blob: a2890b518e974ff3adbdf4754ecb81b4d6b0cb42 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau31dd3932021-02-20 13:30:31 +010042021/02/20 : 2.4-dev9
5 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
6 - CLEANUP: check: fix get_check_status_info declaration
7 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
8 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
9 - MINOR: stats: add helper to get status string
10 - MEDIUM: contrib/prometheus-exporter: add listen stats
11 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
12 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
13 - BUG/MINOR: dns: missing test writing in output channel in session handler
14 - BUG/MINOR: dns: fix ring attach control on dns_session_new
15 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
16 - BUG/MAJOR: connection: prevent double free if conn selected for removal
17 - BUG/MINOR: session: atomically increment the tracked sessions counter
18 - REGTESTS: fix http_reuse_conn_hash proxy test
19 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
20 - MINOR: connection: remove pointers for prehash in conn_hash_params
21 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
22 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
23 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
24 - OPTIM: server: switch the actconn list to an mt-list
25 - Revert "MINOR: threads: change lock_t to an unsigned int"
26 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
27 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
28 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
29 - OPTIM: lb-leastconn: do not unlink the server if it did not change
30 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
31 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
32 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
33 - MINOR: cli: add missing agent commands for set server
34 - BUILD/MEDIUM: da Adding pcre2 support.
35 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
36 - REGTESTS: reorder reuse conn proxy protocol test
37 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
38 - MINOR: tasks: refine the default run queue depth
39 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
40 - MINOR: mux_h2: do not try to remove front conn from idle trees
41 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
42 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
43 - MINOR: connection: allocate dynamically hash node for backend conns
44 - DOC: DeviceAtlas documentation typo fix.
45 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
46 - BUG/MINOR: http-rules: Always replace the response status on a return action
47 - BUG/MINOR: server: Init params before parsing a new server-state line
48 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
49 - MEDIUM: server: Don't introduce a new server-state file version
50 - DOC: contrib/prometheus-exporter: remove htx reference
51 - REGTESTS: contrib/prometheus-exporter: test NaN values
52 - REGTESTS: contrib/prometheus-exporter: test well known labels
53 - CI: github actions: switch to stable LibreSSL release
54 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
55 - MINOR: dynbuf: make the buffer wait queue per thread
56 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
57 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
58 - MINOR: sched: have one runqueue ticks counter per thread
59
Willy Tarreaudc626ec2021-02-13 10:17:27 +0100602021/02/13 : 2.4-dev8
61 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
62 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
63 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
64 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
65 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
66 - CLEANUP: assorted typo fixes in the code and comments
67 - CLEANUP: check: fix some typo in comments
68 - CLEANUP: tools: typo in `strl2irc` mention
69 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
70 - MEDIUM: ssl: add a rwlock for SSL server session cache
71 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
72 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
73 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
74 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
75 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
76 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
77 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
78 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
79 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
80 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
81 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
82 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
83 - BUG/MINOR: server: re-align state file fields number
84 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
85 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
86 - CLEANUP: remove unused variable assigned found by Coverity
87 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
88 - BUG/MINOR: backend: hold correctly lock when killing idle conn
89 - MEDIUM: connection: protect idle conn lists with locks
90 - MEDIUM: connection: replace idle conn lists by eb trees
91 - MINOR: backend: search conn in idle/safe trees after available
92 - MINOR: backend: search conn in idle tree after safe on always reuse
93 - MINOR: connection: prepare hash calcul for server conns
94 - MINOR: connection: use the srv pointer for the srv conn hash
95 - MINOR: backend: compare conn hash for session conn reuse
96 - MINOR: connection: use sni as parameter for srv conn hash
97 - MINOR: reg-tests: test http-reuse with sni
98 - MINOR: backend: rewrite alloc of stream target address
99 - MINOR: connection: use dst addr as parameter for srv conn hash
100 - MINOR: reg-test: test http-reuse with specific dst addr
101 - MINOR: backend: rewrite alloc of connection src address
102 - MINOR: connection: use src addr as parameter for srv conn hash
103 - MINOR: connection: use proxy protocol as parameter for srv conn hash
104 - MINOR: reg-tests: test http-reuse with proxy protocol
105 - MINOR: doc: update http reuse for new eligilible connections
106 - BUG/MINOR: backend: fix compilation without ssl
107 - REGTESTS: adjust http_reuse_conn_hash requirements
108 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
109 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
110 - CI: cirrus: update FreeBSD image to 12.2
111 - MEDIUM: cli: add check-addr command
112 - MEDIUM: cli: add agent-port command
113 - MEDIUM: server: add server-states version 2
114 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
115 - MINOR: server: enhance error precision when applying server state
116 - BUG/MINOR: server: Fix server-state-file-name directive
117 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
118 - BUG/MEDIUM: config: don't pick unset values from last defaults section
119 - BUG/MINOR: stats: revert the change on ST_CONVDONE
120 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
121 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
122 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
123 - BUILD: proxy: add missing compression-t.h to proxy-t.h
124 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
125 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
126 - MEDIUM: proxy: only take defaults when a default proxy is passed.
127 - MINOR: proxy: move the defproxy freeing code to proxy.c
128 - MINOR: proxy: always properly reset the just freed default instance pointers
129 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
130 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
131 - BUG/MINOR: server: parse_server() must take a const for the defproxy
132 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
133 - MINOR: proxy: add a new capability PR_CAP_DEF
134 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
135 - MINOR: cfgparse: use a pointer to the current default proxy
136 - MINOR: proxy: also store the name for a defaults section
137 - MINOR: proxy: support storing defaults sections into their own tree
138 - MEDIUM: proxy: store the default proxies in a tree by name
139 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
140 - MINOR: http: add baseq sample fetch
141 - CLEANUP: tcpcheck: Remove a useless test on port variable
142 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
143 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
144 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
145 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
146 - DOC: tune: explain the origin of block size for ssl.cachesize
147 - MINOR: tcp: add support for defer-accept on FreeBSD.
148 - MINOR: ring: adds new ring_init function.
149 - CLEANUP: channel: fix comment in ci_putblk.
150 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
151 - BUG/MINOR: resolvers: fix attribute packed struct for dns
152 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
153 - MINOR: resolvers: renames type dns_resolvers to resolvers.
154 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
155 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
156 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
157 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
158 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
159 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
160 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
161 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
162 - MEDIUM: resolvers: split resolving and dns message exchange layers.
163 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
164 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
165 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
166
Willy Tarreau5d46fbd2021-02-05 15:17:33 +01001672021/02/05 : 2.4-dev7
168 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
169 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
170 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
171 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
172 - CLEANUP: stats: improve field selection for frontend http fields
173 - CLEANUP: assorted typo fixes in the code and comments
174 - DOC: Improve documentation of the various hdr() fetches
175 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
176 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
177 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
178 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
179 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
180 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
181 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
182 - MINOR: reg-tests: add http-reuse test
183 - CLEANUP: srv: fix comment for pool-max-conn
184 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
185 - REORG: backend: simplify conn_backend_get
186 - MINOR: ssl: Server ssl context prepare function refactoring
187 - MINOR: ssl: Certificate chain loading refactorization
188 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
189 - MEDIUM: ssl: Enable backend certificate hot update
190 - MINOR: ssl: Remove client_crt member of the server's ssl context
191 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
192 - CLEANUP: ssl: remove SSL_CTX function parameter
193 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
194 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
195 - CI: Fix DEBUG_STRICT definition for Coverity
196 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
197 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
198 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
199 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
200 - BUG/MEDIUM: session: only retrieve ready idle conn from session
201 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
202 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
203 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
204 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
205 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
206 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
207 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
208 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
209 - MINOR: stream: Add a function to validate TCP to H1 upgrades
210 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
211 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
212 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
213 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
214 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
215 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
216 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
217 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
218 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
219 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
220 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
221 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
222 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
223 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
224 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
225 - MINOR: htx: Add a function to know if a block is the only one in a message
226 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
227 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
228 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
229 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
230 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
231 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
232 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
233 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
234 - MINOR: h1: reject websocket handshake if missing key
235 - MEDIUM: h1: generate WebSocket key on response if needed
236 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
237 - MEDIUM: h2: parse Extended CONNECT reponse to htx
238 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
239 - MEDIUM: h1: add a WebSocket key on handshake if needed
240 - MEDIUM: mux_h2: generate Extended CONNECT response
241 - MEDIUM: h2: parse Extended CONNECT request to htx
242 - MEDIUM: h2: send connect protocol h2 settings
243 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
244 - MINOR: vtc: add websocket test
245 - REGTESTS: Fix required versions for several scripts
246 - REGTEST: Don't use the websocket to validate http-check
247 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
248 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
249 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
250 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
251 - REGTESTS: set_ssl_server_cert.vtc: set as broken
252 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
253 - BUG/MINOR: backend: check available list allocation for reuse
254 - CI: Fix the coverity builds
255 - DOC: management: fix "show resolvers" alphabetical ordering
256 - MINOR: tools: add print_time_short() to print a condensed duration value
257 - MINOR: activity: make profiling more manageable
258 - MINOR: activity: declare a new structure to collect per-function activity
259 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
260 - MINOR: activity: also report collected tasks stats in "show profiling"
261 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
262 - MINOR: activity: add a new "show tasks" command to list currently active tasks
263 - MINOR: listener: export accept_queue_process
264 - MINOR: session: export session_expire_embryonic()
265 - MINOR: muxes: export the timeout and shutr task handlers
266 - MINOR: checks: export a few functions that appear often in trace dumps
267 - MINOR: peers: export process_peer_sync() to improve traces
268 - MINOR: stick-tables: export process_table_expire()
269 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
270 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
271 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
272 - MINOR: http-conv: Don't check if argument list is set in sample converters
273 - MINOR: sample: Don't check if argument list is set in sample fetches
274 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
275 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
276 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
277 - MINOR: contrib/prometheus-exporter: declare states for objects
278 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
279 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
280 - MINOR: listener: export manage_global_listener_queue()
281 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
282 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
283 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
284 - MINOR: checks: Add function to get the result code corresponding to a status
285 - MAJOR: contrib/prometheus-exporter: move health check status to labels
286 - MINOR: contrib/prometheus-exporter: improve service status description field
287 - MINOR: stats: improve pending connections description
288 - MINOR: stats: improve max stats descriptions
289 - MINOR: contrib/prometheus-exporter: use stats desc when possible
290 - MINOR: contrib/prometheus-exporter: add uweight field
291 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
292 - CLEANUP: contrib/prometheus-exporter: remove unused includes
293 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
294 - CLEANUP: contrib/prometheus-exporter: remove description in README
295 - DOC: contrib/prometheus-exporter: Add missing metrics in README
296 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
297 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
298 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
299 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
300 - BUG/MINOR: mux_h2: fix incorrect stat titles
301 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
302 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
303 - MINOR: server: Don't set the check port during the update from a state file
304 - MINOR: dns: Don't set the check port during a server dns resolution
305 - MEDIUM: check: remove checkport checkaddr flag
306 - MEDIUM: server: adding support for check_port in server state
307 - BUG/MINOR: check: consitent way to set agentaddr
308 - MEDIUM: check: align agentaddr and agentport behaviour
309 - DOC: server: Add missing params in comment of the server state line parsing
310 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
311 - REGTESTS: mark http-check-send.vtc as 2.4-only
312 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
313 - BUG/MINOR: ssl: do not try to use early data if not configured
314 - REGTESTS: unbreak http-check-send.vtc
315 - MINOR: cli/show_fd: report local and report ports when known
316 - BUILD: Makefile: move REGTESTST_TYPE default setting
317 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
318 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
319 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
320 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
321
Willy Tarreau24c41d52021-01-22 16:19:46 +01003222021/01/22 : 2.4-dev6
323 - MINOR: converter: adding support for url_enc
324 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
325 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
326 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
327 - BUILD: Makefile: exclude broken tests by default
328 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
329 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
330 - MINOR: contrib/prometheus-exporter: export build_info
331 - DOC: fix some spelling issues over multiple files
332 - CLEANUP: Fix spelling errors in comments
333 - SCRIPTS: announce-release: fix typo in help message
334 - CI: github: add a few more words to the codespell ignore list
335 - DOC: Add maintainers for the Prometheus exporter
336 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
337 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
338 - CLEANUP: sample: remove uneeded check in json validation
339 - MINOR: reg-tests: add a way to add service dependency
340 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
341 - BUG/MINOR: reg-tests: fix service dependency script
342 - MINOR: reg-tests: add base prometheus test
343 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
344 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
345 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
346 - BUG/MINOR: init: enforce strict-limits when using master-worker
347 - MINOR: contrib/prometheus-exporter: avoid connection close header
348 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
349 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
350 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
351 - MINOR: server: Forbid server definitions in frontend sections
352 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
353 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
354 - MINOR: pattern: add the missing generation ID manipulation functions
355 - MINOR: peers: Add traces for peer control messages.
356 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
357 - BUILD: peers: fix build warning about unused variable
358 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
359 - MINOR: cache: Do not store responses with an unknown encoding
360 - BUG/MINOR: peers: Possible appctx pointer dereference.
361 - MINOR: build: discard echoing in help target
362 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
363 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
364 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
365 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
366 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
367 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
368 - CLEANUP: tools: make resolve_sym_name() take a const pointer
369 - CLEANUP: cli: make "show fd" use a const connection to access other fields
370 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
371 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
372 - MINOR: ssl: provide a "show fd" helper to report important SSL information
373 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
374 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
375 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
376 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
377 - CI: Pin VTest to a known good commit
378 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
379 - MINOR: cli/show_fd: report some easily detectable suspicious states
380 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
381 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
382 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
383 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
384 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
385 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
386 - MINOR: http: Add HTTP 501-not-implemented error message
387 - MINOR: muxes: Add exit status for errors about not implemented features
388 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
389 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
390 - DOC: Remove space after comma in converter signature
391 - DOC: Rename '<var name>' to '<var>' in converter signature
392 - MINOR: stats: duplicate 3 fields in bytes in info
393 - MINOR: stats: add new start time field
394 - MINOR: contrib/prometheus-exporter: merge info description from stats
395 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
396 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
397 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
398 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
399 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
400 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
401 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
402 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
403 - MINOR: debug: always export the my_backtrace function
404 - MINOR: debug: extract the backtrace dumping code to its own function
405 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
406 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
407 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
408 - BUILD: debug: fix build warning by consuming the write() result
409 - MINOR: lua: remove unused variable
410 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
411
Willy Tarreau421ed392021-01-06 17:41:32 +01004122021/01/06 : 2.4-dev5
413 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
414 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
415 - MINOR: time: increase the minimum wakeup interval to 60s
416 - MINOR: check: do not ignore a connection header for http-check send
417 - REGTESTS: complete http-check test
418 - CI: travis-ci: drop coverity scan builds
419 - MINOR: atomic: don't use ; to separate instruction on aarch64.
420 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
421 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
422 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
423 - CLEANUP: xxhash: remove the unused src/xxhash.c
424 - MINOR: sample: add the xxh3 converter
425 - REGTESTS: add tests for the xxh3 converter
426 - MINOR: protocol: Create proto_quic QUIC protocol layer.
427 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
428 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
429 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
430 - MINOR: connection: Add a new xprt to connection.
431 - MINOR: ssl: Export definitions required by QUIC.
432 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
433 - MINOR: tools: Add support for QUIC addresses parsing.
434 - MINOR: quic: Add definitions for QUIC protocol.
435 - MINOR: quic: Import C source code files for QUIC protocol.
436 - MINOR: listener: Add QUIC info to listeners and receivers.
437 - MINOR: server: Add QUIC definitions to servers.
438 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
439 - MINOR: ssl: QUIC transport parameters parsing.
440 - MINOR: quic: QUIC socket management finalization.
441 - MINOR: cfgparse: QUIC default server transport parameters init.
442 - MINOR: quic: Enable the compilation of QUIC modules.
443 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
444 - MINOR: quic: Attempt to make trace more readable
445 - MINOR: quic: Make usage of the congestion control window.
446 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
447 - MINOR: quic: Code reordering to help in reviewing/modifying.
448 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
449 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
450 - MINOR: quic: Update the initial salt to that of draft-29.
451 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
452 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
453 - MINOR: quic: Add traces for quic_packet_encrypt().
454 - MINOR: cache: Refactoring of secondary_key building functions
455 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
456 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
457 - MINOR: cache: Add specific secondary key comparison mechanism
458 - MINOR: http: Add helper functions to trim spaces and tabs
459 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
460 - REGTESTS: cache: Simplify vary.vtc file
461 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
462 - MINOR: cache: Remove redundant test in http_action_req_cache_use
463 - MINOR: cache: Replace the "process-vary" option's expected values
464 - CI: GitHub Actions: enable daily Coverity scan
465 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
466 - MEDIUM: stick-tables: Add srvkey option to stick-table
467 - REGTESTS: add test for stickiness using "srvkey addr"
468 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
469 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
470 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
471 - MINOR: lua: Use consistent error message 'memory allocation failed'
472 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
473 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
474 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
475 - MINOR: qpack: Add static header table definitions for QPACK.
476 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
477 - CLEANUP: quic: Remove useless QUIC event trace definitions.
478 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
479 - MINOR: quic: Pass quic_conn struct to frame parsers.
480 - BUG/MINOR: quic: Wrong STREAM frames parsing.
481 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
482 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
483 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
484 - MINOR: ssl: make tlskeys_list_get_next() take a list element
485 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
486 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
487 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
488 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
489 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
490 - CLEANUP: spoe: fix typo on `var_check_arg` comment
491 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
492 - CI: github actions: build several popular "contrib" tools
493 - DOC: Improve the message printed when running `make` w/o `TARGET`
494 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
495 - REGTESTS: add unresolvable servers to srvkey-addr
496 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
497 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
498 - SCRIPTS: improve announce-release to support different tag and versions
499 - SCRIPTS: make announce release support preparing announces before tag exists
500 - CLEANUP: assorted typo fixes in the code and comments
501 - BUG/MINOR: srv: do not init address if backend is disabled
502 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
503 - CLEANUP: assorted typo fixes in the code and comments
504 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
505
Willy Tarreau4d711762020-12-21 11:54:56 +01005062020/12/21 : 2.4-dev4
507 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
508 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
509 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
510 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
511 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
512 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
513 - MEDIUM: cache: Avoid going over duplicates lists too often
514 - MINOR: cache: Add a max-secondary-entries cache option
515 - CI: cirrus: drop CentOS 6 builds
516 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
517 - MINOR: vars: replace static functions with global ones
518 - MINOR: opentracing: add ARGC_OT enum
519 - CONTRIB: opentracing: add the OpenTracing filter
520 - DOC: opentracing: add the OpenTracing filter section
521 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
522 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
523 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
524 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
525 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
526 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
527 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
528 - CLEANUP: debug: mark the RNG's seed as unsigned
529 - CONTRIB: halog: fix build issue caused by %L printf format
530 - CONTRIB: halog: mark the has_zero* functions unused
531 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
532 - CONTRIB: debug: address "poll" utility build on non-linux platforms
533 - BUILD: plock: remove dead code that causes a warning in gcc 11
534 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
535 - BUG/MINOR: dns: SRV records ignores duplicated AR records
536 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
537 - CLEANUP: assorted typo fixes in the code and comments
538 - DOC: assorted typo fixes in the documentation
539 - CI: codespell: whitelist "te" and "nd" words
540
Willy Tarreaua786c412020-12-11 17:22:51 +01005412020/12/11 : 2.4-dev3
542 - MINOR: log: Logging HTTP path only with %HPO
543 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
544 - MINOR: traces: add a new level "error" below the "user" level
545 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
546 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
547 - BUG/MINOR: lua: missing "\n" in error message
548 - BUG/MINOR: lua: lua-load doesn't check its parameters
549 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
550 - BUG/MINOR: lua: Some lua init operation are processed unsafe
551 - MINOR: actions: Export actions lookup functions
552 - MINOR: actions: add a function returning a service pointer from its name
553 - MINOR: cli: add a function to look up a CLI service description
554 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
555 - MINOR: cache: Improve accept_encoding_normalizer
556 - MINOR: cache: Add entry to the tree as soon as possible
557 - BUG/MINOR: trace: Wrong displayed trace level
558 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
559 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
560 - MEDIUM: lua-thread: use atomics for memory accounting
561 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
562 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
563 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
564 - MINOR: lua-thread: Use NULL context for main lua state
565 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
566 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
567 - MINOR: lua-thread: Split hlua_init() function in two parts
568 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
569 - MINOR: lua-thread: Split hlua_load function in two parts
570 - MINOR: lua-thread: Split hlua_post_init() function in two parts
571 - MINOR: lua-thread: Add the "thread" core variable
572 - MEDIUM: lua-thread: No longer use locked context in initialization parts
573 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
574 - MINOR: lua-thread: Replace global gL var with an array of states
575 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
576 - MINOR: lua-thread: Replace state_from by state_id
577 - MINOR: lua-thread: Store each function reference and init reference in array
578 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
579 - MINOR: lua-thread: Add verbosity in errors
580 - REGTESTS: add a test for the threaded Lua code
581 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
582 - DOC/MINOR: Fix formatting in Management Guide
583 - MINOR: cache: Do not store stale entry
584 - MINOR: cache: Add extra "cache-control" value checks
585 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
586 - MINOR: cache: Consider invalid Age values as stale
587 - BUG/MEDIUM: lua-thread: some parts must be initialized once
588 - BUG/MINOR: lua-thread: close all states on deinit
589 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
590 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
591 - MINOR: session: Add the idle duration field into the session
592 - MINOR: mux-h1: Update session idle duration when data are received
593 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
594 - MINOR: logs: Use session idle duration when no stream is provided
595 - MINOR: stream: Always get idle duration from the session
596 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
597 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
598 - MINOR: muxes: Remove get_cs_info callback function now useless
599 - MINOR: stream: Pass an optional input buffer when a stream is created
600 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
601 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
602 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
603 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
604 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
605 - MINOR: mux-h1: Add a rxbuf into the H1 stream
606 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
607 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
608 - MINOR: mux-h1: rework the h1_timeout_task() function
609 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
610 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
611 - MINOR: mux-h1: Rework how shutdowns are handled
612 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
613 - MINOR: mux-h1: Process next request for IDLE connection only
614 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
615 - MINOR: stick-tables: Add functions to update some values of a tracked counter
616 - MINOR: session: Add functions to increase http values of tracked counters
617 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
618 - MINOR: logs: Get the multiplexer exist status when no stream is provided
619 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
620 - MAJOR: mux-h1: Create the client stream as later as possible
621 - DOC: config: Add notes about errors emitted by H1 mux
622 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
623 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
624 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
625 - MEDIUM: http-ana: Don't process partial or empty request anymore
626 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
627 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
628 - REGTESTS: Fix proxy_protocol_tlv_validation
629 - MINOR: http-ana: Properly set message flags from the start-line flags
630 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
631 - MINOR: protocol: add a ->set_port() helper to address families
632 - MINOR: listener: automatically set the port when creating listeners
633 - MINOR: listener: now use a generic add_listener() function
634 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
635 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
636 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
637 - MINOR: protocol: remove the redundant ->sock_domain field
638 - MINOR: protocol: export protocol definitions
639 - CLEANUP: protocol: group protocol struct members by usage
640 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
641 - MINOR: connection: use the control layer's init/close
642 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
643 - BUG/MAJOR: spoa/python: Fixing return None
644 - DOC: spoa/python: Fixing typo in IP related error messages
645 - DOC: spoa/python: Rephrasing memory related error messages
646 - DOC: spoa/python: Fixing typos in comments
647 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
648 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
649 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
650 - BUG/MEDIUM: spoa/python: Fixing references to None
651 - DOC: email change of the DeviceAtlas maintainer
652 - MINOR: cache: Dump secondary entries in "show cache"
653 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
654 - MINOR: stream-int: don't touch polling anymore on shutdown
655 - MINOR: connection: implement cs_drain_and_close()
656 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
657 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
658 - MINOR: checks: don't call conn_cond_update_polling() anymore
659 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
660 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
661 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
662 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
663 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
664 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
665 - BUG/MINOR: tools: Reject size format not starting by a digit
666 - MINOR: action: define enum for timeout type of the set-timeout rule
667 - MINOR: stream: prepare the hot refresh of timeouts
668 - MEDIUM: stream: support a dynamic server timeout
669 - MEDIUM: stream: support a dynamic tunnel timeout
670 - MEDIUM: http_act: define set-timeout server/tunnel action
671 - MINOR: frontend: add client timeout sample fetch
672 - MINOR: backend: add timeout sample fetches
673 - MINOR: stream: add sample fetches
674 - MINOR: stream: add timeout sample fetches
675 - REGTESTS: add regtest for http-request set-timeout
676 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
677 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
678 - MINOR: connection: remove sock-specific code from conn_sock_send()
679 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
680 - MINOR: protocol: add a ->drain() function at the connection control layer
681 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
682 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
683 - MEDIUM: connection: make use of the control layer check_events/ignore_events
684
Willy Tarreauc94431b2020-12-01 08:15:26 +01006852020/12/01 : 2.4-dev2
686 - BUILD: Make DEBUG part of .build_opts
687 - BUILD: Show the value of DEBUG= in haproxy -vv
688 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
689 - MINOR: stream: Add level 7 retries on http error 401, 403
690 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
691 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
692 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
693 - BUG/MEDIUM: http_act: Restore init of log-format list
694 - DOC: better describes how to configure a fallback crt
695 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
696 - MINOR: cache: Prepare helper functions for Vary support
697 - MEDIUM: cache: Add the Vary header support
698 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
699 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
700 - BUG/MAJOR: peers: fix partial message decoding
701 - DOC: cache: Add new caching limitation information
702 - DOC: cache: Add information about Vary support
703 - DOC: better document the config file format and escaping/quoting rules
704 - DOC: Clarify %HP description in log-format
705 - CI: github actions: update LibreSSL to 3.3.0
706 - CI: github actions: enable 51degrees feature
707 - MINOR: fd/threads: silence a build warning with threads disabled
708 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
709 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
710 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
711 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
712 - MINOR: config: Deprecate and ignore tune.chksize global option
713 - MINOR: config: Add a warning if tune.chksize is used
714 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
715 - MINOR: check: Always increment check health counter on CONPASS
716 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
717 - DOC: config: Make disable-on-404 option clearer on transition conditions
718 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
719 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
720 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
721 - MINOR: debug: add "debug dev sched" to stress the scheduler.
