binaries first
15023 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
15024 - [MEDIUM]: Inversion for options
15025 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
15026 - [BUG]: Restore clearing t->logs.bytes
15027 - [MEDIUM]: rework checks handling
15028 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
15029 - [MEDIUM] Implement "track [<backend>/]<server>"
15030 - [MINOR] Implement persistent id for proxies and servers
15031 - [BUG] Don't increment server connections too much + fix retries
15032 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
15033 - [MAJOR] proto_uxst rework -> SNMP support
15034 - [BUG] appsession lookup in URL does not work
15035 - [BUG] transparent proxy address was ignored in backend
15036 - [BUG] hot reconfiguration failed because of a wrong error check
15037 - [DOC] big update to the configuration manual
15038 - [DOC] large update to the configuration manual
15039 - [DOC] document more options
15040 - [BUILD] major rework of the GNU Makefile
15041 - [STATS] add support for "show info" on the unix socket
15042 - [DOC] document options forwardfor to logasap
15043 - [MINOR] add support for the "backlog" parameter
15044 - [OPTIM] introduce global parameter "tune.maxaccept"
15045 - [MEDIUM] introduce "timeout http-request" in frontends
15046 - [MINOR] tarpit timeout is also allowed in backends
15047 - [BUG] increment server connections for each connect()
15048 - [MEDIUM] add a turn-around state of one second after a connection failure
15049 - [BUG] fix typo in redispatched connection
15050 - [DOC] document options nolinger to ssl-hello-chk
15051 - [DOC] added documentation for "option tcplog" to "use_backend"
15052 - [BUG] connect_server: server might not exist when sending error report
15053 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
15054 - [MEDIUM] add non-local bind to connect() on Linux
15055 - [MINOR] add transparent proxy support for balabit's Tproxy v4
15056 - [BUG] use backend's source and not server's source with tproxy
15057 - [BUG] fix overlapping server flags
15058 - [MEDIUM] fix server health checks source address selection
15059 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
15060 - [DOC] added "server", "source" and "stats" keywords
15061 - [DOC] all server parameters have been documented
15062 - [DOC] document all req* and rsp* keywords.
15063 - [DOC] added documentation about HTTP header manipulations
15064 - [BUG] log response byte count, not request
15065 - [BUILD] code did not build in full debug mode
15066 - [BUG] fix truncated responses with sepoll
15067 - [MINOR] use s->frt_addr as the server's address in transparent proxy
15068 - [MINOR] fix configuration hint about timeouts
15069 - [DOC] minor cleanup of the doc and notice to contributors
15070 - [MINOR] report correct section type for unknown keywords.
15071 - [BUILD] update MacOS Makefile to build on newer versions
15072 - [DOC] fix erroneous "useallbackups" option in the doc
15073 - [DOC] applied small fixes from early readers
15074 - [MINOR] add configuration support for "redir" server keyword
15075 - [MEDIUM] completely implement the server redirection method
15076 - [TESTS] add a test case for the server redirection mechanism
15077 - [DOC] add a configuration entry for "server ... redir <prefix>"
15078 - [BUILD] backend.c and checks.c did not build without tproxy !
15079 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
15080 - [BUILD] backend.c and checks.c did not build without tproxy !
15081 - [OPTIM] used unsigned ints for HTTP state and message offsets
15082 - [OPTIM] GCC4's builtin_expect() is suboptimal
15083 - [BUG] failed conns were sometimes incremented in the frontend!
15084 - [BUG] timeout.check was not pre-set to eternity
15085 - [TESTS] add test-pollers.cfg to easily report pollers in use
15086 - [BUG] do not apply timeout.connect in checks if unset
15087 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
15088 - [MINOR] silent gcc for a wrong warning
15089 - [CLEANUP] update .gitignore to ignore more temporary files
15090 - [CLEANUP] report dlmalloc's source path only if explictly specified
15091 - [BUG] str2sun could leak a small buffer in case of error during parsing
15092 - [BUG] option allbackups was not working anymore in roundrobin mode
15093 - [MAJOR] implementation of the "leastconn" load balancing algorithm
15094 - [BUILD] ensure that users don't build without setting the target anymore.
15095 - [DOC] document the leastconn LB algo
15096 - [MEDIUM] fix stats socket limitation to 16 kB
15097 - [DOC] fix unescaped space in httpchk example.
15098 - [BUG] fix double-decrement of server connections
15099 - [TESTS] add a test case for port mapping
15100 - [TESTS] add a benchmark for integer hashing
15101 - [TESTS] add new methods in ip-hash test file
15102 - [MAJOR] implement parameter hashing for POST requests
15103
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100151042007/12/06 : 1.3.14
15105 - New option http_proxy (Alexandre Cassen)
15106 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
15107 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
15108 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
15109 - use backends only with use_backend directive (Krzysztof Oledzki)
15110 - Handle long lines properly (Krzysztof Oledzki)
15111 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
15112 - continous statistics (Krzysztof Oledzki)
15113 - add support for logging via a UNIX socket (Robert Tsai)
15114 - fix error checking in strl2ic/strl2uic()
15115 - fix calls to localtime()
15116 - provide easier-to-use ultoa_* functions
15117 - provide easy-to-use limit_r and LIM2A* macros
15118 - add a simple test for the status page
15119 - move error codes to common/errors.h
15120 - silent warning about LIST_* being redefined on OpenBSD
15121 - add socket address length to the protocols
15122 - group PR_O_BALANCE_* bits into a checkable value
15123 - externalize the "balance" option parser to backend.c
15124 - introduce the "url_param" balance method
15125 - make default_backend work in TCP mode too
15126 - disable warning about localtime_r on Solaris
15127 - adjust error messages about conflicting proxies
15128 - avoid calling some layer7 functions if not needed
15129 - simplify error path in event_accept()
15130 - add an options field to the listeners
15131 - added a new state to listeners
15132 - unbind_listener() must use fd_delete() and not close()
15133 - add a generic unbind_listener() primitive
15134 - add a generic delete_listener() primitive
15135 - add a generic unbind_all_listeners() primitive
15136 - create proto_tcp and move initialization of proxy listeners
15137 - stats: report numerical process ID, proxy ID and server ID
15138 - relative_pid was not initialized
15139 - missing header names in raw stats output
15140 - fix missing parenthesis in check_response_for_cacheability
15141 - small optimization on session_process_counters()
15142 - merge ebtree version 3.0
15143 - make ebtree headers multiple-include compatible
15144 - ebtree: include config.h for REGPRM*
15145 - differentiate between generic LB params and map-specific ones
15146 - add a weight divisor to the struct proxy
15147 - implement the Fast Weighted Round Robin (FWRR) algo
15148 - include filltab25.c to experiment on FWRR for dynamic weights
15149 - merge test-fwrr.cfg to validate dynamic weights
15150 - move the load balancing algorithm to be->lbprm.algo
15151 - change server check result to a bit field
15152 - implement "http-check disable-on-404" for graceful shutdown
15153 - secure the calling conditions of ->set_server_status_{up,down}
15154 - report disabled servers as "NOLB" when they are still UP
15155 - document the "http-check disable-on-404" option
15156 - http-check disable-on-404 is not limited to HTTP mode
15157 - add a test file for disable-on-404
15158 - use distinct bits per load-balancing algorithm type
15159 - implement the slowstart parameter for servers
15160 - document the server's slowstart parameter
15161 - stats: report the server warm up status in a "throttle" column
15162 - fix 2 minor issues on AIX
15163 - add the "nbsrv" ACL verb
15164 - add the "fail" condition to monitor requests
15165 - remove a warning from gcc due to htons() in standard.c
15166 - fwrr: ensure that we never overflow in placements
15167 - store the build options to report with -vv
15168 - fix the status return of the init script (R.I. Pienaar)
15169 - stats: real time monitoring script for unix socket (Prizee)
15170 - document "nbsrv" and "monitor fail"
15171 - restrict the set of allowed characters for identifiers
15172 - implement a time parsing function
15173 - add support for time units in the configuration
15174 - add a bit of documentation about timers
15175 - introduce separation between contimeout, and tarpit + queue
15176 - introduce the "timeout" keyword
15177 - grouped all timeouts in one structure
15178 - slowstart is in ms, not seconds
15179 - slowstart: ensure we don't start with a null weight
15180 - report the number of times each server was selected
15181 - fix build on AIX due to recent log changes
15182 - fix build on Solaris due to recent log changes
15183
Willy Tarreaue855f422007-10-18 22:38:22 +0200151842007/10/18 : 1.3.13
15185 - replace the code under O'Reilly license (Arnaud Cornet)
15186 - add a small man page (Arnaud Cornet)
15187 - stats: report haproxy's version by default (Krzysztof Oledzki)
15188 - stats: count server retries and redispatches (Krzysztof Oledzki)
15189 - core: added easy support for Doug Lea's malloc (dlmalloc)
15190 - core: fade out memory usage when stopping proxies
15191 - core: moved the sockaddr pointer to the fdtab structure
15192 - core: add generic protocol support
15193 - core: implement client-side support for PF_UNIX sockets
15194 - stats: implement the CSV output
15195 - stats: add a link to the CSV export HTML page
15196 - stats: implement the statistics output on a unix socket
15197 - config: introduce the "stats" keyword in global section
15198 - build: centralize version and date into one file for each
15199 - tests: added a new hash algorithm
15200
152012007/10/18 : 1.3.12.3
15202 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
15203 - fix double-free during clean exit (Krzysztof Oledzki)
15204 - prevent the system from sending an RST when closing health-checks
15205 (Krzysztof Oledzki)
15206 - do not add a cache-control header when on non-cacheable responses
15207 (Krzysztof Oledzki)
15208 - spread health checks even more (Krzysztof Oledzki)
15209 - stats: scope "." must match the backend and not the frontend
15210 - fixed call to chroot() during startup
15211 - fix wrong timeout computation in event_accept()
15212 - remove condition for exit() under fork() failure
15213
152142007/09/20 : 1.3.12.2
15215 - fix configuration sanity checks for TCP listeners
15216 - set the log socket receive window to zero bytes
15217 - pre-initialize timeouts to infinity, not zero
15218 - fix the SIGHUP message not to alert on server-less proxies
15219 - timeouts and retries could be ignored when switching backend
15220 - added a file to check that "retries" works.
15221 - O'Reilly has clarified its license
15222
152232007/09/05 : 1.3.12.1
15224 - spec I/O: fix allocations of spec entries for an FD
15225 - ensure we never overflow in chunk_printf()
15226 - improve behaviour with large number of servers per proxy
15227 - add support for "stats refresh <interval>"
15228 - stats page: added links for 'refresh' and 'hide down'
15229 - fix backend's weight in the stats page.
15230 - the "stats" keyword is not allowed in a pure frontend.
15231 - provide a test configuration file for stats and checks
15232
Willy Tarreaub21152b2007-06-17 23:41:40 +0200152332007/06/17 : 1.3.12
15234 - fix segfault at exit when using captures
15235 - bug: negation in ACL conds was not cleared between terms
15236 - errorfile: use a local file to feed error messages
15237 - acl: support '-i' to ignore case when matching
15238 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
15239 - acl: support maching on 'path' component
15240 - acl: implement matching on header values
15241 - acl: distinguish between request and response headers
15242 - acl: permit to return any header when no name specified
15243 - acl: provide default ACLs
15244 - added the 'use_backend' keyword for full content-switching
15245 - acl: specify the direction during fetches
15246 - acl: provide the argument length for fetch functions
15247 - acl: provide a reference to the expr to fetch()
15248 - improve memory freeing upon exit
15249 - str2net() must not change the const char *
15250 - shut warnings 'is*' macros from ctype.h on solaris
15251
Willy Tarreaua3503e02007-06-03 17:27:07 +0200152522007/06/03 : 1.3.11.4
15253 - do not re-arm read timeout in SHUTR state !