722 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
723 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
724 - MINOR: task: remove tasklet_insert_into_tasklet_list()
725 - MINOR: task: perform atomic counter increments only once per wakeup
726 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
727 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
728 - BUG/MEDIUM: local log format regression.
729
Willy Tarreau1a38ffc2020-11-21 16:00:40 +01007302020/11/21 : 2.4-dev1
731 - MINOR: ist: Add istend() function to return a pointer to the end of the string
732 - MINOR: sample: Add converters to parse FIX messages
733 - REGTEST: converter: Add a regtest for fix converters
734 - MINOR: sample: Add converts to parses MQTT messages
735 - REGTEST: converter: Add a regtest for MQTT converters
736 - MINOR: compat: automatically include malloc.h on glibc
737 - MEDIUM: pools: call malloc_trim() from pool_gc()
738 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
739 - MINOR: pattern: move the update revision to the pat_ref, not the expression
740 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
741 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
742 - MINOR: pattern: make the delete and prune functions more generic
743 - MEDIUM: pattern: link all final elements from the reference
744 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
745 - MINOR: pattern: remerge the list and tree deletion functions
746 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
747 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
748 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
749 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
750 - MINOR: pattern: store a generation number in the reference patterns
751 - MEDIUM: pattern: only match patterns that match the current generation
752 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
753 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
754 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
755 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
756 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
757 - MINOR: pattern: prepare removal of a pattern from the list head
758 - MEDIUM: pattern: turn the pattern chaining to single-linked list
759 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
760 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
761 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
762 - MINOR: ssl: instantiate stats module
763 - MINOR: ssl: count client hello for stats
764 - MINOR: ssl: add counters for ssl sessions
765 - DOC: config: Fix a typo on ssl_c_chain_der
766 - MINOR: server: remove idle lock in srv_cleanup_connections
767 - BUILD: ssl: silence build warning on uninitialised counters
768 - BUILD: http-htx: fix build warning regarding long type in printf
769 - REGTEST: ssl: test wildcard and multi-type + exclusions
770 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
771 - CI: Expand use of GitHub Actions for CI
772 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
773 - BUG/MINOR: pattern: a sample marked as const could be written
774 - BUG/MINOR: lua: set buffer size during map lookups
775 - MEDIUM: cache: Change caching conditions
776 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
777 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
778 - MINOR: peers: Add traces to peer_treat_updatemsg().
779 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
780 - BUG/MINOR: peers: Missing TX cache entries reset.
781 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
782 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
783 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
784 - BUG/MEDIUM: check: reuse srv proto only if using same mode
785 - MINOR: check: report error on incompatible proto
786 - MINOR: check: report error on incompatible connect proto
787 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
788 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
789 - MINOR: spoe: Don't close connection in sync mode on processing timeout
790 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
791 - MINOR: init: Fix the prototype for per-thread free callbacks
792 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
793 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
794 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
795 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
796 - REGTESTS: Add sample_fetches/cook.vtc
797 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
798 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
799 - CLEANUP: flt-trace: Remove unused random-parsing option
800 - MINOR: flt-trace: Add an option to inhibits trace messages
801 - MINOR: flt-trace: Use a bitfield for the trace options
802 - REGTESTS: Add a script to test the random forwarding with several filters
803 - REGTESTS: mark the abns test as broken again
804 - REGTESTS: converter: add url_dec test
805 - CI: Stop hijacking the hosts file
806 - CI: Make the h2spec workflow more consistent with the VTest workflow
807 - CI: travis-ci: remove amd64, osx builds
808 - CI: travis-ci: arm64 are not allowed to fail anymore
809 - DOC: add missing 3.10 in the summary
810 - MINOR: ssl: remove client hello counters
811 - MEDIUM: stats: add counters for failed handshake
812 - MINOR: ssl: create common ssl_ctx init
813 - MEDIUM: cli/ssl: configure ssl on server at runtime
814 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
815 - DOC: coding-style: update a few rules about pointers
816 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
817 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
818 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
819 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
820 - BUG/MEDIUM: ssl: error when no certificate are found
821 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
822 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
823 - CI: Github Actions: enable prometheus exporter
824 - CI: Github Actions: remove LibreSSL-3.0.2 builds
825 - CI: Github Actions: enable BoringSSL builds
826 - CI: travis-ci: remove builds migrated to GH actions
827 - BUILD: makefile: enable crypt(3) for OpenBSD
828 - CI: Github Action: run "apt-get update" before packages restore
829 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
830 - CI: Pass the github.event_name to matrix.py
831 - CI: Clean up Windows CI
832 - DOC: clarify how to create a fallback crt
833 - CLEANUP: connection: do not use conn->owner when the session is known
834 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
835 - REGTESTS: mark proxy_protocol_random_fail as broken
836 - BUG/MINOR: http_htx: Fix searching headers by substring
837 - MINOR: http_act: Add -m flag for del-header name matching method
838
Willy Tarreau1db55792020-11-05 17:20:35 +01008392020/11/05 : 2.4-dev0
840 - MINOR: version: it's development again.
841 - DOC: mention in INSTALL that it's development again
842
Willy Tarreau1c0a7222020-11-05 17:04:53 +01008432020/11/05 : 2.3.0
844 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
845 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
846 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
847 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
848 - BUG/MINOR: checks: Report a socket error before any connection attempt
849 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
850 - MINOR: server: Copy configuration file and line for server templates
851 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
852 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
853 - MINOR: debug: don't count free(NULL) in memstats
854 - BUG/MINOR: filters: Skip disabled proxies during startup only
855 - MINOR: mux_h2: capitalize frame type in stats
856 - MINOR: mux_h2: add stat for total count of connections/streams
857 - MINOR: stats: do not display empty stat module title on html
858 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
859 - BUG/MEDIUM: listener: only enable a listening listener if needed
860 - BUG/MEDIUM: listener: never suspend inherited sockets
861 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
862 - MINOR: fd: add fd_want_recv_safe()
863 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
864 - REGTESTS: mark abns_socket as working now
865 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
866 - MINOR: sock: add a check against cross worker<->master socket activities
867 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
868 - BUG/MEDIUM: server: make it possible to kill last idle connections
869 - MINOR: mworker/cli: the master CLI use its own applet
870 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
871 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
872 - DOC: Add dns as an available domain to show stat
873 - BUILD: makefile: usual reorder of objects for faster builds
874 - DOC: update INSTALL to mention that TCC is supported
875 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
876 - MINOR: version: mention that it's stable now
877
Willy Tarreaubd703e52020-10-31 13:17:06 +01008782020/10/31 : 2.3-dev9
879 - CLEANUP: http_ana: remove unused assignation of `att_beg`
880 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
881 - BUG/MINOR: log: fix memory leak on logsrv parse error
882 - BUG/MINOR: log: fix risk of null deref on error path
883 - BUILD: ssl: more elegant OpenSSL early data support check
884 - CI: github actions: update h2spec to 2.6.0
885 - BUG/MINOR: cache: Check the return value of http_replace_res_status
886 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
887 - MINOR: cache: Process the If-Modified-Since header in conditional requests
888 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
889 - MINOR: mux-h2: register a stats module
890 - MINOR: mux-h2: add counters instance to h2c
891 - MINOR: mux-h2: add stats for received frame types
892 - MINOR: mux-h2: report detected error on stats
893 - MINOR: mux-h2: count open connections/streams on stats
894 - BUG/MINOR: server: fix srv downtime calcul on starting
895 - BUG/MINOR: server: fix down_time report for stats
896 - BUG/MINOR: lua: initialize sample before using it
897 - MINOR: cache: Add Expires header value parsing
898 - MINOR: ist: Add a case insensitive istmatch function
899 - BUG/MINOR: cache: Manage multiple values in cache-control header value
900 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
901 - MINOR: pattern: make pat_ref_append() return the newly added element
902 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
903 - MINOR: pattern: export pat_ref_push()
904 - CLEANUP: pattern: use calloc() rather than malloc for structures
905 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
906
Willy Tarreaufb1b9e32020-10-24 13:14:31 +02009072020/10/24 : 2.3-dev8
908 - MINOR: backend: replace the lbprm lock with an rwlock
909 - MINOR: lb/map: use seek lock and read locks where appropriate
910 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
911 - MINOR: lb/first: use a read lock in fas_get_next_server()
912 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
913 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
914 - BUILD: ssl: make BoringSSL use its own version numbers
915 - CLEANUP: threads: don't register an initcall when not debugging
916 - MINOR: threads: change lock_t to an unsigned int
917 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
918 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
919 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
920 - MEDIUM: config: report that "nbproc" is deprecated
921 - BUG/MINOR: listener: close before free in `listener_accept`
922 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
923 - BUG/MINOR: queue: properly report redistributed connections
924 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
925 - BUILD: makefile: add entries to build common debugging tools
926 - BUG/MEDIUM: server: support changing the slowstart value from state-file
927 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
928 - MINOR: http: Add etag comparison function
929 - MEDIUM: cache: Store the ETag information in the cache_entry
930 - MEDIUM: cache: Add support for 'If-None-Match' request header
931 - REGTEST: cache: Add if-none-match test case
932 - CLEANUP: compression: Make use of http_get_etag_type()
933 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
934 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
935 - MINOR: threads/debug: only report used lock stats
936 - MINOR: threads/debug: only report lock stats for used operations
937 - MINOR: proxy; replace the spinlock with an rwlock
938 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
939 - MINOR: proxy/cli: only take a read lock in "show errors"
940 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
941 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
942 - MINOR: queue: reduce the locked area in pendconn_add()
943 - OPTIM: queue: make the nbpend counters atomic
944 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
945 - MINOR: leastconn: take the queue length into account when queuing servers
946 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
947 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
948 - MINOR: stats: support the "up" output modifier for "show stat"
949 - MINOR: stats: also support a "no-maint" show stat modifier
950 - MINOR: stats: indicate the number of servers in a backend's status
951 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
952 - REGTEST: ssl: test "set ssl cert" with separate key / crt
953 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
954 - MINOR: stats: report server's user-configured weight next to effective weight
955 - CI: travis-ci: switch to Ubuntu 20.04
956 - CONTRIB: release-estimator: Add release estimating tool
957 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
958 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
959
Willy Tarreau9d58c9b2020-10-17 10:31:50 +02009602020/10/17 : 2.3-dev7
961 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
962 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
963 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
964 - MINOR: fd: report an error message when failing initial allocations
965 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
966 - MINOR: sock: add sock_accept_conn() to test a listening socket
967 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
968 - MINOR: sockpair: implement the .rx_listening function
969 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
970 - CLEANUP: unix: make use of sock_accept_conn() where relevant
971 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
972 - CONTRIB: tcploop: implement a disconnect operation 'D'
973 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
974 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
975 - BUG/MINOR: connection: fix loop iter on connection takeover
976 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
977 - MINOR: connection: improve list api usage
978 - MINOR: mux/connection: add a new mux flag for HOL risk
979 - MINOR: connection: don't check priv flag on free
980 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
981 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
982 - MEDIUM: h2: remove conn from session on detach
983 - MEDIUM: fcgi: remove conn from session on detach
984 - DOC: Describe reuse safe for HOL handling
985 - MEDIUM: proxy: remove obsolete "mode health"
986 - MEDIUM: proxy: remove obsolete "monitor-net"
987 - CLEANUP: protocol: remove the ->drain() function
988 - CLEANUP: fd: finally get rid of fd_done_recv()
989 - MINOR: connection: make sockaddr_alloc() take the address to be copied
990 - MEDIUM: listener: allocate the connection before queuing a new connection
991 - MINOR: session: simplify error path in session_accept_fd()
992 - MINOR: connection: add new error codes for accept_conn()
993 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
994 - MINOR: protocol: add a new function accept_conn()
995 - MINOR: sock: implement sock_accept_conn() to accept a connection
996 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
997 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
998 - MEDIUM: listener: remove the second pass of fd manipulation at the end
999 - MINOR: protocol: add a default I/O callback and put it into the receiver
1000 - MINOR: log: set the UDP receiver's I/O handler in the receiver
1001 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
1002 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
1003 - DOC: improve the documentation for "option nolinger"
1004 - BUG/MEDIUM: proxy: properly stop backends
1005 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
1006 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
1007 - MINOR: threads: add the transitions to/from the seek state
1008 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
1009 - BUILD: listener: avoir a build warning when threads are disabled
1010 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
1011 - MINOR: ssl: add volatile flags to ssl samples
1012 - MEDIUM: backend: reuse connection if using a static sni
1013 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
1014 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
1015 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
1016 - DOC: fix typo in MAX_SESS_STKCTR
1017
Willy Tarreaub7ffe192020-10-10 10:45:13 +020010182020/10/10 : 2.3-dev6
1019 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
1020 - BUILD: makefile: Update feature flags for OpenBSD
1021 - DOC: agent-check: fix typo in "fail" word expected reply
1022 - DOC: crt: advise to move away from cert bundle
1023 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
1024 - REGTEST: fix host part in balance-uri-path-only.vtc
1025 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
1026 - REGTEST: the iif converter test requires 2.3
1027 - REGTEST: make agent-check.vtc require 1.8
1028 - REGTEST: make abns_socket.vtc require 1.8
1029 - REGTEST: make map_regm_with_backref require 1.7
1030 - BUILD: makefile: Update feature flags for FreeBSD
1031 - OPTIM: backend/random: never queue on the server, always on the backend
1032 - OPTIM: backend: skip LB when we know the backend is full
1033 - BUILD: makefile: Fix building with closefrom() support enabled
1034 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
1035 - MINOR: tools: support for word expansion of environment in parse_line
1036 - BUILD: tools: fix minor build issue on isspace()
1037 - BUILD: makefile: Enable closefrom() support on Solaris
1038 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
1039 - MINOR: ssl: Add error if a crt-list might be truncated
1040 - MINOR: ssl: remove uneeded check in crtlist_parse_file
1041 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
1042 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
1043 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
1044 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
1045 - DOC: ssl: new "cert bundle" behavior
1046 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
1047 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
1048 - MINOR: counters: fix a typo in comment
1049 - BUG/MINOR: stats: fix validity of the json schema
1050 - REORG: stats: export some functions
1051 - MINOR: stats: add stats size as a parameter for csv/json dump
1052 - MINOR: stats: hide px/sv/li fields in applet struct
1053 - REORG: stats: extract proxy json dump
1054 - REORG: stats: extract proxies dump loop in a function
1055 - MINOR: hlua: Display debug messages on stderr only in debug mode
1056 - MINOR: stats: define the concept of domain for statistics
1057 - MINOR: stats: define additional flag px cap on domain
1058 - MEDIUM: stats: add delimiter for static proxy stats on csv
1059 - MEDIUM: stats: define an API to register stat modules
1060 - MEDIUM: stats: add abstract type to store counters
1061 - MEDIUM: stats: integrate static proxies stats in new stats
1062 - MINOR: stats: support clear counters for dynamic stats
1063 - MINOR: stats: display extra proxy stats on the html page
1064 - MINOR: stats: add config "stats show modules"
1065 - MINOR: dns/stats: integrate dns counters in stats
1066 - MINOR: stats: remove for loop declaration
1067 - DOC: ssl: fix typo about ocsp files
1068 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
1069 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
1070 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
1071 - CLEANUP: cache: Fix leak of cconf->c.name during config check
1072 - CLEANUP: ssl: Release cached SSL sessions on deinit
1073 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
1074 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
1075 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
1076 - CLEANUP: sock-unix: Remove an unreachable goto clause
1077 - BUG/MINOR: proxy: inc req counter on new syslog messages.
1078 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
1079 - MINOR: stats: inc req counter on listeners.
1080 - MINOR: channel: new getword and getchar functions on channel.
1081 - MEDIUM: log: syslog TCP support on log forward section.
1082 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
1083 - DOC: re-work log forward bind statement documentation.
1084 - DOC: fix a confusing typo on a regsub example
1085 - BUILD: Add a DragonFlyBSD target
1086 - BUG/MINOR: makefile: fix a tiny typo in the target list
1087 - BUILD: makefile: Update feature flags for NetBSD
1088 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
1089 - DOC: Add missing stats fields in the management doc
1090 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
1091 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
1092 - DOC: Fix typos in configuration.txt
1093 - BUG/MINOR: http: Fix content-length of the default 500 error
1094 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
1095 - REGTESTS: mark abns_socket as broken
1096 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
1097 - MEDIUM: listeners: don't bounce listeners management between queues
1098 - MEDIUM: init: stop disabled proxies after initializing fdtab
1099 - MEDIUM: listeners: make unbind_listener() converge if needed
1100 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
1101 - MEDIUM: listeners: remove the now unused ZOMBIE state
1102 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
1103 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
1104 - MINOR: listeners: introduce listener_set_state()
1105 - MINOR: proxy: maintain per-state counters of listeners
1106 - MEDIUM: proxy: remove the unused PR_STFULL state
1107 - MEDIUM: proxy: remove the PR_STERROR state
1108 - MEDIUM: proxy: remove state PR_STPAUSED
1109 - MINOR: startup: don't rely on PR_STNEW to check for listeners
1110 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
1111 - MEDIUM: proxy: replace proxy->state with proxy->disabled
1112 - MEDIUM: proxy: remove start_proxies()
1113 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
1114 - MINOR: listeners: check the current listener state in pause_listener()
1115 - MINOR: listeners: check the current listener earlier state in resume_listener()
1116 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
1117 - MINOR: protocol: introduce protocol_{pause,resume}_all()
1118 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
1119 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
1120 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
1121 - BUG/MEDIUM: listeners: correctly report pause() errors
1122 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
1123 - CLEANUP: protocol: remove the ->disable_all method
1124 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
1125 - MINOR: listeners: export enable_listener()
1126 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
1127 - CLEANUP: protocol: remove the ->enable_all method
1128 - CLEANUP: listeners: remove the now unused enable_all_listeners()
1129 - MINOR: protocol: rename the ->listeners field to ->receivers
1130 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
1131 - MINOR: protocol: implement an ->rx_resume() method
1132 - MINOR: listener: use the protocol's ->rx_resume() method when available
1133 - MINOR: sock: provide a set of generic enable/disable functions
1134 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
1135 - MINOR: protocol: add a new pair of enable/disable methods for listeners
1136 - MEDIUM: listeners: now use the listener's ->enable/disable
1137 - MINOR: listeners: split delete_listener() in two versions
1138 - MINOR: listeners: count unstoppable jobs on creation, not deletion
1139 - MINOR: listeners: add a new stop_listener() function
1140 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
1141 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
1142 - MEDIUM: proxy: centralize proxy status update and reporting
1143 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
1144 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
1145 - MEDIUM: udp: implement udp_suspend() and udp_resume()
1146 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
1147 - MEDIUM: listeners: always close master vs worker listeners
1148 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
1149 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
1150 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
1151 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
1152 - MEDIUM: receivers: add an rx_unbind() method in the protocols
1153 - MINOR: listeners: split do_unbind_listener() in two
1154 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
1155 - MEDIUM: config: mark "grace" as deprecated
1156 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
1157 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
1158 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
1159 - BUILD: makefile: Enable getaddrinfo() on OS/X
1160
Christopher Faulet05f01882020-09-25 18:40:47 +020011612020/09/25 : 2.3-dev5
1162 - DOC: Fix typo in iif() example
1163 - CLEANUP: Update .gitignore
1164 - BUILD: introduce possibility to define ABORT_NOW() conditionally
1165 - CI: travis-ci: help Coverity to recognize abort()
1166 - BUG/MINOR: Fix type passed of sizeof() for calloc()
1167 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
1168 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
1169 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
1170 - BUG/MINOR: ssl: verifyhost is case sensitive
1171 - BUILD: makefile: change default value of CC from gcc to cc
1172 - CI: travis-ci: split asan step out of running tests
1173 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
1174 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
1175 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
1176 - BUG/MINOR: log-forward: fail on unknown keywords
1177 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
1178 - BUG/MEDIUM: log-forward: always quit on parsing errors
1179 - MEDIUM: ssl: remove bundle support in crt-list and directories
1180 - MEDIUM: ssl/cli: remove support for multi certificates bundle
1181 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
1182 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
1183 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
1184 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
1185 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
1186 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
1187 - CLEANUP: ssl: remove utility functions for bundle
1188 - DOC: explain bundle emulation in configuration.txt
1189 - BUILD: fix build with openssl < 1.0.2 since bundle removal
1190 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
1191 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
1192 - MINOR: listener: create a new struct "settings" in bind_conf
1193 - MINOR: listener: move bind_proc and bind_thread to struct settings
1194 - MINOR: listener: move the interface to the struct settings
1195 - MINOR: listener: move the network namespace to the struct settings
1196 - REORG: listener: create a new struct receiver
1197 - REORG: listener: move the listening address to a struct receiver
1198 - REORG: listener: move the receiving FD to struct receiver
1199 - REORG: listener: move the listener's proto to the receiver
1200 - MINOR: listener: make sock_find_compatible_fd() check the socket type
1201 - REORG: listener: move the receiver part to a new file
1202 - MINOR: receiver: link the receiver to its settings
1203 - MINOR: receiver: link the receiver to its owner
1204 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
1205 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
1206 - MINOR: listener: move the INHERITED flag down to the receiver
1207 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
1208 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
1209 - MINOR: protocol: rename the ->bind field to ->listen
1210 - MINOR: protocol: add a new ->bind() entry to bind the receiver
1211 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
1212 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
1213 - MEDIUM: udp: make use of sock_inet_bind_receiver()
1214 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
1215 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
1216 - MEDIUM: sockpair: implement sockpair_bind_receiver()
1217 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
1218 - MEDIUM: protocol: explicitly start the receiver before the listener
1219 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
1220 - MINOR: protocol: add a new proto_fam structure for protocol families
1221 - MINOR: protocol: retrieve the family-specific fields from the family
1222 - CLEANUP: protocol: remove family-specific fields from struct protocol
1223 - MINOR: protocol: add a real family for existing FDs
1224 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
1225 - MINOR: tools: make str2sa_range() take more options than just resolve
1226 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
1227 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
1228 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
1229 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
1230 - MINOR: listener: remove the inherited arg to create_listener()
1231 - MINOR: tools: make str2sa_range() optionally return the fd
1232 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
1233 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
1234 - MINOR: config: do not test an inherited socket again
1235 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
1236 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
1237 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
1238 - MINOR: tools: remove the central test for "udp" in str2sa_range()
1239 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
1240 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
1241 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
1242 - MINOR: listener: pass the chosen protocol to create_listeners()
1243 - MINOR: tools: make str2sa_range() directly return the protocol
1244 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
1245 - MINOR: protocol: add the control layer type in the protocol struct
1246 - MEDIUM: protocol: store the socket and control type in the protocol array
1247 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
1248 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
1249 - MINOR: tools: drop listener detection hack from str2sa_range()
1250 - BUILD: sock_unix: add missing errno.h
1251 - MINOR: sock_inet: report the errno string in binding errors
1252 - MINOR: sock_unix: report the errno string in binding errors
1253 - BUILD: sock_inet: include errno.h
1254 - MINOR: h2/trace: also display the remaining frame length in traces
1255 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
1256 - BUG/MEDIUM: h2: report frame bits only for handled types
1257 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
1258 - BUG/MINOR: Fix memory leaks cfg_parse_peers
1259 - BUG/MINOR: config: Fix memory leak on config parse listen
1260 - MINOR: backend: make the "whole" option of balance uri take only one bit
1261 - MINOR: backend: add a new "path-only" option to "balance uri"
1262 - REGTESTS: add a few load balancing tests
1263 - BUG/MEDIUM: listeners: do not pause foreign listeners
1264 - BUG/MINOR: listeners: properly close listener FDs
1265 - BUILD: trace: include tools.h
1266
Willy Tarreau253c4dc2020-09-11 17:05:59 +020012672020/09/11 : 2.3-dev4
1268 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
1269 - BUG/MEDIUM: ssl: crt-list negative filters don't work
1270 - DOC: overhauling github issue templates
1271 - MEDIUM: cfgparse: Emit hard error on truncated lines
1272 - DOC: cache: Use '<name>' instead of '<id>' in error message
1273 - MINOR: cache: Reject duplicate cache names
1274 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
1275 - MINOR: stats: prevent favicon.ico requests for stats page
1276 - BUILD: tools: include auxv a bit later
1277 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
1278 - MEDIUM: ssl: Support certificate chaining for certificate generation
1279 - MINOR: ssl: Support SAN extension for certificate generation
1280 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
1281 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
1282 - MINOR: reload: determine the foreing binding status from the socket
1283 - MEDIUM: reload: stop passing listener options along with FDs
1284 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
1285 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
1286 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
1287 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
1288 - MEDIUM: reload: pass all exportable FDs, not just listeners
1289 - DOC: add description of pidfile in master-worker mode
1290 - BUG/MINOR: reload: do not fail when no socket is sent
1291 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
1292 - CLEANUP: tcp: stop exporting smp_fetch_src()
1293 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
1294 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
1295 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
1296 - REORG: sock: start to move some generic socket code to sock.c
1297 - MINOR: sock: introduce sock_inet and sock_unix
1298 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
1299 - MINOR: sock_inet: implement sock_inet_get_dst()
1300 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
1301 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
1302 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
1303 - REORG: listener: move xfer_sock_list to sock.{c,h}.
1304 - MINOR: sock: add interface and namespace length to xfer_sock_list
1305 - MINOR: sock: implement sock_find_compatible_fd()
1306 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
1307 - REORG: sock: move get_old_sockets() from haproxy.c
1308 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
1309 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
1310 - BUILD: sock_unix: fix build issue with isdigit()
1311 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
1312 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
1313 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
1314 - MINOR: http-htx: Handle an optional reason when replacing the response status
1315 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
1316 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
1317 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
1318 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
1319 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
1320 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
1321 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
1322 - REGTEST: increase some short timeouts to make tests more reliable
1323 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
1324 - BUILD: thread: limit the libgcc_s workaround to glibc only
1325 - MINOR: protocol: do not call proto->bind_all() anymore
1326 - MINOR: protocol: do not call proto->unbind_all() anymore
1327 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
1328 - MAJOR: init: start all listeners via protocols and not via proxies anymore
1329 - BUG/MINOR: startup: haproxy -s cause 100% cpu
1330 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
1331 - BUG/MEDIUM: doc: Fix replace-path action description
1332 - MINOR: http-rules: Add set-pathq and replace-pathq actions
1333 - MINOR: http-fetch: Add pathq sample fetch
1334 - REGTEST: Add a test for request path manipulations, with and without the QS
1335 - MINOR: Commit .gitattributes
1336 - CLEANUP: Update .gitignore
1337 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
1338 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
1339 - MINOR: server: Improve log message sent when server address is updated
1340 - DOC: ssl-load-extra-files only applies to certificates on bind lines
1341 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
1342 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
1343 - BUILD: threads: better workaround for late loading of libgcc_s
1344 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
1345 - BUILD: compiler: workaround a glibc madness around __attribute__()
1346 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
1347 - BUILD: trace: always have an argument before variadic args in macros
1348 - BUILD: traces: don't pass an empty argument for missing ones
1349 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
1350 - CLEANUP: Free old_argv on deinit
1351 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
1352 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
1353 - CLEANUP: haproxy: Free post_check_list in deinit()
1354 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
1355 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
1356 - MINOR: sample: Add iif(<true>,<false>) converter
1357
Willy Tarreauf104b532020-08-14 18:54:05 +020013582020/08/14 : 2.3-dev3
1359 - SCRIPTS: git-show-backports: make -m most only show the left branch
1360 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
1361 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
1362 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
1363 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
1364 - CLEANUP: dns: typo in reported error message
1365 - BUG/MAJOR: dns: disabled servers through SRV records never recover
1366 - BUG/MINOR: spoa-server: fix size_t format printing
1367 - DOC: spoa-server: fix false friends `actually`
1368 - BUG/MINOR: ssl: fix memory leak at OCSP loading
1369 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
1370 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
1371 - MINOR: arg: Add an argument type to keep a reference on opaque data
1372 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
1373 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
1374 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
1375 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
1376 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
1377 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
1378 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
1379 - MEDIUM: lua: Don't filter exported fetches and converters
1380 - MINOR: lua: Add support for userlist as fetches and converters arguments
1381 - MINOR: lua: Add support for regex as fetches and converters arguments
1382 - MINOR: arg: Use chunk_destroy() to release string arguments
1383 - BUG/MINOR: snapshots: leak of snapshots on deinit()
1384 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
1385 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
1386 - CLEANUP: fix all duplicated semicolons
1387 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
1388 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
1389 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
1390 - BUILD: makefile: don't disable -Wstringop-overflow anymore
1391 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
1392 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
1393 - BUG/MEDIUM: ssl: never generates the chain from the verify store
1394 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
1395 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
1396 - CLEANUP: ssl: remove poorly readable nested ternary
1397
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020013982020/07/31 : 2.3-dev2
1399 - DOC: ssl: req_ssl_sni needs implicit TLS
1400 - BUG/MEDIUM: arg: empty args list must be dropped
1401 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
1402 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
1403 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
1404 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
1405 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
1406 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
1407 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
1408 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
1409 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
1410 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
1411 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
1412 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
1413 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
1414 - BUILD: tools: fix build with static only toolchains
1415 - DOC: Use gender neutral language
1416 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
1417 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
1418 - BUG/MAJOR: dns: don't treat Authority records as an error
1419 - CI : travis-ci : prepare for using stock OpenSSL
1420 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
1421 - MEDIUM: lua: Add support for the Lua 5.4
1422 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
1423 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
1424 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
1425 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
1426 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
1427 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
1428 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
1429 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
1430 - MINOR: connection: Preinstall the mux for non-ssl connect
1431 - MINOR: stream-int: Be sure to have a mux to do sends and receives
1432 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
1433 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
1434 - CI: travis-ci: use better name for Coverity scan job
1435 - CI: travis-ci: use proper linking flags for SLZ build
1436 - BUG/MEDIUM: backend: always attach the transport before installing the mux
1437 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
1438 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
1439 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
1440 - MINOR: mux-h1: do not try to receive on backend before sending a request
1441 - CLEANUP: assorted typo fixes in the code and comments
1442 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
1443
Willy Tarreaue732cbd2020-07-17 15:13:19 +020014442020/07/17 : 2.3-dev1
1445 - MINOR: config: make strict limits enabled by default
1446 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
1447 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
1448 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
1449 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
1450 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
1451 - BUG/MINOR: haproxy: Free srule->file during deinit
1452 - BUG/MINOR: haproxy: Free srule->expr during deinit
1453 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
1454 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
1455 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
1456 - CLEANUP: haproxy: Free post_deinit_list in deinit()
1457 - CLEANUP: haproxy: Free server_deinit_list in deinit()
1458 - CLEANUP: haproxy: Free post_server_check_list in deinit()
1459 - CLEANUP: Add static void vars_deinit()
1460 - CLEANUP: Add static void hlua_deinit()
1461 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
1462 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
1463 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
1464 - MINOR: tcp: Support TCP keepalive parameters customization
1465 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
1466 - MINOR: lists: rename some MT_LIST operations to clarify them
1467 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
1468 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
1469 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
1470 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
1471 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
1472 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
1473 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
1474 - MINOR: connection: Set the SNI on server connections before installing the mux
1475 - MINOR: connection: Set new connection as private on reuse never
1476 - MINOR: connection: Add a wrapper to mark a connection as private
1477 - MEDIUM: connection: Add private connections synchronously in session server list
1478 - MINOR: connection: Use a dedicated function to look for a session's connection
1479 - MINOR: connection: Set the conncetion target during its initialisation
1480 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
1481 - MINOR: server: Factorize code to deal with reuse of server idle connections
1482 - MINOR: server: Factorize code to deal with connections removed from an idle list
1483 - CLEANUP: connection: remove unused field idle_time from the connection struct
1484 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
1485 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
1486 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
1487 - MINOR: backend: Add sample fetches to get the server's weight
1488 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
1489 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
1490 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
1491 - BUG/MINOR: backend: fix potential null deref on srv_conn
1492 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
1493 - MEDIUM: udp: adds minimal proto udp support for message listeners.
1494 - MEDIUM: log/sink: re-work and merge of build message API.
1495 - MINOR: log: adds syslog udp message handler and parsing.
1496 - MEDIUM: log: adds log forwarding section.
1497 - MINOR: log: adds counters on received syslog messages.
1498 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
1499 - BUG/MEDIUM: server: resolve state file handle leak on reload
1500 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
1501 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
1502 - BUILD: config: address build warning on raspbian+rpi4
1503 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
1504 - BUILD: config: fix again bugs gcc warnings on calloc
1505
Willy Tarreau33205c22020-07-07 16:35:28 +020015062020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02001507 - [RELEASE] Released version 2.3-dev0
1508 - MINOR: version: back to development, update status message
1509
15102020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02001511 - exact copy of 2.2.0
1512
Willy Tarreau3a00c912020-07-07 16:33:14 +020015132020/07/07 : 2.2.0
1514 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
1515 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
1516 - BUILD: tools: make resolve_sym_name() return a const
1517 - CLEANUP: auth: fix useless self-include of auth-t.h
1518 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
1519 - CLEANUP: assorted typo fixes in the code and comments
1520 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
1521 - DOC: fix tune.ssl.keylog sample fetches array
1522 - BUG/MINOR: ssl: check conn in keylog sample fetch
1523 - DOC: configuration: various typo fixes
1524 - MINOR: log: Remove unused case statement during the log-format string parsing
1525 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
1526 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
1527 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
1528 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
1529 - MINOR: mux-h1: Improve traces about the splicing
1530 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
1531 - BUG/MEDIUM: connection: Don't consider new private connections as available
1532 - BUG/MINOR: connection: See new connection as available only on reuse always
1533 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
1534 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
1535 - DOC: update INSTALL with new compiler versions
1536 - DOC: minor update to coding style file
1537 - MINOR: version: mention that it's an LTS release now
1538
Willy Tarreau62f11a52020-07-04 07:10:24 +020015392020/07/04 : 2.2-dev12
1540 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
1541 - MINOR: cli: make "show sess" stop at the last known session
1542 - CLEANUP: buffers: remove unused buffer_wq_lock lock
1543 - BUG/MEDIUM: buffers: always allocate from the local cache first
1544 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
1545 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
1546 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
1547 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
1548 - REORG: buffer: rename buffer.c to dynbuf.c
1549 - REORG: includes: create tinfo.h for the thread_info struct
1550 - CLEANUP: pool: only include the type files from types
1551 - MINOR: pools: move the LRU cache heads to thread_info
1552 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
1553 - MINOR: stats: add 3 new output values for the per-server idle conn state
1554 - MINOR: activity: add per-thread statistics on FD takeover
1555 - BUG/MINOR: server: start cleaning idle connections from various points
1556 - MEDIUM: server: improve estimate of the need for idle connections
1557 - MINOR: stats: add the estimated need of concurrent connections per server
1558 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
1559 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
1560 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
1561 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
1562 - BUG/MINOR: server: always count one idle slot for current thread
1563 - MEDIUM: server: use the two thresholds for the connection release algorithm
1564 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
1565 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
1566 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
1567 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
1568 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
1569 - MINOR: pools: increase MAX_BASE_POOLS to 64
1570 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
1571 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
1572 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
1573 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
1574 - BUG/MINOR: proxy: always initialize the trash in show servers state
1575 - MINOR: cli/proxy: add a new "show servers conn" command
1576 - MINOR: server: skip servers with no idle conns earlier
1577 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
1578 - MEDIUM: server: add a new pool-low-conn server setting
1579 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
1580 - MINOR: backend: don't always takeover from the same threads
1581 - MINOR: sched: make sched->task_list_size atomic
1582 - MEDIUM: sched: create a new TASK_KILLED task flag
1583 - MEDIUM: sched: implement task_kill() to kill a task
1584 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
1585 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
1586 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
1587 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
1588 - CLEANUP: connections: rename the toremove_lock to takeover_lock
1589 - MEDIUM: connections: Don't use a lock when moving connections to remove.
1590 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
1591 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
1592 - MINOR: config: add a new tune.idle-pool.shared global setting.
1593 - MINOR: 51d: silence a warning about null pointer dereference
1594 - MINOR: debug: add a new "debug dev memstats" command
1595 - MINOR: log-format: allow to preserve spacing in log format strings
1596 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
1597 - BUG/MAJOR: sched: make sure task_kill() always queues the task
1598 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
1599 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
1600 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
1601 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
1602 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
1603 - BUG/MINOR: log: missing timezone on iso dates.
1604 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
1605 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
1606 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
1607 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
1608 - BUG/MINOR: http_act: don't check capture id in backend (2)
1609 - BUILD: makefile: disable threads by default on OpenBSD
1610 - BUILD: peers: fix build warning with gcc 4.2.1
1611 - CI: cirrus-ci: exclude slow reg-tests
1612
Willy Tarreau4462af82020-06-26 22:01:04 +020016132020/06/26 : 2.2-dev11
1614 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
1615 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
1616 - BUG/MINOR: spoe: correction of setting bits for analyzer
1617 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
1618 - MINOR: cfgparse: Warn on truncated lines / files
1619 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
1620 - MINOR: debug: add a new DEBUG_FD build option
1621 - BUG/MINOR: tasks: make sure never to exceed max_processed
1622 - MINOR: task: add a new pointer to current tasklet queue
1623 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
1624 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
1625 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
1626 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
1627 - MINOR: ssl: free bind_conf_node in crtlist_free()
1628 - MINOR: ssl: free the crtlist and the ckch during the deinit()
1629 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
1630 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
1631 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
1632 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
1633 - MINOR: tasks: make current_queue an index instead of a pointer
1634 - MINOR: tasks: add a mask of the queues with active tasklets
1635 - MINOR: tasks: pass the queue index to run_task_from_list()
1636 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
1637 - MEDIUM: tasks: add a tune.sched.low-latency option
1638 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
1639 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
1640 - MINOR: tools: make parse_line() always terminate the args list
1641 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
1642 - MINOR: cfgparse: sanitize the output a little bit
1643 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
1644 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
1645 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
1646 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
1647 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
1648 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
1649 - MINOR: spoe: Don't systematically create new applets if processing rate is low
1650 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
1651 - BUILD: fix ssl_sample.c when building against BoringSSL
1652 - CI: travis-ci: switch BoringSSL builds to ninja
1653 - CI: extend spellchecker whitelist
1654 - DOC: assorted typo fixes in the documentation
1655 - CLEANUP: assorted typo fixes in the code and comments
1656 - MINOR: http: Add support for http 413 status
1657 - REGTEST: ssl: tests the ssl_f_* sample fetches
1658 - REGTEST: ssl: add some ssl_c_* sample fetches test
1659 - DOC: ssl: update the documentation of "commit ssl cert"
1660 - BUG/MINOR: cfgparse: correctly deal with empty lines
1661 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
1662
Willy Tarreaudc0936c2020-06-19 21:43:26 +020016632020/06/19 : 2.2-dev10
1664 - BUILD: include: add sys/types before netinet/tcp.h
1665 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
1666 - BUILD: Remove nowarn for warnings that do not trigger
1667 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
1668 - BUILD: Re-enable -Wimplicit-fallthrough
1669 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
1670 - BUILD: thread: add parenthesis around values of locking macros
1671 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
1672 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
1673 - CI: travis-ci: use "-O1" for clang builds
1674 - MINOR: haproxy: Add void deinit_and_exit(int)
1675 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
1676 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
1677 - BUILD: compression: make gcc 10 happy with free_zlib()
1678 - BUILD: atomic: add string.h for memcpy() on ARM64
1679 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
1680 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
1681 - BUILD: haproxy: mark deinit_and_exit() as noreturn
1682 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
1683 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
1684 - MINOR: tools: add a new configurable line parse, parse_line()
1685 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
1686 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
1687 - MINOR: http: do not close connections anymore after internal responses
1688 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
1689 - BUG/MINOR: spoe: add missing key length check before checking key names
1690 - MINOR: version: put the compiler version output into version.c not haproxy.c
1691 - MINOR: compiler: always define __has_feature()
1692 - MINOR: version: report the presence of the compiler's address sanitizer
1693 - BUILD: Fix build by including haproxy/global.h
1694 - BUG/MAJOR: connection: always disable ready events once reported
1695 - CLEANUP: activity: remove unused counter fd_lock
1696 - DOC: fd: make it clear that some fields ordering must absolutely be respected
1697 - MINOR: activity: report the number of times poll() reports I/O
1698 - MINOR: activity: rename confusing poll_* fields in the output
1699 - MINOR: fd: Fix a typo in a coment.
1700 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
1701 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
1702 - MINOR: activity: group the per-loop counters at the top
1703 - MINOR: activity: rename the "stream" field to "stream_calls"
1704 - MEDIUM: fd: refine the fd_takeover() migration lock
1705 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
1706 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
1707 - MINOR: peers: do not use localpeer as an array anymore
1708 - MEDIUM: peers: add the "localpeer" global option
1709 - MEDIUM: fd: add experimental support for edge-triggered polling
1710 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
1711 - MINOR: haproxy: process signals before runnable tasks
1712 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
1713 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
1714 - BUG/MINOR: cli: allow space escaping on the CLI
1715 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
1716 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
1717 - REGTEST: http-rules: test spaces in ACLs
1718 - REGTEST: http-rules: test spaces in ACLs with master CLI
1719 - BUG/MAJOR: init: properly compute the default global.maxpipes value
1720 - MEDIUM: map: make the "clear map" operation yield
1721 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
1722 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
1723 - BUG/MINOR: systemd: Wait for network to be online
1724 - DOC: configuration: Unindent non-code sentences in the protobuf example
1725 - DOC: configuration: http-check send was missing from matrix
1726
Willy Tarreau1385c882020-06-11 10:22:10 +020017272020/06/11 : 2.2-dev9
1728 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
1729 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
1730 - MINOR: checks: Remove dead code from process_chk_conn()
1731 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
1732 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
1733 - MINOR: lua: Use vars_unset_by_name_ifexist()
1734 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
1735 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
1736 - MINOR: lua: Make `set_var()` and `unset_var()` return success
1737 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
1738 - MEDIUM: ring: new section ring to declare custom ring buffers.
1739 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
1740 - REGTESTS: Require the version 2.2 to execute lua/set_var
1741 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
1742 - MINOR: checks: Remove useless tests on the connection and conn-stream
1743 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
1744 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
1745 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
1746 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
1747 - MINOR: pools: compute an estimate of each pool's average needed objects
1748 - MEDIUM: pools: directly free objects when pools are too much crowded
1749 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
1750 - MINOR: http-ana: Make the function http_reply_to_htx() public
1751 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
1752 - MINOR: http-rules: Use an action function to eval http-request auth rules
1753 - CLEANUP: http: Remove unused HTTP message templates
1754 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
1755 - MINOR: checks: I/O callback function only rely on the data layer wake callback
1756 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
1757 - BUG/MEDIUM: logs: fix trailing zeros on log message.
1758 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
1759 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
1760 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
1761 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
1762 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
1763 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
1764 - MINOR: ring: re-work ring attach generic API.
1765 - BUG/MINOR: error on unknown statement in ring section.
1766 - MEDIUM: ring: add server statement to forward messages from a ring
1767 - MEDIUM: ring: add new srv statement to support octet counting forward
1768 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
1769 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
1770 - BUILD: sink: address build warning on 32-bit architectures
1771 - BUG/MINOR: peers: fix internal/network key type mapping.