15254 - optimize I/O by detecting system starvation
15255 - the epoll FD must not be shared between processes
15256 - limit the number of events returned by *poll*
15257
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200152582007/05/14 : 1.3.11.3
15259 - pre-initialize timeouts with tv_eternity during parsing
15260
Willy Tarreaufc273c22007-05-14 03:42:47 +0200152612007/05/14 : 1.3.11.2
15262 - fixed broken health-checks since switch to timeval
15263
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200152642007/05/14 : 1.3.11.1
15265 - fixed ev_kqueue which was forgotten during the switch to timeval
15266 - allowed null timeouts for past events in select
15267
Willy Tarreau544eb402007-05-14 02:42:33 +0200152682007/05/14 : 1.3.11
15269 - fixed ev_sepoll again by rewriting the state machine
15270 - switched all timeouts to timevals instead of milliseconds
15271 - improved memory management using mempools v2.
15272 - several minor optimizations
15273
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200152742007/05/09 : 1.3.10.2
15275 - fixed build on OpenBSD (missing types.h)
15276
Willy Tarreau13398d32007-05-09 22:58:28 +0200152772007/05/09 : 1.3.10.1
15278 - fixed sepoll transition matrix (two states were missing)
15279
Willy Tarreau61beedf2007-05-09 01:44:58 +0200152802007/05/08 : 1.3.10
15281 - several fixes in ev_sepoll
15282 - fixed some expiration dates on some tasks
15283 - fixed a bug in connection establishment detection due to speculative I/O
15284 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
15285 - implemented URI hashing algorithm (Guillaume Dallaire)
15286 - implemented SMTP health checks (Peter van Dijk)
15287 - replaced the rbtree with ul2tree from old scheduler project
15288 - new framework for generic ACL support
15289 - added the 'acl' and 'block' keywords to the config language
15290 - added several ACL criteria and matches (IP, port, URI, ...)
15291 - cleaned up and better modularization for some time functions
15292 - fixed list macros
15293 - fixed useless memory allocation in str2net()
15294 - store the original destination address in the session
15295
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200152962007/04/15 : 1.3.9
15297 - modularized the polling mechanisms and use function pointers instead
15298 of macros at many places
15299 - implemented support for FreeBSD's kqueue() polling mechanism
15300 - fixed a warning on OpenBSD : MIN/MAX redefined
15301 - change socket registration order at startup to accomodate kqueue.
15302 - several makefile cleanups to support old shells
15303 - fix build with limits.h once for all
15304 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
15305 - fdtab now holds the results of polling
15306 - implemented support for speculative I/O processing with epoll()
15307 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
15308 - auto-registering of pollers at load time
15309
Willy Tarreau42c76592007-04-03 20:30:13 +0200153102007/04/03 : 1.3.8.2
15311 - rewriting either the status line or request line could crash the
15312 process due to a pointer which ought to be reset before parsing.
15313 - rewriting the status line in the response did not work, it caused
15314 a 502 Bad Gateway due to an erroneous state during parsing
15315
Willy Tarreauef6d7612007-04-01 11:06:22 +0200153162007/04/01 : 1.3.8.1
15317 - fix reqadd when no option httpclose is used.
15318 - removed now unused fiprm and beprm from proxies
15319 - split logs into two versions : TCP and HTTP
15320 - added some docs about http headers storage and acls
15321 - added a VIM script for syntax color highlighting (Bruno Michel)
15322
Willy Tarreaud661cc02007-03-26 00:24:56 +0200153232007/03/25 : 1.3.8
15324 - fixed several bugs which might have caused a crash with bad configs
15325 - several optimizations in header processing
15326 - many progresses towards transaction-based processing
15327 - option forwardfor may be used in frontends
15328 - completed HTTP response processing
15329 - some code refactoring between request and response processing
15330 - new HTTP header manipulation functions
15331 - optimizations on the recv() patch to reduce CPU usage under very
15332 high data rates.
15333 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
15334 - username/groupname support from Marcus Rueckert
15335 - added the "except" keyword to the "forwardfor" option (Bryan German)
15336 - support for health-checks on other addresses (Fabrice Dulaunoy)
15337 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
15338 - do not insert "Connection: close" in HTTP/1.0 messages
15339
Willy Tarreau9cabf702007-01-26 23:49:01 +0100153402007/01/26 : 1.3.7
15341 - fix critical bug introduced with 1.3.6 : an empty request header
15342 may lead to a crash due to missing pointer assignment
15343 - hdr_idx might be left uninitialized in debug mode
15344 - fixed build on FreeBSD due to missing fd_set declaration
15345
Willy Tarreaue7a24382007-01-22 08:57:44 +0100153462007/01/22 : 1.3.6.1
15347 - change in the header chaining broke cookies and authentication
15348
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100153492007/01/22 : 1.3.6
15350 - stats now support the HEAD method too
15351 - extracted http request from the session
15352 - huge rework of the HTTP parser which is now a 28-state FSM.
15353 - linux-style likely/unlikely macros for optimization hints
15354 - do not create a server socket when there's no server
15355 - imported lots of docs
15356
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100153572007/01/07 : 1.3.5
15358 - stats: swap color sets for active and backup servers
15359 - try to guess server check port when unset
15360 - added complete support and doc for TCP Splicing
15361 - replace the wait-queue linked list with an rbtree.