1772 - CLEANUP: regex: remove outdated support for regex actions
1773 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
1774 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
1775 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
1776 - DOC: add a line about comments in crt-list
1777 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
1778 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
1779 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
1780 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
1781 - BUG/MINOR: init: -x can have a parameter starting with a dash
1782 - BUG/MINOR: init: -S can have a parameter starting with a dash
1783 - BUG/MEDIUM: mworker: fix the reload with an -- option
1784 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
1785 - BUG/MINOR: mworker: fix a memleak when execvp() failed
1786 - MINOR: sample: Add secure_memcmp converter
1787 - REORG: ebtree: move the C files from ebtree/ to src/
1788 - REORG: ebtree: move the include files from ebtree to include/import/
1789 - REORG: ebtree: clean up remains of the ebtree/ directory
1790 - REORG: include: create new file haproxy/api-t.h
1791 - REORG: include: create new file haproxy/api.h
1792 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
1793 - CLEANUP: include: remove common/config.h
1794 - CLEANUP: include: remove unused template.h
1795 - REORG: include: move MIN/MAX from tools.h to compat.h
1796 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
1797 - CLEANUP: include: remove unused common/tools.h
1798 - REORG: include: move the base files from common/ to haproxy/
1799 - REORG: include: move version.h to haproxy/
1800 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
1801 - REORG: include: move openssl-compat.h from common/ to haproxy/
1802 - REORG: include: move ist.h from common/ to import/
1803 - REORG: include: move the BUG_ON() code to haproxy/bug.h
1804 - REORG: include: move debug.h from common/ to haproxy/
1805 - CLEANUP: debug: drop unused function p_malloc()
1806 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
1807 - REORG: include: move istbuf.h to haproxy/
1808 - REORG: include: split mini-clist into haproxy/list and list-t.h
1809 - REORG: threads: extract atomic ops from hathreads.h
1810 - CLEANUP: threads: remove a few needless includes of hathreads.h
1811 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
1812 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
1813 - REORG: include: move time.h from common/ to haproxy/
1814 - REORG: include: move integer manipulation functions from standard.h to intops.h
1815 - CLEANUP: include: remove excessive includes of common/standard.h
1816 - REORG: include: move freq_ctr to haproxy/
1817 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
1818 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
1819 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
1820 - MINOR: memory: don't let __pool_get_first() pick from the cache
1821 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
1822 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
1823 - MEDIUM: memory: make local pools independent on lockless pools
1824 - REORG: include: move common/memory.h to haproxy/pool.h
1825 - REORG: include: move common/chunk.h to haproxy/chunk.h
1826 - REORG: include: move activity to haproxy/
1827 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
1828 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
1829 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
1830 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
1831 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
1832 - REORG: include: move common/ticks.h to haproxy/ticks.h
1833 - REORG: include: split common/http.h into haproxy/http{,-t}.h
1834 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
1835 - REORG: include: move common/h1.h to haproxy/h1.h
1836 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
1837 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
1838 - REORG: include: move common/h2.h to haproxy/h2.h
1839 - REORG: include: move common/fcgi.h to haproxy/
1840 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
1841 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
1842 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
1843 - REORG: include: move shctx to haproxy/shctx{,-t}.h
1844 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
1845 - REORG: include: move fd.h to haproxy/fd{,-t}.h
1846 - REORG: include: move ring to haproxy/ring{,-t}.h
1847 - REORG: include: move sink.h to haproxy/sink{,-t}.h
1848 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
1849 - CLEANUP: include: remove empty raw_sock.h
1850 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
1851 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
1852 - REORG: include: move compression.h to haproxy/compression{,-t}.h
1853 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
1854 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
1855 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
1856 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
1857 - REORG: include: move action.h to haproxy/action{,-t}.h
1858 - REORG: include: move arg.h to haproxy/arg{,-t}.h
1859 - REORG: include: move auth.h to haproxy/auth{,-t}.h
1860 - REORG: include: move dns.h to haproxy/dns{,-t}.h
1861 - REORG: include: move flt_http_comp.h to haproxy/
1862 - REORG: include: move counters.h to haproxy/counters-t.h
1863 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
1864 - REORG: include: move capture.h to haproxy/capture{,-t}.h
1865 - REORG: include: move frontend.h to haproxy/frontend.h
1866 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
1867 - REORG: include: move http_rules.h to haproxy/http_rules.h
1868 - CLEANUP: include: remove unused mux_pt.h
1869 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
1870 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
1871 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
1872 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
1873 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
1874 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
1875 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
1876 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
1877 - REORG: include: move listener.h to haproxy/listener{,-t}.h
1878 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
1879 - REORG: include: move map to haproxy/map{,-t}.h
1880 - REORG: include: move payload.h to haproxy/payload.h
1881 - REORG: include: move sample.h to haproxy/sample{,-t}.h
1882 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
1883 - REORG: include: move vars.h to haproxy/vars{,-t}.h
1884 - REORG: include: split global.h into haproxy/global{,-t}.h
1885 - REORG: include: move task.h to haproxy/task{,-t}.h
1886 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
1887 - REORG: include: move signal.h to haproxy/signal{,-t}.h
1888 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
1889 - REORG: include: move connection.h to haproxy/connection{,-t}.h
1890 - REORG: include: move checks.h to haproxy/check{,-t}.h
1891 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
1892 - REORG: include: move peers.h to haproxy/peers{,-t}.h
1893 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
1894 - REORG: include: move session.h to haproxy/session{,-t}.h
1895 - REORG: include: move trace.h to haproxy/trace{,-t}.h
1896 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
1897 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
1898 - REORG: move applet.h to haproxy/applet{,-t}.h
1899 - REORG: include: move stats.h to haproxy/stats{,-t}.h
1900 - REORG: include: move cli.h to haproxy/cli{,-t}.h
1901 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
1902 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
1903 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
1904 - REORG: include: move channel.h to haproxy/channel{,-t}.h
1905 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
1906 - REORG: include: move filters.h to haproxy/filters{,-t}.h
1907 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
1908 - REORG: include: move log.h to haproxy/log{,-t}.h
1909 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
1910 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
1911 - REORG: include: move backend.h to haproxy/backend{,-t}.h
1912 - REORG: include: move queue.h to haproxy/queue{,-t}.h
1913 - REORG: include: move server.h to haproxy/server{,-t}.h
1914 - REORG: include: move stream.h to haproxy/stream{,-t}.h
1915 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
1916 - CLEANUP: hpack: export debug functions and move inlines to .h
1917 - REORG: check: move the e-mail alerting code to mailers.c
1918 - REORG: check: move tcpchecks away from check.c
1919 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
1920 - REORG: check: extract the external checks from check.{c,h}
1921 - CLEANUP: include: don't include stddef.h directly
1922 - CLEANUP: include: don't include proxy-t.h in global-t.h
1923 - CLEANUP: include: move sample_data out of sample-t.h
1924 - REORG: include: move the error reporting functions to from log.h to errors.h
1925 - BUILD: reorder objects in the Makefile for faster builds
1926 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
1927 - CLEANUP: include: make atomic.h part of the base API
1928 - REORG: include: move MAX_THREADS to defaults.h
1929 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
1930 - CLEANUP: include: tree-wide alphabetical sort of include files
1931 - REORG: include: make list-t.h part of the base API
1932 - REORG: dgram: rename proto_udp to dgram
1933
Willy Tarreau73b943b2020-05-22 16:19:04 +020019342020/05/22 : 2.2-dev8
1935 - MINOR: checks: Improve report of unexpected errors for expect rules
1936 - MEDIUM: checks: Add matching on log-format string for expect rules
1937 - DOC: Fix req.body and co documentation to be accurate
1938 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
1939 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
1940 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
1941 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
1942 - MINOR: checks/sample: Remove unnecessary tests on the sample session
1943 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
1944 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
1945 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
1946 - MINOR: checks: Support log-format string to set the body for HTTP send rules
1947 - DOC: Be more explicit about configurable check ok/error/timeout status
1948 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
1949 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
1950 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
1951 - REGTESTS: make the http-check-send test require version 2.2
1952 - BUG/MINOR: http-ana: fix NTLM response parsing again
1953 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
1954 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
1955 - MINOR: cfgparse: Improve error message for invalid \x sequences
1956 - CI: travis-ci: enable arm64 builds again
1957 - MEDIUM: ssl: increase default-dh-param to 2048
1958 - CI: travis-ci: skip pcre2 on arm64 build
1959 - CI: travis-ci: extend the build time for SSL to 60 minutes
1960 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
1961 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
1962 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
1963 - CLEANUP: remove THREAD_LOCAL from config.h
1964 - CI: travis-ci: upgrade LibreSSL versions
1965 - DOC: assorted typo fixes in the documentation
1966 - CI: extend spellchecker whitelist
1967 - CLEANUP: assorted typo fixes in the code and comments
1968 - MAJOR: contrib: porting spoa_server to support python3
1969 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
1970 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
1971 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
1972 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
1973 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
1974 - MINOR: sample: Add digest and hmac converters
1975 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
1976 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
1977 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
1978 - BUG/MINOR: pollers: remove uneeded free in global init
1979 - CLEANUP: select: enhance readability in init
1980 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
1981 - MINOR: soft-stop: let the first stopper only signal other threads
1982 - BUILD: select: only declare existing local labels to appease clang
1983 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
1984 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
1985 - DOC: retry-on can only be used with mode http
1986 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
1987 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
1988 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
1989 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
1990 - REORG: ssl: move macros and structure definitions to ssl_sock.h
1991 - CLEANUP: ssl: remove the shsess_* macros
1992 - REORG: move the crt-list structures in their own .h
1993 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
1994 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
1995 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
1996 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
1997 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
1998 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
1999 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
2000 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
2001 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
2002 - MINOR: ssl: remove static keyword in some SSL utility functions
2003 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
2004 - REORG: ssl: move sample fetches to src/ssl_sample.c
2005 - REORG: ssl: move utility functions to src/ssl_utils.c
2006 - DOC: ssl: update MAINTAINERS file
2007 - CI: travis-ci: switch arm64 builds to use openssl from distro
2008 - MINOR: stats: Prepare for more accurate moving averages
2009 - MINOR: stats: Expose native cum_req metric for a server
2010 - MEDIUM: stats: Enable more accurate moving average calculation for stats
2011 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
2012 - BUILD: ssl: include errno.h in ssl_crtlist.c
2013 - CLEANUP: acl: remove unused assignment
2014 - DOC/MINOR: halog: Add long help info for ic flag
2015 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
2016 - DOC: SPOE is no longer experimental
2017 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
2018 - MINOR: config: Don't dump keywords if argument is NULL
2019 - MEDIUM: checks: Make post-41 the default mode for mysql checks
2020 - BUG/MINOR: logs: prevent double line returns in some events.
2021 - MEDIUM: sink: build header in sink_write for log formats
2022 - MEDIUM: logs: buffer targets now rely on new sink_write
2023 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
2024 - MEDIUM: hpack: use a pool for the hpack table
2025 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
2026 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
2027 - MINOR: applet: adopt the wait list entry from the CLI
2028 - MINOR: ring: make the applet code not depend on the CLI
2029 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
2030 - CI: travis-ci: fix libslz download URL
2031 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
2032 - CLEANUP: http_ana: Remove unused TXN flags
2033 - BUG/MINOR: http-rules: Mark http return rules as final
2034 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
2035 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
2036 - MINOR: http-rules: Use http_reply structure for http return rules
2037 - MINOR: http-htx: Use a dedicated function to release http_reply objects
2038 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
2039 - MINOR: http-htx: Use a dedicated function to check http reply validity
2040 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
2041 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
2042 - MINOR: http-htx: Store default error messages in a global http reply array
2043 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
2044 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
2045 - MINOR: proxy: Add references on http replies for proxy error messages
2046 - MINOR: http-htx: Use http reply from the http-errors section
2047 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
2048 - MEDIUM: http-ana: Use http replies for HTTP error messages
2049 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
2050 - MINOR: htx: Add a function to copy a buffer in an HTX message
2051 - CLEANUP: channel: Remove channel_htx_copy_msg() function
2052 - MINOR: http-ana: Add a function to write an http reply in an HTX message
2053 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
2054 - DOC: Fix "errorfile" description in the configuration manual
2055 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
2056 - BUILD: hpack: make sure the hpack table can still be built standalone
2057 - CONTRIB: hpack: make use of the simplified standalone HPACK API
2058 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
2059
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020020602020/05/05 : 2.2-dev7
2061 - MINOR: version: Show uname output in display_version()
2062 - CI: run weekly OpenSSL "no-deprecated" builds
2063 - CLEANUP: log: fix comment of parse_logformat_string()
2064 - DOC: Improve documentation on http-request set-src
2065 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
2066 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
2067 - MINOR: ssl: add ssl-skip-self-issued-ca global option
2068 - BUG/MINOR: ssl: default settings for ssl server options are not used
2069 - MINOR: config: add a global directive to set default SSL curves
2070 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
2071 - DOC: internals: update the SSL architecture schema
2072 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
2073 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
2074 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
2075 - DOC: option logasap does not depend on mode
2076 - MEDIUM: memory: make pool_gc() run under thread isolation
2077 - MINOR: contrib: make the peers wireshark dissector a plugin
2078 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
2079 - BUG/MINOR: check: Update server address and port to execute an external check
2080 - MINOR: mini-clist: Add functions to iterate backward on a list
2081 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
2082 - MINOR: server: respect warning and alert semantic
2083 - BUG/MINOR: checks: Respect the no-check-ssl option
2084 - BUG/MEDIUM: server/checks: Init server check during config validity check
2085 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
2086 - BUG/MINOR: checks: chained expect will not properly wait for enough data
2087 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
2088 - MINOR: checks: Use an enum to describe the tcp-check rule type
2089 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
2090 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
2091 - MINOR: checks: simplify tcp expect config parser
2092 - MINOR: checks: add min-recv tcp-check expect option
2093 - MINOR: checks: add linger option to tcp connect
2094 - MINOR: checks: define a tcp expect type
2095 - MEDIUM: checks: rewrite tcp-check expect block
2096 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
2097 - MINOR: checks: add rbinary expect match type
2098 - MINOR: checks: Simplify functions to get step id and comment
2099 - MEDIUM: checks: capture groups in expect regexes
2100 - MINOR: checks: Don't use a static tcp rule list head
2101 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
2102 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
2103 - MINOR: checks: Set the tcp-check rule index during parsing
2104 - MINOR: checks: define tcp-check send type
2105 - MINOR: checks: define a tcp-check connect type
2106 - MEDIUM: checks: Add implicit tcp-check connect rule
2107 - MAJOR: checks: Refactor and simplify the tcp-check loop
2108 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
2109 - MINOR: checks/vars: Add a check scope for variables
2110 - MEDIUM: checks: Parse custom action rules in tcp-checks
2111 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
2112 - MINOR: checks: Add the sni option for tcp-check connect rules
2113 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
2114 - MINOR: checks: Add the alpn option for tcp-check connect rules
2115 - MINOR: ssl: Export a generic function to parse an alpn string
2116 - MINOR: checks: Add the default option for tcp-check connect rules
2117 - MINOR: checks: Add the addr option for tcp-check connect rule
2118 - MEDIUM: checks: Support expression to set the port
2119 - MEDIUM: checks: Support log-format strings for tcp-check send rules
2120 - MINOR: log: Don't depends on a stream to process samples in log-format string
2121 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
2122 - MEDIUM: checks: Add a shared list of tcp-check rules
2123 - MINOR: sample: add htonl converter
2124 - MINOR: sample: add cut_crlf converter
2125 - MINOR: sample: add ltrim converter
2126 - MINOR: sample: add rtrim converter
2127 - MINOR: checks: Use a name for the healthcheck status enum
2128 - MINOR: checks: Add option to tcp-check expect rules to customize error status
2129 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
2130 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
2131 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
2132 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
2133 - MINOR: checks: Relax the default option for tcp-check connect rules
2134 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
2135 - MINOR: checks: Export the tcpcheck_eval_ret enum
2136 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
2137 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
2138 - MEDIUM: checks: Implement redis check using tcp-check rules
2139 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
2140 - MEDIUM: checks: Implement smtp check using tcp-check rules
2141 - MEDIUM: checks: Implement postgres check using tcp-check rules
2142 - MEDIUM: checks: Implement MySQL check using tcp-check rules
2143 - MEDIUM: checks: Implement LDAP check using tcp-check rules
2144 - MEDIUM: checks: Implement SPOP check using tcp-check rules
2145 - MINOR: server/checks: Move parsing of agent keywords in checks.c
2146 - MINOR: server/checks: Move parsing of server check keywords in checks.c
2147 - MEDIUM: checks: Implement agent check using tcp-check rules
2148 - REGTEST: Adapt regtests about checks to recent changes
2149 - MINOR: Produce tcp-check info message for pure tcp-check rules only
2150 - MINOR: checks: Add an option to set success status of tcp-check expect rules
2151 - MINOR: checks: Improve log message of tcp-checks on success
2152 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
2153 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
2154 - MINOR: proxy/checks: Register a keyword to parse http-check rules
2155 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
2156 - MINOR: proxy/checks: Register a keyword to parse external-check rules
2157 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
2158 - MINOR: checks: Use an indirect string to represent the expect matching string
2159 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
2160 - MINOR: standard: Add my_memspn and my_memcspn
2161 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
2162 - MAJOR: checks: Implement HTTP check using tcp-check rules
2163 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
2164 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
2165 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
2166 - MINOR: checks/obj_type: Add a new object type for checks
2167 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
2168 - MINOR: checks: Use the check as origin when a session is created
2169 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
2170 - MINOR: connection: Add a function to install a mux for a health-check
2171 - MAJOR: checks: Use the best mux depending on the protocol for health checks
2172 - MEDIUM: checks: Implement default TCP check using tcp-check rules
2173 - MINOR: checks: Remove unused code about pure TCP checks
2174 - CLEANUP: checks: Reorg checks.c file to be more readable
2175 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
2176 - MINOR: ist: Add a function to retrieve the ist pointer
2177 - MINOR: checks: Use ist API as far as possible
2178 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
2179 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
2180 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
2181 - REGTEST: Add scripts to test based tcp-check health-checks
2182 - Revert "MEDIUM: checks: capture groups in expect regexes"
2183 - DOC: Add documentation about comments for tcp-check and http-check directives
2184 - DOC: Fix the tcp-check and http-check directives layout
2185 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
2186 - MINOR: checks: Support mux protocol definition for tcp and http health checks
2187 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
2188 - MINOR: checks: Support list of status codes on http-check expect rules
2189 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
2190 - REGTEST: Add a script to validate agent checks
2191 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
2192 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
2193 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
2194 - BUG/MINOR: checks/server: use_ssl member must be signed
2195 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
2196 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
2197 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
2198 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
2199 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
2200 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
2201 - BUG/MINOR: checks: Remove wrong variable redeclaration
2202 - BUG/MINOR: checks: Properly handle truncated mysql server messages
2203 - CLEANUP: checks: Remove unused code when ldap server message is parsed
2204 - MINOR: checks: Make the use of the check's server more explicit on connect
2205 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
2206 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
2207 - BUG/MINOR: checks: Don't lose warning on proxy capability
2208 - MINOR: log: Add "Tu" timer
2209 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
2210 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
2211 - REGTEST: ssl: test the client certificate authentication
2212 - DOC: give a more accurate description of what check does
2213 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
2214 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
2215 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
2216 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
2217 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
2218 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
2219 - MINOR: http-htx: Export functions to update message authority and host
2220 - MINOR: checks: Don't support multiple host header for http-check send rule
2221 - MINOR: checks: Skip some headers for http-check send rules
2222 - MINOR: checks: Keep the Host header and the request uri synchronized
2223 - CLEANUP: checks: Fix checks includes
2224 - DOC: Fix send rules in the http-check connect example
2225 - DOC: Add more info about request formatting in http-check send description
2226 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
2227 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
2228 - REGTEST: ssl: improve the "set ssl cert" test
2229 - CLEANUP: ssl: silence a build warning when threads are disabled
2230 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
2231 - MINOR: threads: export the POSIX thread ID in panic dumps
2232 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
2233 - BUG/MEDIUM: shctx: really check the lock's value while waiting
2234 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
2235 - MINOR: stream: report the list of active filters on stream crashes
2236 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
2237 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
2238 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
2239 - BUG/MEDIUM: connections: force connections cleanup on server changes
2240 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
2241 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
2242 - CLEANUP: connections: align function declaration
2243 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
2244 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
2245 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
2246 - MINOR: checks: Add support of payload-based sample fetches
2247 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
2248 - MINOR: checks: Add support of server side ssl sample fetches
2249 - MINOR: checks: Add support of HTTP response sample fetches
2250 - MINOR: http-htx: Support different methods to look for header names
2251 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
2252 - BUG/MINOR: checks: Support multiple HTTP expect rules
2253 - REGTEST: checks: Fix sync condition for agent-check
2254 - MEDIUM: checks: Support matching on headers for http-check expect rules
2255 - MINOR: lua: allow changing port with set_addr
2256 - BUG/MINOR: da: Fix HTX message prefetch
2257 - BUG/MINOR: wurfl: Fix HTX message prefetch
2258 - BUG/MINOR: 51d: Fix HTX message prefetch
2259 - MINOR: ist: add istadv() function
2260 - MINOR: ist: add istissame() function
2261 - MINOR: istbuf: add ist2buf() function
2262 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
2263 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
2264 - DOC: update intro.txt for 2.2
2265 - DOC: intro: add a contacts section
2266
Willy Tarreaud0089302020-04-17 14:19:38 +020022672020/04/17 : 2.2-dev6
2268 - BUG/MINOR: ssl: memory leak when find_chain is NULL
2269 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
2270 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
2271 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
2272 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
2273 - BUG/MINOR: peers: Use after free of "peers" section.
2274 - CI: github actions: add weekly h2spec test
2275 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
2276 - MINOR: build: Fix build in mux_h1
2277 - CLEANUP: remove obsolete comments
2278 - BUG/MEDIUM: dns: improper parsing of aditional records
2279 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
2280 - MINOR: listener: add so_name sample fetch
2281 - MEDIUM: stream: support use-server rules with dynamic names
2282 - MINOR: servers: Add a counter for the number of currently used connections.
2283 - MEDIUM: connections: Revamp the way idle connections are killed
2284 - MINOR: cli: add a general purpose pointer in the CLI struct
2285 - MINOR: ssl: add a list of bind_conf in struct crtlist
2286 - REORG: ssl: move SETCERT enum to ssl_sock.h
2287 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
2288 - REORG: ssl: move some functions above crtlist_load_cert_dir()
2289 - MINOR: ssl: use crtlist_free() upon error in directory loading
2290 - MINOR: ssl: add a list of crtlist_entry in ckch_store
2291 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
2292 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
2293 - MEDIUM: ssl/cli: 'add ssl crt-list' command
2294 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
2295 - BUG/MINOR: ssl: entry->ckch_inst not initialized
2296 - REGTEST: ssl/cli: change test type to devel
2297 - REGTEST: make the PROXY TLV validation depend on version 2.2
2298 - CLEANUP: assorted typo fixes in the code and comments
2299 - BUG/MINOR: stats: Fix color of draining servers on stats page
2300 - DOC: internals: Fix spelling errors in filters.txt
2301 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
2302 - REGTEST: make the unique-id test depend on version 2.0
2303 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
2304 - MINOR: ssl: split the line parsing of the crt-list
2305 - MINOR: ssl/cli: support filters and options in add ssl crt-list
2306 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
2307 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
2308 - REGTEST: ssl: pollute the crt-list file
2309 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
2310 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
2311 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
2312 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
2313 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
2314 - CLEANUP: assorted typo fixes in the code and comments
2315 - DOC: management: add the new crt-list CLI commands
2316 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
2317 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
2318 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
2319 - CI: use better SSL library definition
2320 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
2321 - CI: travis-ci: upgrade openssl to 1.1.1f
2322 - MINOR: ssl: improve the errors when a crt can't be open
2323 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
2324 - CI: adopt openssl download script to download all versions
2325 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
2326 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
2327 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
2328 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
2329 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
2330 - CLEANUP: ssl: use the refcount for the SSL_CTX'
2331 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
2332 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
2333 - CLEANUP: ssl: remove a commentary in struct ckch_inst
2334 - MINOR: ssl: initialize all list in ckch_inst_new()
2335 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
2336 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
2337 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
2338 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
2339 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
2340 - REORG: ssl: move some free/new functions
2341 - MINOR: ssl: crtlist_entry_{new, free}
2342 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
2343 - MINOR: ssl: don't alloc ssl_conf if no option found
2344 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
2345 - BUG/MINOR: peers: Incomplete peers sections should be validated.
2346 - MINOR: init: report in "haproxy -c" whether there were warnings or not
2347 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
2348 - MINOR: init: report the compiler version in haproxy -vv
2349 - CLEANUP: assorted typo fixes in the code and comments
2350 - MINOR: init: report the haproxy version and executable path once on errors
2351 - DOC: Make how "option redispatch" works more explicit
2352 - BUILD: Makefile: add linux-musl to TARGET
2353 - CLEANUP: assorted typo fixes in the code and comments
2354 - CLEANUP: http: Fixed small typo in parse_http_return
2355 - DOC: hashing: update link to hashing functions
2356
Willy Tarreau3328f182020-03-23 09:43:45 +010023572020/03/23 : 2.2-dev5
2358 - CLEANUP: ssl: is_default is a bit in ckch_inst
2359 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
2360 - DOC: ssl: clarify security implications of TLS tickets
2361 - CLEANUP: remove support for Linux i686 vsyscalls
2362 - CLEANUP: drop support for USE_MY_ACCEPT4
2363 - CLEANUP: remove support for USE_MY_EPOLL
2364 - CLEANUP: remove support for USE_MY_SPLICE
2365 - CLEANUP: remove the now unused common/syscall.h
2366 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
2367 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
2368 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
2369 - CLEANUP: ssl: separate the directory loading in a new function
2370 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
2371 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
2372 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
2373 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
2374 - BUG/MAJOR: list: fix invalid element address calculation
2375 - BUILD: stream-int: fix a few includes dependencies
2376 - MINOR: mt_lists: Appease gcc.
2377 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
2378 - MINOR: servers: Kill priv_conns.
2379 - MINOR: lists: fix indentation.
2380 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
2381 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
2382 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
2383 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
2384 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
2385 - BUG/MINOR: haproxy/threads: try to make all threads leave together
2386 - Revert "BUILD: travis-ci: enable s390x builds"
2387 - BUILD: travis-ci: enable regular s390x builds
2388 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
2389 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
2390 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
2391 - CLEANUP: connection: Add blank line after declarations in PP handling
2392 - CLEANUP: assorted typo fixes in the code and comments
2393 - CI: add spellcheck github action
2394 - DOC: correct typo in alert message about rspirep
2395 - CI: travis: switch linux builds to clang-9
2396 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
2397 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
2398 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
2399 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
2400 - CLEANUP: connection: Stop directly setting an ist's .ptr
2401 - CI: travis: revert to clang-7 for BoringSSL tests
2402 - BUILD: on ARM, must be linked to libatomic.
2403 - BUILD: makefile: fix regex syntax in ARM platform detection
2404 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
2405 - REORG: ssl: move ssl_sock_load_cert()
2406 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
2407 - MEDIUM: ssl: allow crt-list caching
2408 - MINOR: ssl: directories are loaded like crt-list
2409 - BUG/MINOR: ssl: can't open directories anymore
2410 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
2411 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
2412 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
2413 - MINOR: ssl/cli: show/dump ssl crt-list
2414 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
2415 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
2416 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
2417 - MINOR: tasks: Provide the tasklet to the callback.
2418 - BUG/MINOR: ssl: memleak of struct crtlist_entry
2419 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
2420 - BUILD: makefile: fix expression again to detect ARM platform
2421 - CI: travis: re-enable ASAN on clang
2422 - CI: travis: proper group output redirection together with travis_wait
2423 - DOC: assorted typo fixes in the documentation
2424 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
2425 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
2426 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
2427 - MINOR: ssl/cli: 'new ssl cert' command
2428 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
2429 - MEDIUM: sessions: Don't be responsible for connections anymore.
2430 - MEDIUM: servers: Split the connections into idle, safe, and available.
2431 - MINOR: fd: Implement fd_takeover().
2432 - MINOR: connections: Add a new mux method, "takeover".
2433 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
2434 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
2435 - MEDIUM: connections: Attempt to get idle connections from other threads.
2436 - MEDIUM: mux_h1: Implement the takeover() method.
2437 - MEDIUM: mux_h2: Implement the takeover() method.
2438 - MEDIUM: mux_fcgi: Implement the takeover() method.
2439 - MEDIUM: connections: Kill connections even if we are reusing one.
2440 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
2441 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
2442 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
2443 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
2444 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
2445 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
2446 - CI: run travis-ci builds on push only, skip pull requests
2447 - CI: temporarily disable unstable travis arm64 builds
2448 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
2449 - BUG/MINOR: connections: Make sure we free the connection on failure.
2450 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
2451 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
2452 - BUG/MINOR: connections: Set idle_time before adding to idle list.
2453 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
2454 - REGTEST: increase timeouts on the seamless-reload test
2455 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
2456 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
2457
Willy Tarreau5a753bd2020-03-09 14:57:20 +010024582020/03/09 : 2.2-dev4
2459 - MEDIUM: buffer: remove the buffer_wq lock
2460 - MINOR: ssl: move find certificate chain code to its own function
2461 - MINOR: ssl: resolve issuers chain later
2462 - MINOR: ssl: resolve ocsp_issuer later
2463 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
2464 - BUG/MINOR: h2: reject again empty :path pseudo-headers
2465 - MINOR: wdt: always clear sigev_value to make valgrind happy
2466 - MINOR: epoll: always initialize all of epoll_event to please valgrind
2467 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
2468 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
2469 - BUILD: cirrus-ci: suppress OS version check when installing packages
2470 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
2471 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
2472 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
2473 - MINOR: fd: merge the read and write error bits into RW error
2474 - BUG/MINOR: dns: ignore trailing dot
2475 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
2476 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
2477 - MINOR: mux-h1: Remove useless case-insensitive comparisons
2478 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
2479 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
2480 - MEDIUM: connection: don't stop receiving events in the FD handler
2481 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
2482 - BUG/MINOR: arg: don't reject missing optional args
2483 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
2484 - MINOR: debug: report the task handler's pointer relative to main
2485 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
2486 - MINOR: haproxy: export main to ease access from debugger
2487 - MINOR: haproxy: export run_poll_loop
2488 - MINOR: task: export run_tasks_from_list
2489 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
2490 - MINOR: tools: add new function dump_addr_and_bytes()
2491 - MINOR: tools: add resolve_sym_name() to resolve function pointers
2492 - MINOR: debug: use resolve_sym_name() to dump task handlers
2493 - MINOR: cli: make "show fd" rely on resolve_sym_name()
2494 - MEDIUM: debug: add support for dumping backtraces of stuck threads
2495 - MINOR: debug: call backtrace() once upon startup
2496 - MINOR: ssl: add "ca-verify-file" directive
2497 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
2498 - BUILD: Makefile: include librt before libpthread
2499 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
2500 - MINOR: wdt: do not depend on USE_THREAD
2501 - MINOR: debug: report the number of entries in the backtrace
2502 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
2503 - MINOR: debug: use our own backtrace function on clang+x86_64
2504 - MINOR: debug: dump the whole trace if we can't spot the starting point
2505 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
2506 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
2507 - CLEANUP: contrib/spoa_example: Fix several typos
2508 - BUILD: makefile: do not modify the build options during make reg-tests
2509 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
2510 - MEDIUM: stream-int: make sure to try to immediately validate the connection
2511 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
2512 - MEDIUM: connection: only call ->wake() for connect() without I/O
2513 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
2514 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
2515 - REGTEST: Add unique-id reg-test
2516 - MINOR: stream: Add stream_generate_unique_id function
2517 - MINOR: stream: Use stream_generate_unique_id
2518 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
2519 - MINOR: ssl/cli: support crt-list filters
2520 - MINOR: ssl: reach a ckch_store from a sni_ctx
2521 - DOC: fix incorrect indentation of http_auth_*
2522 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
2523 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
2524 - MINOR: ist: Add `IST_NULL` macro
2525 - MINOR: ist: Add `int isttest(const struct ist)`
2526 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
2527 - CLEANUP: Use `isttest()` and `istfree()`
2528 - MINOR: ist: Add `struct ist istdup(const struct ist)`
2529 - MINOR: proxy: Make `header_unique_id` a `struct ist`
2530 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
2531 - OPTIM: startup: fast unique_id allocation for acl.
2532 - DOC: configuration.txt: fix various typos
2533 - DOC: assorted typo fixes in the documentation and Makefile
2534 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
2535 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
2536 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
2537 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
2538 - MINOR: htx: Add a function to return a block at a specific offset
2539 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
2540 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
2541 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
2542 - BUG/MINOR: filters: Forward everything if no data filters are called
2543 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
2544 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
2545 - BUG/MINOR: http-ana: Reset request analysers on a response side error
2546 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
2547 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
2548 - MINOR: lua: Add function to know if a channel is a response one
2549 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
2550 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
2551 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
2552 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
2553 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
2554 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
2555 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
2556 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
2557 - BUG/MINOR: http-rules: Fix a typo in the reject action function
2558 - MINOR: cache/filters: Initialize the cache filter when stream is created
2559 - MINOR: compression/filters: Initialize the comp filter when stream is created
2560 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
2561 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
2562 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
2563 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
2564 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
2565 - BUILD: ssl: include mini-clist.h
2566 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
2567 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
2568 - BUILD: listener: types/listener.h must not include standard.h
2569 - BUG/MEDIUM: random: initialize the random pool a bit better
2570 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
2571 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
2572 - BUILD: cirrus-ci: get rid of unstable freebsd images
2573 - MINOR: tools: add 64-bit rotate operators
2574 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
2575 - MINOR: backend: use a single call to ha_random32() for the random LB algo
2576 - BUG/MINOR: checks/threads: use ha_random() and not rand()
2577 - MINOR: sample: make all bits random on the rand() sample fetch
2578 - MINOR: tools: add a generic function to generate UUIDs
2579 - DOC: fix typo about no-tls-tickets
2580 - DOC: improve description of no-tls-tickets
2581 - DOC: assorted typo fixes in the documentation
2582 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
2583
Willy Tarreau32bf97f2020-02-25 18:14:02 +010025842020/02/25 : 2.2-dev3
2585 - SCRIPTS: announce-release: place the send command in the mail's header
2586 - SCRIPTS: announce-release: allow the user to force to overwrite old files
2587 - SCRIPTS: backport: fix the master branch detection
2588 - BUG/MINOR: http-act: Set stream error flag before returning an error
2589 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
2590 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
2591 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
2592 - DOC: schematic of the SSL certificates architecture
2593 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
2594 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
2595 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
2596 - BUILD: cirrus-ci: workaround "pkg install" bug
2597 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
2598 - BUG/MINOR: connection: correctly retry I/O on signals
2599 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
2600 - BUILD: http_act: cast file sizes when reporting file size error
2601 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
2602 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
2603 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
2604 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
2605 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
2606 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
2607 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
2608 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
2609 - SCRIPTS: make announce-release executable again
2610 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
2611 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
2612 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
2613 - CLEANUP: ssl: remove unused functions in openssl-compat.h
2614 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
2615 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
2616 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
2617 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
2618 - MEDIUM: arg: make make_arg_list() stop after its own arguments
2619 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
2620 - MEDIUM: arg: make make_arg_list() support quotes in arguments
2621 - MINOR: sample: make sample_parse_expr() able to return an end pointer
2622 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
2623 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
2624 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
2625 - BUILD: enable ERR=1 in github cygwin builds
2626 - BUG/MINOR: arg: fix again incorrect argument length check
2627 - MINOR: sample: regsub now supports backreferences
2628 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
2629 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
2630 - MINOR: filters: Forward data only if the last filter forwards something
2631 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
2632 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
2633 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
2634 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
2635 - MINOR: ssl: add "issuers-chain-path" directive.
2636 - REGTESTS: use "command -v" instead of "which"
2637 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
2638 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
2639 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
2640 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
2641 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
2642 - MINOR: checks: do not call conn_xprt_stop_send() anymore
2643 - CLEANUP: epoll: place the struct epoll_event in the stack
2644 - MEDIUM: connection: remove the intermediary polling state from the connection
2645 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
2646 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
2647 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
2648 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
2649 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
2650 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
2651 - MINOR: ist: add an iststop() function
2652 - BUG/MINOR: http: http-request replace-path duplicates the query string
2653 - CLEANUP: sample: use iststop instead of a for loop
2654 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
2655 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
2656 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
2657 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
2658 - BUILD: fix recent build failure on unaligned archs
2659 - MINOR: ssl: load the key from a dedicated file
2660 - BUG/MINOR: ssl: load .key in a directory only after PEM
2661 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
2662 - CLEANUP: conn: Do not pass a pointer to likely
2663 - CLEANUP: net_helper: Do not negate the result of unlikely
2664 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
2665 - CLEANUP: cfgparse: Fix type of second calloc() parameter
2666 - BUILD: ssl: only pass unsigned chars to isspace()
2667 - BUILD: general: always pass unsigned chars to is* functions
2668 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
2669 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
2670 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
2671 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
2672 - CLEANUP: stick-tables: use read_u32() to display a node's key
2673 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
2674 - MINOR: pattern: fix all remaining strict aliasing issues
2675 - CLEANUP: lua: fix aliasing issues in the address matching code
2676 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
2677 - BUILD: makefile: re-enable strict aliasing
2678 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
2679 - MINOR: compiler: add new alignment macros
2680 - BUILD: ebtree: improve architecture-specific alignment
2681 - MINOR: config: mark global.debug as deprecated
2682 - BUILD: travis-ci: enable s390x builds
2683 - MINOR: ssl/cli: 'show ssl cert' displays the chain
2684 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
2685 - MINOR: ssl/cli: reorder 'show ssl cert' output
2686 - CLEANUP: ssl: move issuer_chain tree and definition
2687 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
2688
Willy Tarreau4c47d912020-02-07 04:12:19 +010026892020/02/07 : 2.2-dev2
2690 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
2691 - MEDIUM: cli: Allow multiple filter entries for "show table"
2692 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
2693 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
2694 - BUILD: stick-table: fix build errors introduced by last stick-table change
2695 - BUG/MINOR: cli: Missing arg offset for filter data values.
2696 - MEDIUM: streams: Always create a conn_stream in connect_server().
2697 - MEDIUM: connections: Get ride of the xprt_done callback.
2698 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
2699 - BUILD: CI: move cygwin builds to Github Actions
2700 - MINOR: cli: Report location of errors or any extra data for "show table"
2701 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
2702 - CLEANUP: backend: remove useless test for inexistent connection
2703 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
2704 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
2705 - BUG/MINOR: ssl: increment issuer refcount if in chain
2706 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
2707 - BUG/MINOR: ssl: typo in previous patch
2708 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
2709 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
2710 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
2711 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
2712 - MINOR: stream-int: always report received shutdowns
2713 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
2714 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
2715 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
2716 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
2717 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
2718 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
2719 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
2720 - BUG/MINOR: stktable: report the current proxy name in error messages
2721 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
2722 - MINOR: lua: Add hlua_prepend_path function
2723 - MINOR: lua: Add lua-prepend-path configuration option
2724 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
2725 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
2726 - BUG/MINOR: http-ana: Increment the backend counters on the backend
2727 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
2728 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
2729 - REGTESTS: make the set_ssl_cert test require version 2.2
2730 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
2731 - MINOR: ssl: Remove dead code.
2732 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
2733 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
2734 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
2735 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
2736 - BUILD: CI: disable slow regtests on Travis
2737 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
2738 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
2739 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
2740 - BUG/MINOR: dns: allow 63 char in hostname
2741 - MINOR: proxy: clarify number of connections log when stopping
2742 - DOC: word converter ignores delimiters at the start or end of input string
2743 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
2744 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
2745 - MEDIUM: pipe/thread: reduce the locking overhead
2746 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
2747 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
2748 - MINOR: tasks: move the list walking code to its own function
2749 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
2750 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
2751 - OPTIM: task: refine task classes default CPU bandwidth ratios
2752 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
2753 - MINOR: task: permanently flag tasklets waking themselves up
2754 - MINOR: task: make sched->current also reflect tasklets
2755 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
2756 - OPTIM: task: readjust CPU bandwidth distribution since last update
2757 - MINOR: task: don't set TASK_RUNNING on tasklets
2758 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
2759 - MINOR: memory: Only init the pool spinlock once.
2760 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
2761 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
2762 - MINOR: ssl: ssl-load-extra-files configure loading of files
2763 - SCRIPTS: add a new "backport" script to simplify long series of backports
2764 - BUG/MINOR: ssl: we may only ignore the first 64 errors
2765 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
2766 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
2767 - CLEANUP: hpack: remove a redundant test in the decoder
2768 - CLEANUP: peers: Remove unused static function `free_dcache`
2769 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
2770 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
2771 - CONTRIB: debug: add the possibility to decode the value as certain types only
2772 - CONTRIB: debug: support reporting multiple values at once
2773 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
2774 - MINOR: global: Set default tune.maxrewrite value during global structure init
2775 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
2776 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
2777 - MINOR: htx: Add a function to append an HTX message to another one
2778 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
2779 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
2780 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
2781 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
2782 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
2783 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
2784 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
2785 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
2786 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
2787 - MINOR: http-ana: Add a function for forward internal responses
2788 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
2789 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
2790 - MEDIUM: http-rules: Add the return action to HTTP rules
2791 - MEDIUM: http-rules: Support extra headers for HTTP return actions
2792 - CLEANUP: lua: Remove consistency check for sample fetches and actions
2793 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
2794 - MINOR: lua: Get the action return code on the stack when an action finishes
2795 - MINOR: lua: Create the global 'act' object to register all action return codes
2796 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
2797 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
2798 - REGTESTS: Add reg tests for the HTTP return action
2799 - REGTESTS: Add a reg test for http-after-response rulesets
2800 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
2801 - MINOR: acl: Warn when an ACL is named 'or'
2802 - CONTRIB: debug: also support reading values from stdin
2803 - SCRIPTS: backport: use short revs and resolve the initial commit
2804 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
2805
Willy Tarreau71f95fa2020-01-22 10:34:58 +010028062020/01/22 : 2.2-dev1
2807 - DOC: this is development again
2808 - MINOR: version: this is development again, update the status
2809 - SCRIPTS: update create-release to fix the changelog on new branches
2810 - CLEANUP: ssl: Clean up error handling
2811 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
2812 - BUG/MINOR: h1: Don't test the host header during response parsing
2813 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
2814 - DOC: Clarify behavior of server maxconn in HTTP mode
2815 - MINOR: ssl: deduplicate ca-file
2816 - MINOR: ssl: compute ca-list from deduplicate ca-file
2817 - MINOR: ssl: deduplicate crl-file
2818 - CLEANUP: dns: resolution can never be null
2819 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
2820 - DOC: ssl/cli: set/commit/abort ssl cert
2821 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
2822 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
2823 - BUG/MINOR: stats: Fix HTML output for the frontends heading
2824 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
2825 - DOC: clarify matching strings on binary fetches
2826 - DOC: Fix ordered list in summary
2827 - DOC: move the "group" keyword at the right place
2828 - MEDIUM: init: prevent process and thread creation at runtime
2829 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
2830 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
2831 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
2832 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
2833 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
2834 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
2835 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
2836 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
2837 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
2838 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
2839 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
2840 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
2841 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
2842 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
2843 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
2844 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
2845 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
2846 - BUG/MINOR: listener: also clear the error flag on a paused listener
2847 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
2848 - MINOR: listener: make the wait paths cleaner and more reliable
2849 - MINOR: listener: split dequeue_all_listener() in two
2850 - REORG: listener: move the global listener queue code to listener.c
2851 - DOC: document the listener state transitions
2852 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
2853 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
2854 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
2855 - DOC: listeners: add a few missing transitions
2856 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
2857 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
2858 - DOC: proxies: HAProxy only supports 3 connection modes
2859 - DOC: remove references to the outdated architecture.txt
2860 - BUG/MINOR: log: fix minor resource leaks on logformat error path
2861 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
2862 - BUG/MINOR: listener: do not immediately resume on transient error
2863 - BUG/MINOR: server: make "agent-addr" work on default-server line
2864 - BUG/MINOR: listener: fix off-by-one in state name check
2865 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
2866 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
2867 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
2868 - REGTEST: Add an HTX reg-test to check an edge case
2869 - DOC: clarify the fact that replace-uri works on a full URI
2870 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
2871 - BUG/MINOR: sample: always check converters' arguments
2872 - MINOR: sample: Validate the number of bits for the sha2 converter
2873 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
2874 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
2875 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
2876 - MINOR: debug: support logging to various sinks
2877 - MINOR: http: add a new "replace-path" action
2878 - REGTEST: ssl: test the "set ssl cert" CLI command
2879 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
2880 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
2881 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
2882 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
2883 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
2884 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
2885 - REGTEST: make the "set ssl cert" require version 2.1
2886 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
2887 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
2888 - BUG/MINOR: state-file: do not store duplicates in the global tree
2889 - BUG/MINOR: state-file: do not leak memory on parse errors
2890 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
2891 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
2892 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
2893 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
2894 - BUILD: travis-ci: reenable address sanitizer for clang builds
2895 - BUG/MINOR: checks: refine which errno values are really errors.
2896 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
2897 - CLEANUP: connection: conn->xprt is never NULL
2898 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
2899 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
2900 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
2901 - MINOR: connection: check for connection validation earlier
2902 - MINOR: connection: remove the double test on xprt_done_cb()
2903 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
2904 - MINOR: poller: do not call the IO handler if the FD is not active
2905 - OPTIM: epoll: always poll for recv if neither active nor ready
2906 - OPTIM: polling: do not create update entries for FD removal
2907 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
2908 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
2909 - BUILD: CI: modernize cirrus-ci
2910 - MINOR: config: disable busy polling on old processes
2911 - MINOR: ssl: Remove unused variable "need_out".
2912 - BUG/MINOR: h1: Report the right error position when a header value is invalid
2913 - BUG/MINOR: proxy: Fix input data copy when an error is captured
2914 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
2915 - BUG/MINOR: channel: inject output data at the end of output
2916 - BUG/MEDIUM: session: do not report a failure when rejecting a session
2917 - MEDIUM: dns: implement synchronous send
2918 - MINOR: raw_sock: make sure to disable polling once everything is sent
2919 - MINOR: http: Add 410 to http-request deny
2920 - MINOR: http: Add 404 to http-request deny
2921 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
2922 - BUILD: cirrus-ci: choose proper openssl package name
2923 - BUG/MAJOR: listener: do not schedule a task-less proxy
2924 - CLEANUP: server: remove unused err section in server_finalize_init
2925 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
2926 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
2927 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
2928 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
2929 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
2930 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
2931 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
2932 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
2933 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
2934 - REGTEST: mcli/mcli_start_progs: start 2 programs
2935 - BUG/MEDIUM: mworker: remain in mworker mode during reload
2936 - DOC: clarify crt-base usage
2937 - CLEANUP: compression: remove unused deinit_comp_ctx section
2938 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
2939 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
2940 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
2941 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
2942 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
2943 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
2944 - CLEANUP: cli: deduplicate the code in _getsocks
2945 - BUG/MINOR: stream: don't mistake match rules for store-request rules
2946 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
2947 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
2948 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
2949 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
2950 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
2951 - BUILD: pattern: include errno.h
2952 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
2953 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
2954 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
2955 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
2956 - REORG: stream/backend: move backend-specific stuff to backend.c
2957 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
2958 - MEDIUM: connection: merge the send_wait and recv_wait entries
2959 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
2960 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
2961 - MEDIUM: mux-h1: merge recv_wait and send_wait
2962 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
2963 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
2964 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
2965 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
2966 - DOC: Fix copy and paste mistake in http-response replace-value doc
2967 - BUG/MINOR: cache: Fix leak of cache name in error path
2968 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
2969 - BUG/MINOR: 51d: Fix bug when HTX is enabled
2970 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
2971 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
2972 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
2973 - DOC: Add a section to document the internal sample fetches
2974 - MINOR: mux-h1: Inherit send flags from the upper layer
2975 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
2976 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
2977 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
2978 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
2979 - MEDIUM: http-rules: Register an action keyword for all http rules
2980 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
2981 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
2982 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
2983 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
2984 - MINOR: counters: Add a counter to report internal processing errors
2985 - MEDIUM: http-ana: Properly handle internal processing errors
2986 - MINOR: http-rules: Add a rule result to report internal error
2987 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
2988 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
2989 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
2990 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
2991 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
2992 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
2993 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
2994 - MINOR: counters: Review conditions to increment counters from analysers
2995 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
2996 - MINOR: http-rules: Handle all message rewrites the same way
2997 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
2998 - MEDIUM: http-rules: Enable the strict rewriting mode by default
2999 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
3000 - MINOR: actions: Add a function pointer to release args used by actions
3001 - MINOR: actions: Regroup some info about HTTP rules in the same struct
3002 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
3003 - MINOR: actions: Rename the act_flag enum into act_opt
3004 - MINOR: actions: Add flags to configure the action behaviour
3005 - MINOR: actions: Use an integer to set the action type
3006 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
3007 - MINOR: http-rules: Make replace-header and replace-value custom actions
3008 - MINOR: http-rules: Make set-header and add-header custom actions
3009 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
3010 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
3011 - MEDIUM: http-rules: Make early-hint custom actions
3012 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
3013 - MINOR: tcp-rules: Make tcp-request capture a custom action
3014 - MINOR: http-rules: Add release functions for existing HTTP actions
3015 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
3016 - MINOR: tcp-rules: Add release functions for existing TCP actions
3017 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
3018 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
3019 - MINOR: http-htx: Add functions to create HTX redirect message
3020 - MINOR: config: Use dedicated function to parse proxy's errorfiles
3021 - MINOR: config: Use dedicated function to parse proxy's errorloc
3022 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
3023 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
3024 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
3025 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
3026 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
3027 - MINOR: http-rules: Support an optional status on deny rules for http reponses
3028 - MINOR: http-rules: Use same function to parse request and response deny actions
3029 - MINOR: http-ana: Add an error message in the txn and send it when defined
3030 - MEDIUM: http-rules: Support an optional error message in http deny rules
3031 - REGTEST: Add a strict rewriting mode reg test
3032 - REGEST: Add reg tests about error files
3033 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
3034 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
3035 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
3036 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
3037 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
3038 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
3039 - BUILD: CI: introduce ARM64 builds
3040 - BUILD: ssl: more elegant anti-replay feature presence check
3041 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
3042 - MEDIUM: dns: use Additional records from SRV responses
3043 - CLEANUP: Consistently `unsigned int` for bitfields
3044 - CLEANUP: pattern: remove the pat_time definition
3045 - BUG/MINOR: http_act: don't check capture id in backend
3046 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
3047
Willy Tarreau2e077f82019-11-25 20:36:16 +010030482019/11/25 : 2.2-dev0
3049 - exact copy of 2.1.0
3050
Willy Tarreaue54b43a2019-11-25 19:47:40 +010030512019/11/25 : 2.1.0
3052 - BUG/MINOR: init: fix set-dumpable when using uid/gid
3053 - MINOR: init: avoid code duplication while setting identify
3054 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
3055 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
3056 - MINOR: peers: Alway show the table info for disconnected peers.