15362 - a few bugfixes and cleanups
15363
Willy Tarreau85270da2007-01-02 00:59:39 +0100153642007/01/02 : 1.3.4
15365 - support for cttproxy on the server side to present the client
15366 address to the server.
15367 - added support for SO_REUSEPORT on Linux (needs kernel patch)
15368 - new RFC2616-compliant HTTP request parser with header indexing
15369 - split proxies in frontends, rulesets and backends
15370 - implemented the 'req[i]setbe' to select a backend depending
15371 on the contents
15372 - added the 'default_backend' keyword to select a default BE.
15373 - new stats page featuring FEs and BEs + bytes in both dirs
15374 - improved log format to indicate the backend and the time in ms.
15375 - lots of cleanups
15376
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200153772006/10/15 : 1.3.3
15378 - fix broken redispatch option in case the connection has already
15379 been marked "in progress" (ie: nearly always).
15380 - support regparm on x86 to speed up some often called functions
15381 - removed a few useless calls to gettimeofday() in log functions.
15382 - lots of 'const char*' cleanups
15383 - turn every FD_* into functions which are faster on recent CPUs
15384
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200153852006/09/03 : 1.3.2
15386 - started the changes towards I/O completion callbacks. stream_sock* have
15387 replaced event_*.
15388 - added the new "reqtarpit" and "reqitarpit" protection features
15389
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200153902006/07/09 : 1.3.1 (1.2.15)
15391 - now, haproxy warns about missing timeout during startup to try to
15392 eliminate all those buggy configurations.
15393 - added "Content-Type: text/html" in responses wherever appropriate, as
15394 suggested by Cameron Simpson.
15395 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
15396 test server's health
15397 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
15398 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
15399 at once.
15400
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200154012006/06/29 : 1.3.0
15402 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020015403 difference is expected at all.
15404 - fixed a bug by which neither stats nor error messages could be returned if
15405 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020015406
willy tarreau7e6328d2006-05-21 23:26:20 +0200154072006/05/21 : 1.2.14
15408 - new HTML status report with the 'stats' keyword.
15409 - added the 'abortonclose' option to better resist traffic surges
15410 - implemented dynamic traffic regulation with the 'minconn' option
15411 - show request time on denied requests
15412 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
15413 - now a proxy instance is allowed to run without servers, which is
15414 useful to dedicate one instance to stats
15415 - added lots of error counters
15416 - a missing parenthesis preventd matching of cacheable cookies
15417 - a missing parenthesis in poll_loop() might have caused missed events.
15418
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200154192006/05/14 : 1.2.13.1
15420 - an uninitialized field in the struct session could cause a crash when
15421 the session was freed. This has been encountered on Solaris only.
15422 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
15423 be nice to them by performing a soft stop if pause fails.
15424
willy tarreauc3a2e072006-05-13 18:51:38 +0200154252006/05/13 : 1.2.13
15426 - 'maxconn' server parameter to do per-server session limitation
15427 - queueing to support non-blocking session limitation
15428 - fixed removal of cookies for cookie-less servers such as backup servers
15429 - two separate wait queues for expirable and non-expirable tasks provide
15430 better performance with lots of sessions.
15431 - some code cleanups and performance improvements
15432 - made state dumps a bit more verbose
15433 - fixed missing checks for NULL srv in dispatch mode
15434 - load balancing on backup servers was not possible in source hash mode.
15435 - two session flags shared the same bit, but fortunately they were not
15436 compatible.
15437
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200154382006/04/15 : 1.2.12
15439 Very few changes preparing for more important changes to support per-server
15440 session limitations and queueing :
15441 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
15442 - added the 'weight' parameter to the servers, limited to 1..256. It applies
15443 to roundrobin and source hash.
15444 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
15445
willy tarreaue0dd2692006-03-30 16:27:34 +0200154462006/03/30 : 1.2.11.1
15447 - under some conditions, it might have been possible that when the
15448 last dead server became available, it would not have been used
15449 till another one would have changed state. Could not be reproduced
15450 at all, however seems possible from the code.
15451
willy tarreaud2058dc2006-03-25 20:35:41 +0100154522006/03/25 : 1.2.11
15453 - added the '-db' command-line option to disable backgrounding.
15454 - added the -sf/-st command-line arguments which are used to specify
15455 a list of pids to send a FINISH or TERMINATE signal upon startup.
15456 They will also be asked to release their port if a bind fails.
15457 - reworked the startup mechanism to allow the sending of a signal to a list
15458 of old pids if a socket cannot be bound, with a retry for a limited amount
15459 of time (1 second by default).
15460 - added the ability to enforce limits on memory usage.
15461 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
15462 - re-architectured the server round-robin mechanism to ease integration of
15463 other algorithms. It now relies on the number of active and backup servers.
15464 - added a counter for the number of active and backup servers, and report
15465 these numbers upon SIGHUP or state change.
15466
willy tarreaubfad5742006-03-23 14:19:11 +0100154672006/03/23 : 1.2.10.1
15468 - while fixing the backup server round-robin "feature", a new bug was
15469 introduced which could miss some backup servers.
15470 - the displayed proxy name was wrong when dumping upon SIGHUP.
15471
willy tarreauaaff30e2006-03-19 21:30:41 +0100154722006/03/19 : 1.2.10
15473 - assert.h is needed when DEBUG is defined.
15474 - ENORMOUS long standing bug affecting the epoll polling system :
15475 event_data is a union, not a structure !
15476 - Make fd management more robust and easier to debug. Also some
15477 micro-optimisations.
15478 - Limit the number of consecutive accept() in multi-process mode.
15479 This produces a more evenly distributed load across the processes and
15480 slightly improves performance by reducing bottlenecks.
15481 - Make health-checks be more regular, and faster to retry after a timeout.
15482 - Fixed some messages to ease parsing of alerts.
15483 - provided a patch to enable epoll on RHEL3 kernels.
15484 - Separated OpenBSD build from the main Makefile into a new one.
15485
willy tarreau50be0172006-03-15 19:41:19 +0100154862006/03/15 : 1.2.9
15487 - haproxy could not be stopped after being paused, it had to be woken up
15488 first. This has been fixed.
15489 - the 'ulimit-n' parameter is now optional and by default computed from
15490 maxconn + the number of listeners + the number of health-checks.
15491 - it is now possible to specify a maximum number of connections at build
15492 time with the SYSTEM_MAXCONN define. The value set in the configuration
15493 file will then be limited to this value, and only the command-line '-n'
15494 option will be able to bypass it. It will prevent against accidental
15495 high memory usage on small systems.
15496 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
15497 versions did not detect a line beginning with a space as the continuation
15498 of previous header. It is now correct.
15499 - health checks sent to servers configured with identical intervals were
15500 sent in perfect synchronisation because the initial time was the same
15501 for all. This could induce high load peaks when fragile servers were
15502 hosting tens of instances for the same application. Now the load is
15503 spread evenly across the smallest interval amongst a listener.
15504 - a new 'forceclose' option was added to make the proxy close the outgoing
15505 channel to the server once it has sent all its headers and the server
15506 starts responding. This helps some servers which don't close upon the
15507 'Connection: close' header. It implies 'option httpclose'.
15508 - there was a bug in the way the backup servers were handled. They were
15509 erroneously load-balanced while the doc said the opposite. Since
15510 load-balanced backup servers is one of the features some people have
15511 been asking for, the problem was fixed to reflect the documented
15512 behaviour and a new option 'allbackups' was introduced to provide the
15513 feature to those who need it.
15514 - a never ending connect() could lead to a fast select() loop if its
15515 timeout times the number of retransmits exceeded the server read or write
15516 timeout, because the later was used to compute select()'s timeout while
15517 the connection timeout was not reached.
15518 - now we initialize the libc's localtime structures very early so that even
15519 under OOM conditions, we can still send dated error messages without
15520 segfaulting.
15521 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
15522 descriptors are closed.
15523
willy tarreau065f1c02006-01-29 22:10:07 +0100155242006/01/29 : 1.2.8
15525 - fixed a nasty bug affecting poll/epoll which could return unmodified data
15526 from the server to the client, and sometimes lead to memory corruption
15527 crashing the process.
15528 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
15529
155302005/12/18 : 1.2.7.1
15531 - the "retries" option was ignored because connect() could not return an
15532 error if the connection failed before the timeout.
15533 - TCP health-checks could not detect a connection refused in poll/epoll
15534 mode.
15535
willy tarreaua56eca72005-12-18 01:34:42 +0100155362005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010015537 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
15538 least on Solaris, this caused the libc's regex primitives to be used instead
15539 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010015540 - delayed the quiet mode during startup so that most of the startup alerts can
15541 be displayed even in quiet mode.
15542 - display an alert when a listener has no address, invalid or no port, or when
15543 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010015544 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010015545
willy tarreaub952e1d2005-12-18 01:31:20 +0100155462005/10/09 : 1.2.7rc (1.1.33rc)
15547 - second batch of socklen_t changes.
15548 - clean-ups from Cameron Simpson.
15549 - because tv_remain() does not know about eternity, using no timeout can
15550 make select() spin around a null time-out. Bug reported by Cameron Simpson.
15551 - client read timeout was not properly set to eternity initialized after an
15552 accept() if it was not set in the config. It remained undetected so long
15553 because eternity is 0 and newly allocated pages are zeroed by the system.
15554 - do not call get_original_dst() when not in transparent mode.
15555 - implemented a workaround for a bug in certain epoll() implementations on
15556 linux-2.4 kernels (epoll-lt <= 0.21).
15557 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
15558
willy tarreauc5f73ed2005-12-18 01:26:38 +0100155592005/08/07 : 1.2.6
15560 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
15561
155622005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010015563 - added the number of active sessions (proxy/process) in the logs
15564
155652005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010015566 - the time-out fix introduced in 1.1.25 caused a corner case where it was
15567 possible for a client to keep a connection maintained regardless of the
15568 timeout if the server closed the connection during the HEADER phase,
15569 while the client ignored the close request while doing nothing in the
15570 other direction. This has been fixed now by ensuring that read timeouts
15571 are re-armed when switching to any SHUTW state.
15572
155732005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
15574 - enhanced error reporting in the logs. Now the proxy will precisely detect
15575 various error conditions related to the system and/or process limits, and
15576 generate LOG_EMERG logs indicating that a resource has been exhausted.
15577 - logs will contain two new characters for the error cause : 'R' indicates
15578 a resource exhausted, and 'I' indicates an internal error, though this
15579 one should never happen.
15580 - server connection timeouts can now be reported in the logs (sC), as well
15581 as connections refused because of maxconn limitations (PC).
15582
155832005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
15584 - new global configuration keyword "ulimit-n" may be used to raise the FD
15585 limit to usable values.
15586 - a warning is now displayed on startup if the FD limit is lower than the
15587 configured maximum number of sockets.
15588
155892005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
15590 - new configuration keyword "monitor-net" makes it possible to be monitored
15591 by external devices which connect to the proxy without being logged nor
15592 forwarded to any server. Particularly useful on generic TCPv4 relays.