3057 - MINOR: peers: Add TX/RX heartbeat counters.
3058 - MINOR: peers: Add debugging information to "show peers".
3059 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
3060 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
3061 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
3062 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
3063 - BUILD/MINOR: ssl: fix compiler warning about useless statement
3064 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
3065 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
3066 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
3067 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
3068 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
3069 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
3070 - DOC: Update http-buffer-request description to remove the part about chunks
3071 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
3072 - DOC: internal: document the init calls
3073 - MEDIUM: dns: Add resolve-opts "ignore-weight"
3074 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
3075 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
3076 - MINOR: ssl/cli: display warning during 'commit ssl cert'
3077 - MINOR: version: report the version status in "haproxy -v"
3078 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
3079 - DOC: Add documentation about the use-service action
3080 - MINOR: ssl: fix possible null dereference in error handling
3081 - BUG/MINOR: ssl: fix curve setup with LibreSSL
3082 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
3083 - CLEANUP: ssl: check if a transaction exists once before setting it
3084 - BUG/MINOR: cli: fix out of bounds in -S parser
3085 - MINOR: ist: add ist_find_ctl()
3086 - BUG/MAJOR: h2: reject header values containing invalid chars
3087 - BUG/MAJOR: h2: make header field name filtering stronger
3088 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
3089 - MINOR: h2: add a function to report H2 error codes as strings
3090 - MINOR: mux-h2/trace: report the connection and/or stream error code
3091 - SCRIPTS: create-release: show the correct origin name in suggested commands
3092 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
3093 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
3094 - BUILD: reorder the objects in the makefile
3095 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
3096 - MINOR: version: indicate that this version is stable
3097
Willy Tarreau84681322019-11-15 18:49:37 +010030982019/11/15 : 2.1-dev5
3099 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
3100 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
3101 - BUG/MINOR: ssl/cli: fix an error when a file is not found
3102 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
3103 - DOC: fix date and http_date keywords syntax
3104 - MINOR: peers: Add "log" directive to "peers" section.
3105 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
3106 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
3107 - MINOR: flt_trace: Rename macros to print trace messages
3108 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
3109 - MEDIUM: stream/trace: Register a new trace source with its events
3110 - MINOR: doc: http-reuse connection pool fix
3111 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
3112 - MINOR: http-ana: Remove the unused function http_reset_txn()
3113 - BUG/MINOR: action: do-resolve now use cached response
3114 - BUG: dns: timeout resolve not applied for valid resolutions
3115 - DOC: management: fix typo on "cache_lookups" stats output
3116 - BUG/MINOR: stream: init variables when the list is empty
3117 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
3118 - BUG/MINOR: queue/threads: make the queue unlinking atomic
3119 - BUG/MEDIUM: Make sure we leave the session list in session_free().
3120 - CLEANUP: session: slightly simplify idle connection cleanup logic
3121 - MINOR: memory: also poison the area on freeing
3122 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
3123 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
3124 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
3125 - BUILD: contrib/da: remove an "unused" warning
3126 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
3127 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
3128 - MINOR: freq_ctr: Make the sliding window sums thread-safe
3129 - MINOR: stream: Remove the lock on the proxy to update time stats
3130 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
3131 - MINOR: stats: Report max times in addition of the averages for sessions
3132 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
3133 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
3134 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
3135 - DOC: Add missing stats fields in the management manual
3136 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
3137 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
3138 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
3139 - MINOR: sink: Set the default max length for a message to BUFSIZE
3140 - MINOR: ring: make the parse function automatically set the handler/release
3141 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
3142 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
3143
Willy Tarreau1753cb52019-11-03 15:43:10 +010031442019/11/03 : 2.1-dev4
3145 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
3146 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
3147 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
3148 - DOC: remove obsolete section about header manipulation
3149 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
3150 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
3151 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
3152 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
3153 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
3154 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
3155 - BUILD/MINOR: ssl: shut up a build warning about format truncation
3156 - BUILD: do not disable -Wformat-truncation anymore
3157 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
3158 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
3159 - MINOR: mux: Add a new method to get informations about a mux.
3160 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
3161 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
3162 - MINOR: doc: fix busy-polling performance reference
3163 - MINOR: config: allow no set-dumpable config option
3164 - MINOR: init: always fail when setrlimit fails
3165 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
3166 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
3167 - REGTEST: vtest can now enable mcli with its own flag
3168 - BUG/MINOR: config: Update cookie domain warn to RFC6265
3169 - MINOR: sample: add us/ms support to date/http_date
3170 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
3171 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
3172 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
3173 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
3174 - BUG/MINOR: stats: properly check the path and not the whole URI
3175 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
3176 - BUG/MINOR: ssl: ckch->chain must be initialized
3177 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
3178 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
3179 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
3180 - MINOR: backend: Add srv_name sample fetche
3181 - DOC: Add GitHub issue config.yml
3182
Willy Tarreauc70df532019-10-25 15:48:53 +020031832019/10/25 : 2.1-dev3
3184 - MINOR: mux-h2/trace: missing conn pointer in demux full message
3185 - MINOR: mux-h2: add a per-connection list of blocked streams
3186 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
3187 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
3188 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
3189 - BUG/MINOR: peers: crash on reload without local peer.
3190 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
3191 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
3192 - MINOR: htx: Adapt htx_dump() to be used from traces
3193 - MINOR: mux-h1/trace: register a new trace source with its events
3194 - MINOR: proxy: Store http-send-name-header in lower case
3195 - MINOR: http: Remove headers matching the name of http-send-name-header option
3196 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
3197 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
3198 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
3199 - MINOR: fcgi: Add function to get the string representation of a record type
3200 - MINOR: mux-fcgi/trace: Register a new trace source with its events
3201 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
3202 - DOC: clarify some points around http-send-name-header's behavior
3203 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
3204 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
3205 - DOC: fix typo in Prometheus exporter doc
3206 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
3207 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
3208 - MINOR: http: Add a function to get the authority into a URI
3209 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
3210 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
3211 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
3212 - MEDIUM: h2: make the request parser rebuild a complete URI
3213 - MINOR: h2: report in the HTX flags when the request has an authority
3214 - MEDIUM: mux-h2: do not map Host to :authority on output
3215 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
3216 - MINOR: stats: mention in the help message support for "json" and "typed"
3217 - MINOR: stats: get rid of the ST_CONVDONE flag
3218 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
3219 - MINOR: stats: always merge the uri_auth flags into the appctx flags
3220 - MINOR: stats: set the appctx flags when initializing the applet only
3221 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
3222 - MINOR: stats: make stats_dump_fields_json() directly take flags
3223 - MINOR: stats: uniformize the calling convention of the dump functions
3224 - MINOR: stats: support the "desc" output format modifier for info and stat
3225 - MINOR: stats: prepare to add a description with each stat/info field
3226 - MINOR: stats: make "show stat" and "show info"
3227 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
3228 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
3229 - BUILD: stats: fix missing '=' sign in array declaration
3230 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
3231 - MINOR: list: add new macro MT_LIST_BEHEAD
3232 - MEDIUM: task: Split the tasklet list into two lists.
3233 - MINOR: h2: Document traps to be avoided on multithread.
3234 - MINOR: lists: Try to use local variables instead of macro arguments.
3235 - MINOR: lists: Fix alignement of \ when relevant.
3236 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
3237 - MINOR: ssl: crt-list do ckchn_lookup
3238 - REORG: ssl: rename ckch_node to ckch_store
3239 - REORG: ssl: move structures to ssl_sock.h
3240 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
3241 - MINOR: ssl: initialize explicitly the sni_ctx trees
3242 - BUG/MINOR: ssl: abort on sni allocation failure
3243 - BUG/MINOR: ssl: free the sni_keytype nodes
3244 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
3245 - MEDIUM: ssl: introduce the ckch instance structure
3246 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
3247 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
3248 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
3249 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
3250 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
3251 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
3252 - MINOR: ssl: load the sctl in/from the ckch
3253 - MINOR: ssl: load the ocsp in/from the ckch
3254 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
3255 - BUG/MINOR: ssl: fix build without SSL
3256 - BUG/MINOR: ssl: fix build without multi-cert bundles
3257 - BUILD: ssl: wrong #ifdef for SSL engines code
3258 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
3259 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
3260 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
3261 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
3262 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
3263 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
3264 - BUG/MINOR: mux-h1: Capture ignored parsing errors
3265 - MINOR: h1: Reject requests with different occurrences of the header host
3266 - MINOR: h1: Reject requests if the authority does not match the header host
3267 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
3268 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
3269 - BUG/MINOR: WURFL: fix send_log() function arguments
3270 - BUG/MINOR: ssl: fix error messages for OCSP loading
3271 - BUG/MINOR: ssl: can't load ocsp files
3272 - MINOR: version: make the version strings variables, not constants
3273 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
3274 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
3275 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
3276 - BUILD: travis-ci: limit build to branches "master" and "next"
3277 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
3278 - BUILD/SMALL: threads: enable threads on osx
3279 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
3280 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
3281 - BUG/MINOR: cache: also cache absolute URIs
3282 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
3283 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
3284 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
3285 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
3286 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
3287 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
3288 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
3289 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
3290 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
3291 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
3292 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
3293 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
3294 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
3295 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
3296 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
3297 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
3298 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
3299 - CLEANUP: bind: handle warning label on bind keywords parsing.
3300 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
3301 - BUG/MINOR: mworker/cli: reload fail with inherited FD
3302 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
3303 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
3304 - BUG/MINOR: cache: alloc shctx after check config
3305 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
3306 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
3307 - REGTESTS: make seamless-reload depend on 1.9 and above
3308 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
3309 - BUG/MINOR: dns: allow srv record weight set to 0
3310 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
3311 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
3312 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
3313 - BUG/MINOR: mux-h2: do not emit logs on backend connections
3314 - CLEANUP: ssl: remove old TODO commentary
3315 - CLEANUP: ssl: fix SNI/CKCH lock labels
3316 - MINOR: ssl: OCSP functions can load from file or buffer
3317 - MINOR: ssl: load sctl from buf OR from a file
3318 - MINOR: ssl: load issuer from file or from buffer
3319 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
3320 - BUG/MINOR: ssl/cli: fix looking up for a bundle
3321 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
3322 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
3323 - MINOR: ssl: copy a ckch from src to dst
3324 - MINOR: ssl: new functions duplicate and free a ckch_store
3325 - MINOR: ssl/cli: assignate a new ckch_store
3326 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
3327 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
3328 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
3329 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
3330 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
3331 - MINOR: tcp: avoid confusion in time parsing init
3332 - MINOR: debug: add a new "debug dev stream" command
3333 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
3334 - REORG: move CLI access level definitions to cli.h
3335 - MINOR: cli: add an expert mode to hide dangerous commands
3336 - MINOR: debug: make most debug CLI commands accessible in expert mode
3337 - MINOR: stats/debug: maintain a counter of debug commands issued
3338 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
3339
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020033402019/10/01 : 2.1-dev2
3341 - DOC: management: document reuse and connect counters in the CSV format
3342 - DOC: management: document cache_hits and cache_lookups in the CSV format
3343 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
3344 - MINOR: applet: make appctx use their own pool
3345 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
3346 - BUG/MEDIUM: http/htx: unbreak option http_proxy
3347 - BUG/MINOR: backend: do not try to install a mux when the connection failed
3348 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
3349 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
3350 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
3351 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
3352 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
3353 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
3354 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
3355 - MINOR: proto_htx: Add the function htx_return_srv_error()
3356 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
3357 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
3358 - DOC: htx: Update comments in HTX files
3359 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
3360 - MINOR: htx: Deduce the number of used blocks from tail and head values
3361 - MINOR: htx: Use an array of char to store HTX blocks
3362 - MINOR: htx: Slightly update htx_dump() to report better messages
3363 - DOC: htx: Add internal documentation about the HTX
3364 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
3365 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
3366 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
3367 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
3368 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
3369 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
3370 - MINOR: config: Remove tests on the option 'http-use-htx'
3371 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
3372 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
3373 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
3374 - MINOR: cache: Remove tests on the option 'http-use-htx'
3375 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
3376 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
3377 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
3378 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
3379 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
3380 - MINOR: http_act: Remove code relying on the legacy HTTP mode
3381 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
3382 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
3383 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
3384 - MINOR: stats: Remove code relying on the legacy HTTP mode
3385 - MAJOR: filters: Remove code relying on the legacy HTTP mode
3386 - MINOR: stream: Remove code relying on the legacy HTTP mode
3387 - MAJOR: http: Remove the HTTP legacy code
3388 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
3389 - MINOR: proto_http: Remove unused http txn flags
3390 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
3391 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
3392 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
3393 - CLEANUP: proto_http: Remove unecessary includes and comments
3394 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
3395 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
3396 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
3397 - MINOR: proxy: Remove support of the option 'http-tunnel'
3398 - DOC: config: Update as a result of the legacy HTTP removal
3399 - MEDIUM: config: Remove parsing of req* and rsp* directives
3400 - MINOR: proxy: Remove the unused list of block rules
3401 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
3402 - DOC: config: Remove unsupported req* and rsp* keywords
3403 - MINOR: global: Preset tune.max_http_hdr to its default value
3404 - MINOR: http: Don't store raw HTTP errors in chunks anymore
3405 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
3406 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
3407 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
3408 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
3409 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
3410 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
3411 - MINOR: connection: add conn_get_src() and conn_get_dst()
3412 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
3413 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
3414 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
3415 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
3416 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
3417 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
3418 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
3419 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
3420 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
3421 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
3422 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
3423 - MINOR: connection: add new src and dst fields
3424 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
3425 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
3426 - MINOR: lua: switch to conn->dst for a connection's target address
3427 - MINOR: peers: use conn->dst for the peer's target address
3428 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
3429 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
3430 - MINOR: proxy: switch to conn->src in error snapshots
3431 - MINOR: session: use conn->src instead of conn->addr.from
3432 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
3433 - MINOR: unix: use conn->dst for the target address in ->connect()
3434 - MINOR: sockpair: use conn->dst for the target address in ->connect()
3435 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
3436 - MINOR: checks: replace conn->addr.to with conn->dst
3437 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
3438 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
3439 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
3440 - MINOR: connection: create a new pool for struct sockaddr_storage
3441 - MEDIUM: connection: make sure all address producers allocate their address
3442 - MAJOR: connection: remove the addr field
3443 - MINOR: connection: don't use clear_addr() anymore, just release the address
3444 - MINOR: stream: add a new target_addr entry in the stream structure
3445 - MAJOR: stream: store the target address into s->target_addr
3446 - MINOR: peers: now remove the remote connection setup code
3447 - MEDIUM: lua: do not allocate the remote connection anymore
3448 - MEDIUM: backend: always release any existing prior connection in connect_server()
3449 - MEDIUM: backend: remove impossible cases from connect_server()
3450 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
3451 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
3452 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
3453 - BUG/MINOR: http_htx: Support empty errorfiles
3454 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
3455 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
3456 - BUG/MINOR: proxy: always lock stop_proxy()
3457 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
3458 - BUILD: threads: add the definition of PROTO_LOCK
3459 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
3460 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
3461 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
3462 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
3463 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
3464 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
3465 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
3466 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
3467 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
3468 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
3469 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
3470 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
3471 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
3472 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
3473 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
3474 - MEDIUM: ssl: split the loading of the certificates
3475 - MEDIUM: ssl: lookup and store in a ckch_node tree
3476 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
3477 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
3478 - MINOR: ssl: use STACK_OF for chain certs
3479 - MINOR: ssl: add extra chain compatibility
3480 - MINOR: ssl: check private key consistency in loading
3481 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
3482 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
3483 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
3484 - MAJOR: fd: Get rid of the fd cache.
3485 - MEDIUM: pollers: Remember the state for read and write for each threads.
3486 - MEDIUM: mux-h2: don't try to read more than needed
3487 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
3488 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
3489 - BUG/MINOR: debug: fix a small race in the thread dumping code
3490 - MINOR: wdt: also consider that waiting in the thread dumper is normal
3491 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
3492 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
3493 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
3494 - BUG/MINOR: ssl: fix ressource leaks on error
3495 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
3496 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
3497 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
3498 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
3499 - BUG/MINOR: stream-int: also update analysers timeouts on activity
3500 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
3501 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
3502 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
3503 - DOC: Add 'Question.md' issue template, discouraging asking questions
3504 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
3505 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
3506 - BUILD: travis-ci: enable daily Coverity scan
3507 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
3508 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
3509 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
3510 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
3511 - BUG/MINOR: mux-h2: always send stream window update before connection's
3512 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
3513 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
3514 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
3515 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
3516 - MINOR: cache: add method to cache hash
3517 - MINOR: cache: allow caching of OPTIONS request
3518 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
3519 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
3520 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
3521 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
3522 - CLEANUP: buffer: replace b_drop() with b_free()
3523 - CLEANUP: task: move the cpu_time field to the task-only part
3524 - MINOR: cli: add two new states to print messages on the CLI
3525 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
3526 - CLEANUP: cli: replace all occurrences of manual handling of return messages
3527 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
3528 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
3529 - BUG/MINOR: lua: fix setting netfilter mark
3530 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
3531 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
3532 - BUG/MINOR: stats: Wait the body before processing POST requests
3533 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
3534 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
3535 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
3536 - MINOR: debug: indicate the applet name when the task is task_run_applet()
3537 - MINOR: tools: add append_prefixed_str()
3538 - MINOR: lua: export applet and task handlers
3539 - MEDIUM: debug: make the thread dump code show Lua backtraces
3540 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
3541 - MINOR: list: add LIST_SPLICE() to merge one list into another
3542 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
3543 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
3544 - MINOR: sink: create definitions a minimal code for event sinks
3545 - MINOR: sink: add a support for file descriptors
3546 - MINOR: trace: start to create a new trace subsystem
3547 - MINOR: trace: add allocation of buffer-sized trace buffers
3548 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
3549 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
3550 - MINOR: trace/cli: add "show trace" to report trace state and statistics
3551 - MINOR: trace: implement a very basic trace() function
3552 - MINOR: trace: add the file name and line number in the prefix
3553 - MINOR: trace: make trace() now also take a level in argument
3554 - MINOR: trace: implement a call to a decode function
3555 - MINOR: trace: add per-level macros to produce traces
3556 - MINOR: trace: add a definition of typed arguments to trace()
3557 - MINOR: trace: make sure to always stop the locking when stopping or pausing
3558 - MINOR: trace: add the possibility to lock on some arguments
3559 - MINOR: trace: parse the "lock" argument to trace
3560 - MINOR: trace: retrieve useful pointers and enforce lock-on
3561 - DOC: management: document the "trace" and "show trace" commands
3562 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
3563 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
3564 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
3565 - DOC: fixed typo in management.txt
3566 - BUG/MINOR: mworker: disable SIGPROF on re-exec
3567 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
3568 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
3569 - MINOR: backend: Add srv_queue converter
3570 - MINOR: sink: set the fd-type sinks to non-blocking
3571 - MINOR: tools: add a function varint_bytes() to report the size of a varint
3572 - MINOR: buffer: add functions to read/write varints from/to buffers
3573 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
3574 - MINOR: sink: now call the generic fd write function
3575 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
3576 - MINOR: ring: add a ring_write() function
3577 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
3578 - MINOR: sink: add support for ring buffers
3579 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
3580 - MINOR: sink: now report the number of dropped events on output
3581 - MINOR: trace: support a default callback for the source
3582 - MINOR: trace: extend the source location to 13 chars
3583 - MINOR: trace: show thread number and source name in the trace
3584 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
3585 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
3586 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
3587 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
3588 - MINOR: trace: change the "payload" level to "data" and move it
3589 - MINOR: trace: prepend the function name for developer level traces
3590 - MINOR: trace: also report the trace level in the output
3591 - MINOR: trace: change the detail_level to per-source verbosity
3592 - MINOR: mux-h2/trace: register a new trace source with its events
3593 - MINOR: mux-h2/trace: add the default decoding callback
3594 - MEDIUM: mux-h2/trace: add lots of traces all over the code
3595 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
3596 - MINOR: mux-h2/trace: add a new verbosity level "clean"
3597 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
3598 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
3599 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
3600 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
3601 - CLEANUP: mux-h2/trace: lower-case event names
3602 - MINOR: trace: extend default event names to 12 chars
3603 - BUG/MINOR: ring: fix the way watchers are counted
3604 - MINOR: cli: extend the CLI context with a list and two offsets
3605 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
3606 - MEDIUM: ring: implement a wait mode for watchers
3607 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
3608 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
3609 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
3610 - CLEANUP: fd: remove leftovers of the fdcache
3611 - MINOR: fd: add a new "initialized" bit in the fdtab struct
3612 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
3613 - MEDIUM: log: use the new generic fd_write_frag_line() function
3614 - MINOR: log: add a target type instead of hacking the address family
3615 - MEDIUM: log: add support for logging to a ring buffer
3616 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
3617 - MINOR: build: add linux-glibc-legacy build TARGET
3618 - BUG/MEDIUM: peers: local peer socket not bound.
3619 - BUILD: connection: silence gcc warning with extra parentheses
3620 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
3621 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
3622 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
3623 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
3624 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
3625 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
3626 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
3627 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
3628 - MEDIUM: fd: remove the FD_EV_POLLED status bit
3629 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
3630 - MINOR: fd: make updt_fd_polling() a normal function
3631 - CONTRIB: debug: add new program "poll" to test poll() events
3632 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
3633 - BUG/MINOR: checks: start sending the request right after connect()
3634 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
3635 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
3636 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
3637 - BUILD: CI: add basic CentOS 6 cirrus build
3638 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
3639 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
3640 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
3641 - MEDIUM: fd: mark the FD as ready when it's inserted
3642 - MINOR: fd: add two new calls fd_cond_{recv,send}()
3643 - MEDIUM: connection: enable reading only once the connection is confirmed
3644 - MINOR: fd: add two flags ERR and SHUT to describe FD states
3645 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
3646 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
3647 - MINOR: stats: report the number of idle connections for each server
3648 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
3649 - BUILD/MINOR: auth: enabling for osx
3650 - BUG/MINOR: listener: Fix a possible null pointer dereference
3651 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
3652 - MINOR: stats: Add JSON export from the stats page
3653 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
3654 - MINOR: sample: Add UUID-fetch
3655 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
3656 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
3657 - BUG/MINOR: backend: Fix a possible null pointer dereference
3658 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
3659 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
3660 - BUILD: CI: temporarily disable ASAN
3661 - MINOR: htx: Add a flag on HTX message to report processing errors
3662 - MINOR: mux-h1: Report a processing error during output processing
3663 - MINOR: http-ana: Handle HTX errors first during message analysis
3664 - MINOR: http-ana: Remove err_state field from http_msg
3665 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
3666 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
3667 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
3668 - MINOR: istbuf: Add the function b_isteqi()
3669 - MINOR: log: Provide a function to emit a log for an application
3670 - MINOR: http: Add function to parse value of the header Status
3671 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
3672 - MINOR: h1-htx: Use the same function to copy message payload in all cases
3673 - MINOR: muxes/htx: Ignore pseudo header during message formatting
3674 - MINOR: fcgi: Add code related to FCGI protocol
3675 - MEDIUM: fcgi-app: Add FCGI application and filter
3676 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
3677 - MINOR: doc: Add documentation about the FastCGI support
3678 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
3679 - BUILD: CI: install golang-1.13 when building BoringSSL
3680 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
3681 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
3682 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
3683 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
3684 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
3685 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
3686 - MEDIUM: list: Separate "locked" list from regular list.
3687 - MINOR: mt_lists: Add new macroes.
3688 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
3689 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
3690 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
3691 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
3692 - TESTS: Add a stress-test for mt_lists.