15593
willy tarreau5dffb602005-12-18 01:15:23 +0100155942005/06/21 : 1.2.5.2
15595 - fixed build on PPC where chars are unsigned by default
15596
willy tarreau08dedbe2005-12-18 01:13:48 +0100155972005/05/02 : 1.2.5.1
15598 - dirty hack to fix a bug introduced with epoll : if we close an FD and
15599 immediately reassign it to another session through a connect(), the
15600 Prev{Read,Write}Events are not updated, which causes trouble detecting
15601 changes, thus leading to many timeouts at high loads.
15602
willy tarreau64a3cc32005-12-18 01:13:11 +0100156032005/04/30 : 1.2.5 (1.1.31)
15604 - changed the runtime argument to disable epoll() to '-de'
15605 - changed the runtime argument to disable poll() to '-dp'
15606 - added global options 'nopoll' and 'noepoll' to do the same at the
15607 configuration level.
15608 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
15609 support epoll().
15610 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
15611 - conditionned signals redirection to #ifdef DEBUG_MEMORY
15612
willy tarreau1c2ad212005-12-18 01:11:29 +0100156132005/04/26 : 1.2.5-pre4
15614 - made epoll() support a compile-time option : ENABLE_EPOLL
15615 - provided a very little libc replacement for a possibly missing epoll()
15616 implementation which can be enabled by -DUSE_MY_EPOLL
15617 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
15618 The equivalent runtime argument becomes '-P'. A few tests show that it
15619 performs like select() with many fds, but slightly slower (certainly
15620 because of the higher amount of memory involved).
15621 - separated the 3 polling methods and the tasks scheduler into 4 distinct
15622 functions which makes the code a lot more modular.
15623 - moved some event tables to private static declarations inside the poller
15624 functions.
15625 - the poller functions can now initialize themselves, run, and cleanup.
15626 - changed the runtime argument to enable epoll() to '-E'.
15627 - removed buggy epoll_ctl() code in the client_retnclose() function. This
15628 function was never meant to remove anything.
15629 - fixed a typo which caused glibc to yell about a double free on exit.
15630 - removed error checking after epoll_ctl(DEL) because we can never know if
15631 the fd is still active or already closed.
15632 - added a few entries in the makefile
15633
willy tarreauad90a0c2005-12-18 01:09:15 +0100156342005/04/25 : 1.2.5-pre3
15635 - experimental epoll() support (use temporary '-e' argument)
15636
156372005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010015638 - implemented the HTTP 303 code for error redirection. This forces the
15639 browser to fetch the given URI with a GET request. The new keyword for
15640 this is 'errorloc303', and a new 'errorloc302' keyword has been created
15641 to make them easily distinguishable.
15642 - added more controls in the parser for valid use of '\x' sequence.
15643 - few fixes from Alex & Klaus
15644
willy tarreauad90a0c2005-12-18 01:09:15 +0100156452005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010015646 - fixed a few errors in the documentation
15647
156482005/02/13
15649 - do not pre-initialize unused file-descriptors before select() anymore.
15650
willy tarreau12350152005-12-18 01:03:27 +0100156512005/01/22 : 1.2.4
15652 - merged Alexander Lazic's and Klaus Wagner's work on application
15653 cookie-based persistence. Since this is the first merge, this version is
15654 not intended for general use and reports are more than welcome. Some
15655 documentation is really needed though.
15656
willy tarreau0174f312005-12-18 01:02:42 +0100156572005/01/22 : 1.2.3 (1.1.30)
15658 - add an architecture guide to the documentation
15659 - released without any changes
15660
156612004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
15662 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
15663 compatible with Apache. This limit can be configured in the makefile now.
15664 Thanks to Eric Fehr for the checks.
15665 - added a per-server "source" option which now makes it possible to bind to
15666 a different source for each (potentially identical) server.
15667 - changed cookie-based server selection slightly to allow several servers to
15668 share a same cookie, thus making it possible to associate backup servers to
15669 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
15670 - added the cookie 'prefix' mode which makes it possible to use persistence
15671 with thin clients which support only one cookie. The server name is prefixed
15672 before the application cookie, and restore back.
15673 - fixed the order of servers within an instance to match documentation. Now
15674 the servers are *really* used in the order of their declaration. This is
15675 particularly important when multiple backup servers are in use.
15676
willy tarreau4302f492005-12-18 01:00:37 +0100156772004/10/18 : 1.2.2 (1.1.29)
15678 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
15679 option was enabled without the 'tcplog' option.
15680 - encode_string() would use hdr_encode_map instead of the map argument.
15681
156822004/08/10 : (1.1.29-pre2)
15683 - the logged request is now encoded with '#XX' for unprintable characters
15684 - new keywords 'capture request header' and 'capture response header' enable
15685 logging of arbitrary HTTP headers in requests and responses
15686 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
15687
willy tarreau982249e2005-12-18 00:57:06 +0100156882004/06/06 : 1.2.1 (1.1.28)
15689 - added the '-V' command line option to verbosely report errors even though
15690 the -q or 'quiet' options are specified. This is useful with '-c'.
15691 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010015692
willy tarreau982249e2005-12-18 00:57:06 +0100156932004/06/05 :
15694 - added the "logasap" option which produces a log without waiting for the data
15695 to be transferred from the server to the client.
15696 - added the "httpclose" option which removes any "connection:" header and adds
15697 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010015698 - added the 'checkcache' option which blocks cacheable responses containing
15699 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010015700 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
15701 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010015702
157032004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010015704 - send an EMERG log when no server is available for a given proxy
15705 - added the '-c' command line option to syntactically check the
15706 configuration file without starting the service.
15707
willy tarreau8a86dbf2005-12-18 00:45:59 +0100157082003/11/09 : 1.2.0
15709 - the same as 1.1.27 + IPv6 support on the client side
15710
willy tarreaufe2c5c12005-12-17 14:14:34 +0100157112003/10/27 : 1.1.27
15712 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
15713 bug : the code still assumed that HTTP requests were the same size as the
15714 original ones (22 bytes), and failed if they were not.
15715 - added support for pidfiles.
15716
willy tarreauc58fc692005-12-17 14:13:08 +0100157172003/10/22 : 1.1.26
15718 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
15719 broke almost all compatibility with POST requests, because the proxy
15720 stopped to read anything from the client as soon as it got all of its
15721 headers.
15722
willy tarreauc1cae632005-12-17 14:12:23 +0100157232003/10/15 : 1.1.25
15724 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
15725 generic TCP proxies, or lighter logs for HTTP proxies.
15726 - fixed a time-out condition wrongly reported as client time-out in data
15727 phase if the client timeout was lower than the connect timeout times the
15728 number of retries.
15729
willy tarreau197e8ec2005-12-17 14:10:59 +0100157302003/09/21 : 1.1.24
15731 - if a client sent a full request then shut its write connection down, then
15732 the request was aborted. This case was detected only when using haproxy
15733 both as health-check client and as a server.
15734 - if 'option httpchk' is used in a 'health' mode server, then responses will
15735 change from 'OK' to 'HTTP/1.0 200 OK'.
15736 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
15737 server response followed by a close could be ignored, and the server seen
15738 as failed.
15739
willy tarreaueedaa9f2005-12-17 14:08:03 +0100157402003/09/19 : 1.1.23
15741 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
15742 'default' sections to keep previous parameters, and not initialize logs
15743 correctly.
15744 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
15745 relying on 'dispatch' mode to segfault at the first connection.
15746 - 'option httpchk' now supports method, HTTP version and a few headers.
15747 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
15748 'defaults' section
15749
157502003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010015751 - 'listen' now supports optionnal address:port-range lists
15752 - 'bind' introduced to add new listen addresses
15753 - fixed a bug which caused a session to be kept established on a server till
15754 it timed out if the client closed during the DATA phase.
15755 - the port part of each server address can now be empty to make the proxy
15756 connect to the server on the same port it was connected to, be an absolute
15757 unsigned number to reflect a single port (as in older versions), or an
15758 explicitly signed number (+N/-N) to indicate that this offset must be
15759 applied to the port the proxy was connected to, when connecting to the
15760 server.
15761 - the 'port' server option allows the user to specify a different
15762 health-check port than the service one. It is mandatory when only relative
15763 ports have been specified and check is required. By default, the checks are
15764 sent to the service port.
15765 - new 'defaults' section which is rather similar to 'listen' except that all
15766 values are only used as default values for future 'listen' sections, until
15767 a new 'defaults' resets them. At the moment, server options, regexes,
15768 cookie names and captures cannot be set in the 'defaults' section.
15769
willy tarreau2f6ba652005-12-17 13:57:42 +0100157702003/05/06 : 1.1.21
15771 - changed the debug output format so that it now includes the session unique
15772 ID followed by the instance name at the beginning of each line.
15773 - in debug mode, accept now shows the client's IP and port.
15774 - added one 3 small debugging scripts to search and pretty print debug output
15775 - changed the default health check request to "OPTIONS /" instead of
15776 "OPTIONS *" since not all servers implement the later one.
15777 - "option httpchk" now accepts an optional parameter allowing the user to
15778 specify and URI other than '/' during health-checks.
15779
willy tarreaub1ff9db2005-12-17 13:51:03 +0100157802003/04/21 : 1.1.20
15781 - fixed two problems with time-outs, one where a server would be logged as
15782 timed out during transfer that take longer to complete than the fixed
15783 time-out, and one where clients were logged as timed-out during the data
15784 phase because they didn't have anything to send. This sometimes caused
15785 slow client connections to close too early while in fact there was no
15786 problem. The proper fix would be to have a per-fd time-out with
15787 conditions depending on the state of the HTTP FSM.
15788
willy tarreau906b2682005-12-17 13:49:52 +0100157892003/04/16 : 1.1.19
15790 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
15791 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
15792 cookie persistence because it uses "cookie:". Two memcmp() have been
15793 replaced with strncasecmp().
15794
willy tarreau036e1ce2005-12-17 13:46:33 +0100157952003/04/02 : 1.1.18
15796 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
15797 REGEX=pcre on the make command line.
15798 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
15799 - when explicit source address binding is required, it is now also used for
15800 health-checks.
15801 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
15802 itself.
15803 - factored several strings to reduce binary size by about 2 kB.
15804 - replaced setreuid() and setregid() with more standard setuid() and setgid().
15805 - added 4 status flags to the log line indicating who ended the connection
15806 first, the sessions state, the validity of the cookie, and action taken on
15807 the set-cookie header.
15808
158092002/10/18 : 1.1.17
15810 - add the notion of "backup" servers, which are used only when all other
15811 servers are down.
15812 - make Set-Cookie return "" instead of "(null)" when the server has no
15813 cookie assigned (useful for backup servers).
15814 - "log" now supports an optionnal level name (info, notice, err ...) above
15815 which nothing is sent.
15816 - replaced some strncmp() with memcmp() for better efficiency.
15817 - added "capture cookie" option which logs client and/or server cookies
15818 - cleaned up/down messages and dump servers states upon SIGHUP
15819 - added a redirection feature for errors : "errorloc <errnum> <url>"
15820 - now we won't insist on connecting to a dead server, even with a cookie,
15821 unless option "persist" is specified.
15822 - added HTTP/408 response for client request time-out and HTTP/50[234] for
15823 server reply time-out or errors.
15824
158252002/09/01 : 1.1.16
15826 - implement HTTP health checks when option "httpchk" is specified.