3693 - BUILD: travis-ci: add PCRE2, SLZ build
3694 - BUG/MINOR: build: fix event ports (Solaris)
3695 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
3696 - OPTIM: listeners: use tasklets for the multi-queue rings
3697 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
3698 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
3699 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
3700 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
3701 - CLEANUP: task: remove impossible test
3702 - CLEANUP: task: cache the task_per_thread pointer
3703 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
3704 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
3705 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
3706 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
3707 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
3708 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
3709 - MINOR: h2/trace: report the frame type when known
3710 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
3711 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
3712 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
3713 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
3714 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
3715 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
3716 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
3717 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
3718 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
3719 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
3720 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
3721 - BUG/MEDIUM: spoe: Use a different engine-id per process
3722 - MINOR: spoe: Improve generation of the engine-id
3723 - MINOR: spoe: Support the async mode with several threads
3724 - MINOR: http: Add server name header from HTTP multiplexers
3725 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
3726 - MINOR: stats: Add the support of float fields in stats
3727 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
3728 - DOC: Fix documentation about the cli command to get resolver stats
3729 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
3730 - BUG/MINOR: stats: Add a missing break in a switch statement
3731 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
3732 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
3733 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
3734 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
3735 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
3736 - DOC: replace utf-8 quotes by ascii ones
3737 - BUG/MEDIUM: fd: HUP is an error only when write is active
3738 - BUG/MINOR: action: do-resolve does not yield on requests with body
3739 - Revert "MINOR: cache: allow caching of OPTIONS request"
3740
Willy Tarreaudb514072019-07-16 19:15:28 +020037412019/07/16 : 2.1-dev1
3742 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
3743 - DOC: this is a development branch again.
3744 - MEDIUM: Make 'block' directive fatal
3745 - MEDIUM: Make 'redispatch' directive fatal
3746 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
3747 - MEDIUM: Remove 'option independant-streams'
3748 - MINOR: sample: Add sha2([<bits>]) converter
3749 - MEDIUM: server: server-state global file stored in a tree
3750 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
3751 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
3752 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
3753 - MINOR: htx: Add the function htx_change_blk_value_len()
3754 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
3755 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
3756 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
3757 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
3758 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
3759 - BUILD: mworker: silence two printf format warnings around getpid()
3760 - BUILD: makefile: use :space: instead of digits to count commits
3761 - BUILD: makefile: adjust the sed expression of "make help" for solaris
3762 - BUILD: makefile: do not rely on shell substitutions to determine git version
3763 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
3764 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
3765 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
3766 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
3767 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
3768 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
3769 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
3770 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
3771 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
3772 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
3773 - BUG/MINOR: log: Detect missing sampling ranges in config
3774 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
3775 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
3776 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
3777 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
3778 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
3779 - BUG/MINOR: mworker/cli: don't output a \n before the response
3780 - BUG/MEDIUM: checks: unblock signals in external checks
3781 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
3782 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
3783 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
3784 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
3785 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
3786 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
3787 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
3788 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
3789 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
3790 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
3791 - BUG/MEDIUM: servers: Authorize tfo in default-server.
3792 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
3793 - MINOR: server: Add "no-tfo" option.
3794 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
3795 - MINOR: action: Add the return code ACT_RET_DONE for actions
3796 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
3797 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
3798 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
3799 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
3800 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
3801 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
3802 - DOC: contrib: spoa_server Add some hints for building spoa_server
3803 - DOC: Fix typo in intro.txt
3804 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
3805 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
3806 - MINOR: pools: release the pool's lock during the malloc/free calls
3807 - MINOR: pools: always pre-initialize allocated memory outside of the lock
3808 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
3809 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
3810 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
3811 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
3812 - BUG/MEDIUM: da: cast the chunk to string.
3813 - DOC: Fix typos and grammer in configuration.txt
3814 - CLEANUP: proto_tcp: Remove useless header inclusions.
3815 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
3816 - MINOR: task: introduce work lists
3817 - BUG/MAJOR: listener: fix thread safety in resume_listener()
3818 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
3819 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
3820 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
3821 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
3822 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
3823 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
3824 - MEDIUM: mworker-prog: Add user/group options to program section
3825 - REGTESTS: checks: tcp-check connect to multiple ports
3826 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
3827
Willy Tarreau9dc6b972019-06-16 21:49:47 +020038282019/06/16 : 2.1-dev0
3829 - exact copy of 2.0.0
3830
Willy Tarreauba236302019-06-16 20:00:26 +020038312019/06/16 : 2.0.0
3832 - MINOR: fd: Don't use atomic operations when it's not needed.
3833 - DOC: mworker-prog: documentation for the program section
3834 - MINOR: http: add a new "http-request replace-uri" action
3835 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
3836 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
3837 - MINOR: mworker: change formatting in uptime field of "show proc"
3838 - MINOR: mworker: add the HAProxy version in "show proc"
3839 - MINOR: doc: Remove -Ds option in man page
3840 - MINOR: doc: add master-worker in the man page
3841 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
3842 - BUILD: Silence gcc warning about unused return value
3843 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
3844 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
3845 - MINOR: doc: update the manpage and usage message about -S
3846 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
3847 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
3848 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
3849 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
3850 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
3851 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
3852 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
3853 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
3854 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
3855 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
3856 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
3857 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
3858 - MINOR: h2: Set flags about the request's scheme on the start-line
3859 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
3860 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
3861 - MEDIUM: server: server-state only rely on server name
3862 - CLEANUP: connection: rename the wait_event.task field to .tasklet
3863 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
3864 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
3865 - DOC: add some environment variables in section 2.3
3866 - BUILD: makefile: clarify the "help" output and list options
3867 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
3868 - BUG: tasks: fix bug introduced by latest scheduler cleanup
3869 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
3870 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
3871 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
3872 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
3873 - BUILD: makefile: further clarify the "help" output and list targets
3874 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
3875 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
3876 - DOC: update few references to the linux* targets and change them to linux-glibc
3877 - BUILD: makefile: detect and reject recently removed linux targets
3878 - BUILD: makefile: enable linux namespaces by default on linux
3879 - BUILD: makefile: enable TFO on linux platforms
3880 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
3881 - DOC: small updates to the CONTRIBUTING file
3882 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
3883 - CLEANUP: removed obsolete examples an move a few to better places
3884 - DOC: Fix typos in CONTRIBUTING
3885 - DOC: update the outdated ROADMAP file
3886 - DOC: create a BRANCHES file to explain the life cycle
3887 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
3888 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
3889 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
3890 - BUILD: tools: work around an internal compiler bug in gcc-3.4
3891 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
3892 - BUILD: makefile: enable USE_RT on Solaris
3893 - BUILD: makefile: do not use echo -n
3894 - DOC: mention a few common build errors in the INSTALL file
3895
Willy Tarreauca3551f2019-06-11 19:28:00 +020038962019/06/11 : 2.0-dev7
3897 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
3898 - MINOR: tools: add new bitmap manipulation functions
3899 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
3900 - MINOR: chunks: Make sure trash_size is only set once.
3901 - Revert "MINOR: chunks: Make sure trash_size is only set once."
3902 - MINOR: threads: serialize threads initialization
3903 - MINOR peers: data structure simplifications for server names dictionary cache.
3904 - DOC: peers: Update for dictionary cache entries for peers protocol.
3905 - MINOR: dict: Store the length of the dictionary entries.
3906 - MINOR: peers: A bit of optimization when encoding cached server names.
3907 - MINOR: peers: Optimization for dictionary cache lookup.
3908 - MEDIUM: tools: improve time format error detection
3909 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
3910 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
3911 - MINOR: threads: avoid clearing harmless twice in thread_release()
3912 - MEDIUM: threads: add thread_sync_release() to synchronize steps
3913 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
3914 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
3915 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
3916 - MEDIUM: init/threads: don't use spinlocks during the init phase
3917 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
3918 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
3919 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
3920 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
3921 - MINOR: htx: Add the function htx_move_blk_before()
3922 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
3923 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
3924 - MINOR: http: turn default error files to HTTP/1.1
3925 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
3926 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
3927 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
3928 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
3929 - MINOR: contrib/spoa_server: Add random IP score
3930 - DOC/MINOR: contrib/spoa_server: Fix typo in README
3931
Willy Tarreaub57f1092019-06-07 06:12:59 +020039322019/06/07 : 2.0-dev6
3933 - BUG/MEDIUM: connection: fix multiple handshake polling issues
3934 - MINOR: connection: also stop receiving after a SOCKS4 response
3935 - MINOR: mux-h1: don't try to recv() before the connection is ready
3936 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
3937 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
3938 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
3939 - CONTRIB: debug: add 4 missing connection/conn_stream flags
3940 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
3941 - MINOR: server: increase the default pool-purge-delay to 5 seconds
3942 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
3943 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
3944 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
3945 - BUILD: task: fix a build warning when threads are disabled
3946 - CLEANUP: peers: Remove tabs characters.
3947 - CLEANUP: peers: Replace hard-coded values by macros.
3948 - BUG/MINOR: peers: Wrong stick-table update message building.
3949 - MINOR: dict: Add dictionary new data structure.
3950 - MINOR: peers: Add a LRU cache implementation for dictionaries.
3951 - MINOR: stick-table: Add "server_name" new data type.
3952 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
3953 - MINOR: proxy: Add a "server by name" tree to proxy.
3954 - MINOR: server: Add a dictionary for server names.
3955 - MINOR: stream: Stickiness server lookup by name.
3956 - MINOR: peers: Make peers protocol support new "server_name" data type.
3957 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
3958 - REGTEST: Add a basic server by name stickiness reg test.
3959 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
3960 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
3961 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
3962 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
3963 - BUILD: travis-ci improvements
3964 - MINOR: SSL: add client/server random sample fetches
3965 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
3966 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
3967 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
3968 - MEDIUM: mux-h1: refactor output processing
3969 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
3970 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
3971 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
3972 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
3973 - MEDIUM: htx: Add the parsing of trailers of chunked messages
3974 - MINOR: htx: Don't use end-of-data blocks anymore
3975 - BUG/MINOR: mux-h1: Don't send more data than expected
3976 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
3977 - BUG/MINOR: peers: Wrong "server_name" decoding.
3978 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
3979 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
3980 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
3981 - MEDIUM: ssl: Handle subscribe by itself.
3982 - MINOR: ssl: Make ssl_sock_handshake() static.
3983 - MINOR: connections: Add a new xprt method, remove_xprt.
3984 - MINOR: connections: Add a new xprt method, add_xprt().
3985 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
3986 - MEDIUM: connections: Remove CONN_FL_SOCK*
3987 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
3988 - BUG/MINOR: peers: Wrong server name parsing.
3989 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
3990 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
3991 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
3992 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
3993 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
3994 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
3995 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
3996 - MEDIUM: stream: re-arrange the connection setup status reporting
3997 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
3998 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
3999 - MEDIUM: stream: rearrange the events to remove the loop
4000 - MEDIUM: stream: only loop on flags relevant to the analysers
4001 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
4002 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
4003 - BUILD: peers: fix a build warning about an incorrect intiialization
4004 - BUG/MINOR: time: make sure only one thread sets global_now at boot
4005 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
4006
Willy Tarreauabc874e2019-06-02 12:06:08 +020040072019/06/02 : 2.0-dev5
4008 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
4009 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
4010 - BUILD: watchdog: condition it to USE_RT
4011 - MINOR: raw_sock: report global traffic statistics
4012 - MINOR: stats: report the global output bit rate in human readable form
4013 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
4014 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
4015 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
4016 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
4017 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
4018 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
4019 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
4020 - DOC: fix typos
4021 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
4022 - OPTIM: freq-ctr: don't take the date lock for most updates
4023 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
4024 - CLEANUP: debug: remove the TRACE() macro
4025 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
4026 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
4027 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
4028 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
4029 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
4030 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
4031 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
4032 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
4033 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
4034 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
4035 - BUILD: ssl: fix latest LibreSSL reg-test error
4036 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
4037 - MINOR: cli/activity: add 3 general purpose counters in development mode
4038 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
4039 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
4040 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
4041 - MEDIUM: config: now alert when two servers have the same name
4042 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
4043 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
4044 - MINOR: htx: Store the head position instead of the wrap one
4045 - MINOR: htx: Store start-line block's position instead of address of its payload
4046 - MINOR: htx: Add functions to get the first block of an HTX message
4047 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
4048 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
4049 - CLEANUP: htx: Remove unused function htx_get_stline()
4050 - MINOR: http/htx: Use sl_pos directly to replace the start-line
4051 - MEDIUM: http/htx: Perform analysis relatively to the first block
4052 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
4053 - MINOR: htx: Add function htx_get_max_blksz()
4054 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
4055 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
4056 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
4057 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
4058 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
4059 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
4060 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
4061 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
4062 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
4063 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
4064 - MEDIUM: htx: 1xx messages are now part of the final reponses
4065 - MINOR: channel/htx: Add function to forward headers of an HTX message
4066 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
4067 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
4068 - MEDIUM: htx: Store the first block position instead of the start-line one
4069 - MINOR: stats/htx: don't use the first block position but the head one
4070 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
4071 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
4072 - MEDIUM: filters/htx: Filter body relatively to the first block
4073 - MINOR: htx: Optimize htx_drain() when all data are drained
4074 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
4075 - MINOR: htx: remove the unused function htx_find_blk()
4076 - MINOR: htx: Remove support of pseudo headers because it is unused
4077 - BUG/MEDIUM: http: fix "http-request reject" when not final
4078 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
4079 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
4080 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
4081 - MINOR: htx: make htx_add_data() return the transmitted byte count
4082 - MEDIUM: htx: make htx_add_data() never defragment the buffer
4083 - MINOR: activity: write totals on the "show activity" output
4084 - MINOR: activity: report totals and average separately
4085 - MEDIUM: poller: separate the wait time from the wake events
4086 - MINOR: activity: report the number of failed pool/buffer allocations
4087 - MEDIUM: buffers: relax the buffer lock a little bit
4088 - MINOR: task: turn the WQ lock to an RW_LOCK
4089 - MEDIUM: task: don't grab the WR lock just to check the WQ
4090 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
4091 - MEDIUM: sessions: Introduce session flags.
4092 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
4093 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
4094 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
4095 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
4096 - MEDIUM: tasks: Get rid of active_tasks_mask.
4097 - MEDIUM: connection: Upstream SOCKS4 proxy support
4098 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
4099 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
4100
Willy Tarreau56740692019-05-22 20:48:33 +020041012019/05/22 : 2.0-dev4
4102 - BUILD: enable freebsd builds on cirrus-ci
4103 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
4104 - MEDIUM: Make 'option forceclose' actually warn
4105 - MEDIUM: Make 'resolution_pool_size' directive fatal
4106 - DOC: management: place "show activity" at the right place
4107 - MINOR: cli/activity: show the dumping thread ID starting at 1
4108 - MINOR: task: export global_task_mask
4109 - MINOR: cli/debug: add a thread dump function
4110 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
4111 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
4112 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
4113 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
4114 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
4115 - BUG/MINOR: debug: don't check the call date on tasklets
4116 - MINOR: thread: implement ha_thread_relax()
4117 - MINOR: task: put barriers after each write to curr_task
4118 - MINOR: task: always reset curr_task when freeing a task or tasklet
4119 - MINOR: stream: detach the stream from its own task on stream_free()
4120 - MEDIUM: debug/threads: implement an advanced thread dump system
4121 - REGTEST: extend the check duration on tls_health_checks and mark it slow
4122 - DOC: fix "successful" typo
4123 - MINOR: init: setenv HAPROXY_CFGFILES
4124 - MINOR: threads/init: synchronize the threads startup
4125 - MEDIUM: init/mworker: make the pipe register function a regular initcall
4126 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
4127 - CLEANUP: threads: remove the now unused START_LOCK label
4128 - MINOR: init/threads: make the global threads an array of structs
4129 - MINOR: threads: add each thread's clockid into the global thread_info
4130 - CLEANUP: stream: remove an obsolete debugging test
4131 - MINOR: tools: add dump_hex()
4132 - MINOR: debug: implement ha_panic()
4133 - MINOR: debug/cli: add some debugging commands for developers
4134 - MINOR: tools: provide a may_access() function and make dump_hex() use it
4135 - MINOR: debug: make ha_panic() report threads starting at 1
4136 - REORG: compat: move some integer limit definitions from standard.h to compat.h
4137 - REORG: threads: move the struct thread_info from global.h to hathreads.h
4138 - MINOR: compat: make sure to always define clockid_t
4139 - MINOR: threads: always place the clockid in the struct thread_info
4140 - MINOR: threads: add a thread-local thread_info pointer "ti"
4141 - MINOR: time: move the cpu, mono, and idle time to thread_info
4142 - MINOR: time: add a function to retrieve another thread's cputime
4143 - MINOR: debug: report each thread's cpu usage in "show thread"
4144 - BUILD: threads: only assign the clock_id when supported
4145 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
4146 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
4147 - MAJOR: polling: add event ports support (Solaris)
4148 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
4149 - CLEANUP: time: refine the test on _POSIX_TIMERS
4150 - MINOR: compat: define a new empty type empty_t for non-implemented fields
4151 - CLEANUP: time: switch clockid_t to empty_t when not available
4152 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
4153 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
4154 - MINOR: debug: switch to SIGURG for thread dumps
4155 - CLEANUP: threads: really move thread_info to hathreads.c
4156 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
4157 - CLEANUP: debug: always report harmless/want_rdv even without threads
4158 - MINOR: threads: implement ha_tkill() and ha_tkillall()
4159 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
4160 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
4161 - MINOR: debug: dump streams when an applet, iocb or stream is known
4162 - MINOR: threads: add a "stuck" flag to the thread_info struct
4163 - MINOR: threads: add a timer_t per thread in thread_info
4164 - MAJOR: watchdog: implement a thread lockup detection mechanism
4165 - MINOR: stream: remove the cpu time detection from process_stream()
4166 - MINOR: connection: report the mux names in "haproxy -vv"
4167 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
4168 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
4169 - MINOR: WURFL: call header_retireve_callback() in dummy library
4170 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
4171 - MINOR: WURFL: shows log messages during module initialization
4172 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
4173 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
4174 - MEDIUM: WURFL: HTX awareness.
4175 - MINOR: WURFL: module version bump to 2.0
4176 - MINOR: WURFL: do not emit warnings when not configured
4177 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
4178 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
4179 - BUILD: travis: add sanitizers to travis-ci builds
4180 - BUILD: time: remove the test on _POSIX_C_SOURCE
4181 - CLEANUP: build: rename some build macros to use the USE_* ones
4182 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
4183 - BUG/MEDIUM: dns: make the port numbers unsigned
4184 - MEDIUM: config: deprecate the antique req* and rsp* commands
4185
Willy Tarreaua257a9b2019-05-15 16:51:48 +020041862019/05/15 : 2.0-dev3
4187 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
4188 - CLEANUP: peers: remove useless annoying tabulations.
4189 - CLEANUP: peers: replace timeout constants by macros.
4190 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
4191 - DOC: The option httplog is no longer valid in a backend.
4192 - DOC: peers: Peers protocol documentation update.
4193 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
4194 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
4195 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
4196 - BUILD: Makefile: remove outdated support for dlmalloc
4197 - BUILD: Makefile: consider a variable's origin and not its value for the options list
4198 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
4199 - BUILD: Makefile: shorten default settings declaration
4200 - BUILD: Makefile: clean up the target declarations
4201 - BUILD: report the whole feature set with their status in haproxy -vv
4202 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
4203 - REGTEST: script: make the script use the new features list
4204 - REGTEST: script: remove platform-specific assigments of OPTIONS
4205 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
4206 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
4207 - BUILD/MINOR: listener: Silent a few signedness warnings.
4208 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
4209 - BUG/MEDIUM: mworker: don't free the wrong child when not found
4210 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
4211 - BUG/MAJOR: checks: segfault during tcpcheck_main
4212 - BUILD: makefile: work around an old bug in GNU make-3.80
4213 - BUILD: makefile: work around another bug in make 3.80
4214 - BUILD: http: properly mark some struct as extern
4215 - BUILD: chunk: properly declare pool_head_trash as extern
4216 - BUILD: cache: avoid a build warning with some compilers/linkers
4217 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
4218 - MINOR: tools: add an unsetenv() implementation
4219 - BUILD: re-implement an initcall variant without using executable sections
4220 - BUILD: use inttypes.h instead of stdint.h
4221 - BUILD: connection: fix naming of ip_v field
4222 - BUILD: makefile: fix build of IPv6 header on aix51
4223 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
4224 - BUILD: define unsetenv on AIX 5.1
4225 - BUILD: Makefile: disable shared cache on AIX 5.1
4226 - MINOR: ssl: Add aes_gcm_dec converter
4227 - REORG: mworker: move serializing functions to mworker.c
4228 - REORG: mworker: move signals functions to mworker.c
4229 - REORG: mworker: move IPC functions to mworker.c
4230 - REORG: mworker: move signal handlers and related functions
4231 - REORG: mworker: move mworker_cleanlisteners to mworker.c
4232 - MINOR: mworker: calloc mworker_proc structures
4233 - MINOR: mworker: don't use children variable anymore
4234 - MINOR: cli: export cli_parse_default() definition in cli.h
4235 - REORG: mworker/cli: move CLI functions to mworker.c
4236 - MEDIUM: mworker-prog: implement program for master-worker
4237 - MINOR: mworker/cli: show programs in 'show proc'
4238 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
4239 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
4240 - MINOR: cli: export HAPROXY_CLI environment variable
4241 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
4242 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
4243 - REGTEST: http-capture/h00000: Relax a regex matching the log message
4244 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
4245 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
4246 - REGTEST: log/b00000: Be sure the client always hits its timeout
4247 - REGTEST: lua/b00003: Relax the regex matching the log message
4248 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
4249 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
4250 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
4251 - BUG/MEDIUM: htx: fix random premature abort of data transfers
4252 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
4253 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
4254 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
4255 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
4256 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
4257 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
4258 - MINOR: skip get_gmtime where tm is unused
4259 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
4260 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
4261 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
4262 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
4263 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
4264 - BUG/MINOR: listener: renice the accept ring processing task
4265 - MINOR: cli/listener: report the number of accepts on "show activity"
4266 - MINOR: cli/activity: report the accept queue sizes in "show activity"
4267 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
4268 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
4269 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
4270 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
4271 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
4272 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
4273 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
4274 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
4275 - MINOR: mux-h1: Simplify handling of 1xx responses
4276 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
4277 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
4278 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
4279 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
4280 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
4281 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
4282 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
4283 - MINOR: stream: Set a flag when the stream uses the HTX
4284 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
4285 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
4286 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
4287 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
4288 - MEDIUM: muxes: Add an optional input buffer during mux initialization
4289 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
4290 - MEDIUM: muxes: Be prepared to don't own connection during the release
4291 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
4292 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
4293 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
4294 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
4295 - MAJOR: htx: Enable the HTX mode by default for all proxies
4296 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
4297 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
4298 - CLEANUP: task: do not export rq_next anymore
4299 - MEDIUM: tasks: improve fairness between the local and global queues
4300 - MEDIUM: tasks: only base the nice offset on the run queue depth
4301 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
4302 - BUG/MEDIUM: map: Fix memory leak in the map converter
4303 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
4304 - BUILD: task/thread: fix single-threaded build of task.c
4305 - BUILD: cli/threads: fix build in single-threaded mode
4306 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
4307 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
4308 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
4309 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
4310 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
4311 - BUILD: address a few cases of "static <type> inline foo()"
4312 - BUILD: do not specify "const" on functions returning structs or scalars
4313 - BUILD: htx: fix a used uninitialized warning on is_cookie2
4314 - MINOR: peers: Add a new command to the CLI for peers.
4315 - DOC: update for "show peers" CLI command.
4316 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
4317 - MEDIUM: mworker: store the leaving state of a process
4318 - MEDIUM: mworker-prog: implements 'option start-on-reload'
4319 - CLEANUP: mworker: remove the type field in mworker_proc
4320 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
4321 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
4322 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
4323 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
4324 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
4325 - BUG/MINOR: mworker: mworker_kill should apply on every children
4326 - BUG/MINOR: mworker: don't exit with an ambiguous value
4327 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
4328 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
4329 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
4330 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
4331 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
4332 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
4333 - MINOR: mux-h1: Handle read0 during TCP splicing
4334 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
4335 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
4336 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
4337 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
4338 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
4339 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
4340 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
4341 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
4342 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
4343 - BUG/MEDIUM: applets: Don't use task_in_rq().