15827
158282002/08/07 : 1.1.15
15829 - replaced setpgid()/setpgrp() with setsid() for better portability, because
15830 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
15831
158322002/07/20 : 1.1.14
15833 - added "postonly" cookie mode
15834
158352002/07/15 : 1.1.13
15836 - tv_diff used inverted parameters which led to negative times !
15837
158382002/07/13 : 1.1.12
15839 - fixed stats monitoring, and optimized some tv_* for most common cases.
15840 - replaced temporary 'newhdr' with 'trash' to reduce stack size
15841 - made HTTP errors more HTML-fiendly.
15842 - renamed strlcpy() to strlcpy2() because of a slightly difference between
15843 their behaviour (return value), to avoid confusion.
15844 - restricted HTTP messages to HTTP proxies only
15845 - added a 502 message when the connection has been refused by the server,
15846 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
15847 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
15848 inserting a cookie, because some caches (apache) don't understand it.
15849 - fixed processing of server headers when client is in SHUTR state
15850
158512002/07/04 :
15852 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
15853 setpgid()
15854
158552002/06/04 : 1.1.11
15856 - fixed multi-cookie handling in client request to allow clean deletion
15857 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010015858 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010015859 - added a "nocache" option to "cookie" to specify that we explicitly want
15860 to add a "cache-control" header when we add a cookie.
15861 It is also possible to add an "Expires: <old-date>" to keep compatibility
15862 with old/broken caches.
15863
158642002/05/10 : 1.1.10
15865 - if a cookie is used in insert+indirect mode, it's desirable that the
15866 the servers don't see it. It was not possible to remove it correctly
15867 with regexps, so now it's removed automatically.
15868
158692002/04/19 : 1.1.9
15870 - don't use snprintf()'s return value as an end of message since it may
15871 be larger. This caused bus errors and segfaults in internal libc's
15872 getenv() during localtime() in send_log().
15873 - removed dead insecure send_syslog() function and all references to it.
15874 - fixed warnings on Solaris due to buggy implementation of isXXXX().
15875
158762002/04/18 : 1.1.8
15877 - option "dontlognull"
15878 - fixed "double space" bug in config parser
15879 - fixed an uninitialized server field in case of dispatch
15880 with no existing server which could cause a segfault during
15881 logging.
15882 - the pid logged was always the father's, which was wrong for daemons.
15883 - fixed wrong level "LOG_INFO" for message "proxy started".
15884
158852002/04/13 :
15886 - http logging is now complete :
15887 - ip:port, date, proxy, server
15888 - req_time, conn_time, hdr_time, tot_time
15889 - status, size, request
15890 - source address
15891
158922002/04/12 : 1.1.7
15893 - added option forwardfor
15894 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
15895 - added "log global" in "listen" section.
15896
158972002/04/09 :
15898 - added a new "global" section :
15899 - logs
15900 - debug, quiet, daemon modes
15901 - uid, gid, chroot, nbproc, maxconn
15902
159032002/04/08 : 1.1.6
15904 - regex are now chained and not limited anymore.
15905 - unavailable server now returns HTTP/502.
15906 - increased per-line args limit to 40
15907 - added reqallow/reqdeny to block some request on matches
15908 - added HTTP 400/403 responses
15909
159102002/04/03 : 1.1.5
15911 - connection logging displayed incorrect source address.
15912 - added proxy start/stop and server up/down log events.
15913 - replaced log message short buffers with larger trash.
15914 - enlarged buffer to 8 kB and replace buffer to 4 kB.
15915
159162002/03/25 : 1.1.4
15917 - made rise/fall/interval time configurable
15918
159192002/03/22 : 1.1.3
15920 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
15921 which could lead to loops.
15922
159232002/03/21 : 1.1.2
15924 - fixed a bug in buffer management where we could have a loop
15925 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
15926 => implemented an adjustable buffer limit.
15927 - fixed a bug : expiration of tasks in wait queue timeout is used again,
15928 and running tasks are skipped.
15929 - added some debug lines for accept events.
15930 - send warnings for servers up/down.
15931
159322002/03/12 : 1.1.1
15933 - fixed a bug in total failure handling
15934 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
15935
159362002/03/10 : 1.1.0
15937 - fixed a few timeout bugs
15938 - rearranged the task scheduler subsystem to improve performance,
15939 add new tasks, and make it easier to later port to librt ;
15940 - allow multiple accept() for one select() wake up ;
15941 - implemented internal load balancing with basic health-check ;
15942 - cookie insertion and header add/replace/delete, with better strings
15943 support.
15944
159452002/03/08
15946 - reworked buffer handling to fix a few rewrite bugs, and
15947 improve overall performance.
15948 - implement the "purge" option to delete server cookies in direct mode.
15949
159502002/03/07
15951 - fixed some error cases where the maxfd was not decreased.
15952
159532002/02/26
15954 - now supports transparent proxying, at least on linux 2.4.
15955
159562002/02/12
15957 - soft stop works again (fixed select timeout computation).
15958 - it seems that TCP proxies sometimes cannot timeout.
15959 - added a "quiet" mode.
15960 - enforce file descriptor limitation on socket() and accept().
15961
159622001/12/30 : release of version 1.0.2 : fixed a bug in header processing
159632001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
159642001/12/16 : release of version 1.0.0.
159652001/12/16 : added syslog capability for each accepted connection.
159662001/11/19 : corrected premature end of files and occasional SIGPIPE.
159672001/10/31 : added health-check type servers (mode health) which replies OK then closes.
159682001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
15969 with or without cookies (use keyword http for this).
159702001/09/01 : added client/server header replacing with regexps.
15971 eg:
15972 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
15973 srvexp ^Server:\ .* Server:\ Apache
159742000/11/29 : first fully working release with complete FSMs and timeouts.
159752000/11/28 : major rewrite
159762000/11/26 : first write