4344 - BUG/MAJOR: task: make sure never to delete a queued task
4345 - MINOR: task/thread: factor out a wake-up condition
4346 - CLEANUP: task: remain consistent when using the task's handler
4347 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
4348 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
4349 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
4350 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
4351 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
4352 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
4353 - BUG/MINOR: mworker: disable busy polling in the master process
4354 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
4355 - MEDIUM: ssl: Give ssl_sock its own context.
4356 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
4357 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
4358 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
4359 - MEDIUM: ssl: provide our own BIO.
4360 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
4361 - MINOR: peers: adds counters on show peers about tasks calls.
4362 - MEDIUM: enable travis-ci builds
4363 - MINOR: fd: Add a counter of used fds.
4364 - MEDIUM: connections: Add a way to control the number of idling connections.
4365 - BUG/MEDIUM: maps: only try to parse the default value when it's present
4366 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
4367 - REGTEST: Missing REQUIRE_VERSION declarations.
4368 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
4369 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
4370 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
4371 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
4372 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
4373 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
4374 - MINOR: gcc: Fix a silly gcc warning in connect_server()
4375 - MINOR: ssl/cli: async fd io-handlers printable on show fd
4376 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
4377 - BUILD: add USE_WURFL to the list of known build options
4378 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
4379 - BUILD: wurfl: build fix for 1.9/2.0 code base
4380 - CLEANUP: wurfl: removed deprecated methods
4381 - DOC: wurfl: added point of contact in MAINTAINERS file
4382 - MINOR: wurfl: enabled multithreading mode
4383 - MINOR: contrib: dummy wurfl library
4384 - MINOR: dns: dns_requester structures are now in a memory pool
4385 - MINOR: dns: move callback affection in dns_link_resolution()
4386 - MINOR: obj_type: new object type for struct stream
4387 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
4388 - MINOR: log: Extract some code to send syslog messages.
4389 - REGTEST: replace LEVEL option by a more human readable one.
4390 - REGTEST: rename the reg test files.
4391 - REGTEST: adapt some reg tests after renaming.
4392 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
4393 - BUG/MAJOR: stream: Missing DNS context initializations.
4394 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
4395 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
4396 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
4397 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
4398 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
4399 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
4400 - CLEANUP: task: report calls as unsigned in show sess
4401 - MINOR: tasks/activity: report the context switch and task wakeup rates
4402 - MINOR: stream: measure and report a stream's call rate in "show sess"
4403 - MINOR: applet: measure and report an appctx's call rate in "show sess"
4404 - BUILD: extend Travis CI config to support more platforms
4405 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
4406 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
4407 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
4408 - BUILD: travis: remove the "allow_failures" entry
4409 - BUG/MINOR: activity: always initialize the profiling variable
4410 - MINOR: activity: make the profiling status per thread and not global
4411 - MINOR: activity: enable automatic profiling turn on/off
4412 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
4413 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
4414 - MINOR: connection: make the debugging helper functions safer
4415 - MINOR: stream/debug: make a stream dump and crash function
4416 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
4417 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
4418 - MEDIUM: streams: measure processing time and abort when detecting bugs
4419 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
4420 - MEDIUM: da: HTX mode support.
4421 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
4422 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
4423 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
4424 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
4425 - DOC: contrib/modsecurity: Typos and fix the reject example
4426 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
4427 - MINOR: log: Add "sample" new keyword to "log" lines.
4428 - MINOR: log: Enable the log sampling and load-balancing feature.
4429 - DOC: log: Document the sampling and load-balancing logging feature.
4430 - REGTEST: Add a new reg test for log load-balancing feature.
4431 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
4432 - REGTEST: Make this reg test be Linux specific.
4433 - CLEANUP: task: move the task_per_thread definition to task.h
4434 - MINOR: activity: report context switch counts instead of rates
4435 - MINOR: threads: Implement HA_ATOMIC_LOAD().
4436 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
4437 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
4438 - MINOR: config: Test validity of tune.maxaccept during the config parsing
4439 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
4440 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
4441 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
4442 - BUG/MINOR: haproxy: fix rule->file memory leak
4443 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
4444 - BUG/MINOR: checks: free memory allocated for tasklets
4445 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
4446 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
4447 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
4448 - MINOR: threads: flatten the per-thread cpu-map
4449 - MINOR: init/threads: remove the useless tids[] array
4450 - MINOR: init/threads: make the threads array global
4451 - BUG/MEDIUM: ssl: Use the early_data API the right way.
4452 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
4453 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
4454 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
4455 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
4456 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
4457 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
4458 - BUG/MINOR: logs/threads: properly split the log area upon startup
4459 - BUILD: extend travis-ci matrix
4460 - CLEANUP: Remove appsession documentation
4461 - DOC: Fix typo in keyword matrix
4462 - BUILD: remove "build_libressl" duplicate declaration
4463 - BUILD: travis-ci: get back to osx without openssl support
4464 - BUILD: enable several LibreSSL hacks, including
4465 - BUILD: temporarily mark LibreSSL builds as allowed to fail
4466 - BUILD: travis: TMPDIR replacement.
4467 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
4468 - MINOR: doc: Document allow-0rtt on the server line.
4469 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
4470 - MEDIUM: proto: Change the prototype of the connect() method.
4471 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
4472 - MINOR: config: Extract the code of "stick-table" line parsing.
4473 - BUILD/MINOR: stick-table: Compilation fix.
4474 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
4475 - MINOR: stick-tables: Add peers process binding computing.
4476 - MINOR: stick-table: Add prefixes to stick-table names.
4477 - MINOR: peers: Do not emit global stick-table names.
4478 - DOC: Update for "table" lines in "peers" section.
4479 - REGTEST: Add reg tests for "table" lines in "peers" sections.
4480 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
4481 - REGTEST: make the tls_health_checks test much faster
4482 - REGTEST: make the "table in peers" test require v2.0
4483 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
4484 - BUG/MEDIUM: h2/htx: always fail on too large trailers
4485 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
4486 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
4487 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
4488 - REGTEST: Flag some slow reg tests.
4489 - REGTEST: Reg tests file renaming.
4490 - REGTEST: Wrong renaming for one reg test.
4491 - REGTEST: Wrong assumption in IP:port logging test.
4492 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
4493 - MINOR: systemd: Use the variables from /etc/default/haproxy
4494 - MINOR: systemd: Make use of master socket in systemd unit
4495 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
4496 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
4497 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
4498 - CLEANUP: task: remove unneeded tests before task_destroy()
4499 - MINOR: mworker: support a configurable maximum number of reloads
4500 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
4501 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
4502 - BUG/MINOR: mux-h1: Fix the parsing of trailers
4503 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
4504 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
4505 - MINOR: htx: Don't try to append a trailer block with the previous one
4506 - MINOR: htx: Remove support for unused OOB HTX blocks
4507 - BUILD: travis-ci bugfixes and improvements
4508 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
4509 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
4510 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
4511 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
4512 - BUILD: ssl: make libressl use its own version numbers
4513 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
4514 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
4515 - BUILD: ssl: fix libressl build again after aes-gcm-enc
4516 - REORG: ssl: move openssl-compat from proto to common
4517 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
4518 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
4519 - CLEANUP: ssl: make inclusion of openssl headers safe
4520 - BUILD: add BoringSSL to travis-ci build matrix
4521 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
4522 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
4523 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
4524 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
4525 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
4526 - MEDIUM: streams: Add a new http action, disable-l7-retry.
4527 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
4528 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
4529 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
4530 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
4531 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
4532 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
4533 - BUILD: threads: fix again the __ha_cas_dw() definition
4534 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
4535 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
4536 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
4537 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
4538 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
4539 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
4540 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
4541 - BUG/MAJOR: ssl: segfault upon an heartbeat request
4542 - MINOR: spoa-server: Clone the v1.7 spoa-example project
4543 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
4544 - MINOR: spoa-server: Externalise debug functions
4545 - MINOR: spoe-server: rename "worker" functions
4546 - MINOR: spoa-server: Replace the thread init system by processes
4547 - MINOR: spoa-server: With debug mode, start only one process
4548 - MINOR: spoa-server: Allow registering external processes
4549 - MINOR: spoa-server: Allow registering message processors
4550 - MINOR: spoa-server: Load files
4551 - MINOR: spoa-server: Prepare responses
4552 - MINOR: spoa-server: Execute registered callbacks
4553 - MINOR: spoa-server: Add Lua processing
4554 - MINOR: spoa-server: Add python
4555 - MINOR/DOC: spoe-server: Add documentation
4556 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
4557 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
4558 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
4559 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
4560 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
4561 - CLEANUP: connection: remove the handle field from the wait_event struct
4562 - BUG/MINOR: log: Wrong log format initialization.
4563 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
4564 - BUG/MINOR: mworker: use after free when the PID not assigned
4565 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
4566 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
4567 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
4568 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
4569 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
4570 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
4571 - MINOR: mux-h2: add macros to check multiple stream states at once
4572 - MINOR: mux-h2: stop relying on CS_FL_REOS
4573 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
4574 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
4575 - MINOR: debug: add a new BUG_ON macro
4576 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
4577 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
4578 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
4579 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
4580
Willy Tarreau6e893b92019-03-26 05:40:51 +010045812019/03/26 : 2.0-dev2
4582 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
4583 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
4584 - MINOR: lists: Implement locked variations.
4585 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
4586 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
4587 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
4588 - MINOR: cfgparse: Add a cast to make gcc happier.
4589 - BUG/MEDIUM: standard: Wrong reallocation size.
4590 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
4591 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
4592 - MAJOR: config: disable support for nbproc and nbthread in parallel
4593 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
4594 - MAJOR: listener: do not hold the listener lock in listener_accept()
4595 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
4596 - MINOR: tools: implement functions to look up the nth bit set in a mask
4597 - MINOR: listener: pre-compute some thread counts per bind_conf
4598 - MINOR: listener: implement multi-queue accept for threads
4599 - MAJOR: listener: use the multi-queue for multi-thread listeners
4600 - MINOR: activity: add accept queue counters for pushed and overflows
4601 - MINOR: config: add global tune.listener.multi-queue setting
4602 - MAJOR: threads: enable one thread per CPU by default
4603 - DOC: update management.txt to reflect that threads are used by default
4604 - BUG/MINOR: config: don't over-count the global maxsock value
4605 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
4606 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
4607 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
4608 - MINOR: list: make the delete and pop operations idempotent
4609 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
4610 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
4611 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
4612 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
4613 - MINOR: listener: introduce listener_backlog() to report the backlog value
4614 - MINOR: listener: do not needlessly set l->maxconn
4615 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
4616 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
4617 - MINOR: peers: Add a message for heartbeat.
4618 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
4619 - BUG/MINOR: init: never lower rlim_fd_max
4620 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
4621 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
4622 - MINOR: init: make the maxpipe computation more accurate
4623 - MINOR: init: move some maxsock updates earlier
4624 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
4625 - REGTEST: fix a spurious "nbthread 4" in the connection test
4626 - DOC: update the text related to the global maxconn value
4627 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
4628 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
4629 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
4630 - MINOR: htx: unconditionally handle parsing errors in requests or responses
4631 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
4632 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
4633 - MINOR: sample: Code factorization "ungrpc" converter.
4634 - MINOR: sample: Rework gRPC converter code.
4635 - CLEANUP: wurfl: remove dead, broken and unmaintained code
4636 - MINOR: config: relax the range checks on cpu-map
4637 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
4638 - MINOR: sample: Extract some protocol buffers specific code.
4639 - DOC: Remove tabs and fixed punctuation.
4640 - MINOR: sample: Add a protocol buffers specific converter.
4641 - REGTEST: Peers reg tests.
4642 - REGTEST: Enable reg tests with HEAD HTTP method usage.
4643 - MINOR: lists: add a LIST_DEL_INIT() macro
4644 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
4645 - MINOR: listener: improve incoming traffic distribution
4646 - MINOR: tools: implement my_flsl()
4647 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
4648 - CLEANUP: listener: remove old thread bit mapping
4649 - MINOR: listener: move thr_idx from the bind_conf to the listener
4650 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
4651 - BUG/MAJOR: config: Wrong maxconn adjustment.
4652 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
4653 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
4654 - MINOR: fd: Remove debugging code.
4655 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
4656 - MINOR: threads: Implement __ha_barrier_atomic*.
4657 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
4658 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
4659 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
4660 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
4661 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
4662 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
4663 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
4664 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
4665 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
4666 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
4667 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
4668 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
4669 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
4670 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
4671 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
4672 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
4673 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
4674 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
4675 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
4676 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
4677 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
4678 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
4679 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
4680 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
4681 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
4682 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
4683 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
4684 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
4685 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
4686 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
4687 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
4688 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
4689 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
4690 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
4691 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
4692 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
4693 - MEDIUM: list: Remove useless barriers.
4694 - MEDIUM: list: Use _HA_ATOMIC_*
4695 - MEDIUM: connections: Use _HA_ATOMIC_*
4696 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
4697 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
4698 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
4699 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
4700 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
4701 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
4702 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
4703 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
4704 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
4705 - MINOR: stats: Move stuff about the stats status codes in stats files
4706 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
4707 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
4708 - BUILD: listener: shut up a build warning when threads are disabled
4709 - BUILD: Makefile: allow the reg-tests target to be verbose
4710 - BUILD: Makefile: resolve LEVEL before calling run-regtests
4711 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
4712 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
4713 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
4714 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
4715 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
4716 - MINOR: muxes: Report the Last read with a dedicated flag
4717 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
4718 - BUILD: tools: fix a build warning on some 32-bit archs
4719 - MINOR: init: report the list of optionally available services
4720 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
4721 - BUG/MINOR: cache: Fully consume large requests in the cache applet
4722 - BUG/MINOR: stats: Fully consume large requests in the stats applet
4723 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
4724 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
4725 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
4726 - MINOR: stats/cache: Handle the header Expect when applets are registered
4727 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
4728 - CLEANUP: cache: don't export http_cache_applet anymore
4729 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
4730 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
4731 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
4732 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
4733 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
4734 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
4735 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
4736 - CLEANUP: mux-h2: add some comments to help understand the code
4737 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
4738 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
4739 - BUG/MEDIUM: h2: Try to be fair when sending data.
4740 - BUG/MINOR: proto-http: Don't forward request body anymore on error
4741 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
4742 - MINOR: connection: and new flag to mark end of input (EOI)
4743 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
4744 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
4745 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
4746 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
4747 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
4748 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
4749 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
4750 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
4751 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
4752 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
4753 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
4754 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
4755 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
4756 - CONTRIB: debug: report the CS and CF's EOI flags
4757 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
4758
Willy Tarreau6c1b6672019-02-26 16:43:49 +010047592019/02/26 : 2.0-dev1
4760 - MINOR: mux-h2: only increase the connection window with the first update
4761 - REGTESTS: remove the expected window updates from H2 handshakes
4762 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
4763 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
4764 - MEDIUM: mux-h2: remove padlen during headers phase
4765 - MINOR: h2: add a bit-based frame type representation
4766 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
4767 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
4768 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
4769 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
4770 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
4771 - MINOR: buffers: add a new b_move() function
4772 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
4773 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
4774 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
4775 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
4776 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
4777 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
4778 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
4779 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
4780 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
4781 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
4782 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
4783 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
4784 - MEDIUM: servers: Be smarter when switching connections.
4785 - MEDIUM: sessions: Keep track of which connections are idle.
4786 - MINOR: payload: add sample fetch for TLS ALPN
4787 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
4788 - MINOR: channel: Add the function channel_add_input
4789 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
4790 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
4791 - BUG/MAJOR: htx: Return the good block address after a defrag
4792 - MINOR: lb: allow redispatch when using consistent hash
4793 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
4794 - BUG/MEDIUM: mux-h2: always restart reading if data are available
4795 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
4796 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
4797 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
4798 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
4799 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
4800 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
4801 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
4802 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
4803 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
4804 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
4805 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
4806 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
4807 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
4808 - MINOR: mux-h2: remove a misleading and impossible test
4809 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
4810 - MINOR: mux-h2: check for too many streams only for idle streams
4811 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
4812 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
4813 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
4814 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
4815 - MINOR: htx: add a new function to add a block without filling it
4816 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
4817 - MEDIUM: mux-h2: pass trailers to HTX
4818 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
4819 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
4820 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
4821 - MINOR: h1: make the H1 headers block parser able to parse headers only
4822 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
4823 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
4824 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
4825 - MINOR: mux-h1: Add the subscription events in "show fd" command
4826 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
4827 - BUG/MINOR: cache/htx: Be sure to count partial trailers
4828 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
4829 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
4830 - MINOR: connections: Remove a stall comment.
4831 - BUG/MEDIUM: cli: make "show sess" really thread-safe
4832 - BUILD: add a new file "version.c" to carry version updates
4833 - MINOR: stream/htx: add the HTX flags output in "show sess all"
4834 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
4835 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
4836 - BUG/MINOR: lua: bad args are returned for Lua actions
4837 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
4838 - MINOR: htx: Add an helper function to get the max space usable for a block
4839 - MINOR: channel/htx: Add HTX version for some helper functions
4840 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
4841 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
4842 - DOC: regtest: make it clearer what the purpose of the "broken" series is
4843 - REGTEST: mailers: add new test for 'mailers' section
4844 - REGTEST: Add a reg test for health-checks over SSL/TLS.
4845 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
4846 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
4847 - BUG/MINOR: compression: Disable it if another one is already in progress
4848 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
4849 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
4850 - REGTEST: Add some informatoin to test results.
4851 - MINOR: htx: Add a function to truncate all blocks after a specific offset
4852 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
4853 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
4854 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
4855 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
4856 - DOC: http-request cache-use / http-response cache-store expects cache name
4857 - REGTEST: "capture (request|response)" regtest.
4858 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
4859 - REGTEST: filters: add compression test
4860 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
4861 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
4862 - DOC: Be a bit more explicit about allow-0rtt security implications.
4863 - MINOR: mux-h1: make the mux_h1_ops struct static
4864 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
4865 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
4866 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
4867 - REGTESTS: test case for map_regm commit 271022150d
4868 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
4869 - REGTESTS: Basic tests for using maps to redirect requests / select backend
4870 - DOC: REGTESTS README varnishtest -Dno-htx= define.
4871 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
4872 - MINOR: checks: Store the proxy in checks.
4873 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
4874 - REGTEST: Switch to vtest.
4875 - REGTEST: Adapt reg test doc files to vtest.
4876 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
4877 - BUG/MINOR: base64: dec func ignores padding for output size checking
4878 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
4879 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
4880 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
4881 - BUG/MINOR: backend: balance uri specific options were lost across defaults
4882 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
4883 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
4884 - MINOR: backend: make headers and RDP cookie also use arg_str/len
4885 - MINOR: backend: add new fields in lbprm to store more LB options
4886 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
4887 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
4888 - MINOR: backend: move hash_balance_factor out of chash
4889 - MEDIUM: backend: move all LB algo parameters into an union
4890 - MINOR: backend: make the random algorithm support a number of draws
4891 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
4892 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
4893 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
4894 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
4895 - DOC: add a missing space in the documentation for bc_http_major
4896 - REGTEST: checks basic stats webpage functionality
4897 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
4898 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
4899 - DOC: add github issue templates
4900 - MINOR: cfgparse: Extract some code to be re-used.
4901 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
4902 - CLEANUP: cfgparse: Code reindentation.
4903 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
4904 - MINOR: cfgparse: Rework peers frontend init.
4905 - MINOR: cfgparse: Simplication.
4906 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
4907 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
4908 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
4909 - DOC: peers: SSL/TLS documentation for "peers"
4910 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
4911 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
4912 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
4913 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
4914 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
4915 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
4916 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
4917 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
4918 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
4919 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
4920 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
4921 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
4922 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
4923 - MINOR: h2: declare new sets of frame types
4924 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
4925 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
4926 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
4927 - BUG/MINOR: hpack: return a compression error on invalid table size updates
4928 - MINOR: server: make sure pool-max-conn is >= -1
4929 - BUG/MINOR: stream: take care of synchronous errors when trying to send
4930 - CLEANUP: server: fix indentation mess on idle connections
4931 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
4932 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
4933 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
4934 - MINOR: server: add a max-reuse parameter
4935 - MINOR: mux-h2: always consider a server's max-reuse parameter
4936 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
4937 - MINOR: stream: don't wait before retrying after a failed connection reuse
4938 - MEDIUM: h2: always parse and deduplicate the content-length header
4939 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
4940 - CLEANUP: h2: Remove debug printf in mux_h2.c
4941 - MINOR: cfgparse: make the process/thread parser support a maximum value
4942 - MINOR: threads: make MAX_THREADS configurable at build time
4943 - DOC: nbthread is no longer experimental.
4944 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
4945 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
4946 - BUG/MINOR: spoe: corrected fragmentation string size
4947 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
4948 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
4949 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
4950 - SCRIPTS: add the issue tracker URL to the announce script
4951 - MINOR: peers: Extract some code to be reused.
4952 - CLEANUP: peers: Indentation fixes.
4953 - MINOR: peers: send code factorization.
4954 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
4955 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
4956 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
4957 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
4958 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
4959 - CLEANUP: peers: Be more generic.
4960 - MINOR: peers: move error handling to reduce the size of the I/O handler.
4961 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
4962 - MINOR: peers: move send code to reduce the size of the I/O handler.
4963 - CLEANUP: peers: Remove useless statements.
4964 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
4965 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
4966 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
4967 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
4968 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
4969 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
4970 - CLEANUP: mux-h2: remove two useless but misleading assignments
4971 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
4972 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
4973 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
4974 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
4975 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
4976 - BUG/MEDIUM: peers: Handle mux creation failure.
4977 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
4978 - BUG/MEDIUM: compression: Rewrite strong ETags
4979 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
4980 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
4981 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
4982 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
4983 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
4984 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
4985 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
4986 - MINOR: h2: add a generic frame checker
4987 - MEDIUM: mux-h2: check the frame validity before considering the stream state
4988 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
4989 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
4990 - DOC: compression: Update the reasons for disabled compression
4991 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
4992 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
4993 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
4994 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
4995 - BUG/MEDIUM: peers: Peer addresses parsing broken.
4996 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
4997 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
4998 - BUG/MINOR: stream: don't close the front connection when facing a backend error
4999 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
5000 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
5001 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
5002 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
5003 - BUG/MINOR: server: fix logic flaw in idle connection list management
5004 - MINOR: mux-h2: max-concurrent-streams should be unsigned
5005 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
5006 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
5007 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
5008 - MINOR: xref: Add missing barriers.
5009 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
5010 - MINOR: debug: Add an option that causes random allocation failures.
5011 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
5012 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
5013 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
5014 - BUG/MINOR: backend: check srv_conn before dereferencing it
5015 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
5016 - BUG/MEDIUM: mux-h2: always set :authority on request output
5017 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
5018 - BUG/MINOR: threads: fix the process range of thread masks
5019 - BUG/MINOR: config: fix bind line thread mask validation
5020 - CLEANUP: threads: fix misleading comment about all_threads_mask
5021 - CLEANUP: threads: use nbits to calculate the thread mask
5022 - OPTIM: listener: optimize cache-line packing for struct listener
5023 - MINOR: tools: improve the popcount() operation
5024 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
5025 - MINOR: global: add proc_mask() and thread_mask()
5026 - MINOR: config: simplify bind_proc processing using proc_mask()
5027 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
5028 - BUG/MINOR: compression: properly report compression stats in HTX mode
5029 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
5030 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
5031 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
5032 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
5033 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
5034 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
5035 - DOC: ssl: Stop documenting ciphers example to use
5036 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
5037 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
5038 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
5039 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
5040 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
5041 - MINOR: config: make MAX_PROCS configurable at build time
5042 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
5043 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
5044 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
5045 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
5046 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
5047 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
5048 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
5049 - BUG/MAJOR: stream: avoid double free on unique_id
5050 - BUILD/MINOR: stream: avoid a build warning with threads disabled
5051 - BUILD/MINOR: tools: fix build warning in the date conversion functions
5052 - BUILD/MINOR: peers: remove an impossible null test in intencode()
5053 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
5054 - BUG/MEDIUM: peers: Missing peer initializations.
5055 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
5056 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
5057 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
5058 - BUILD/MEDIUM: initcall: Fix build on MacOS.
5059 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
5060 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
5061 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
5062 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
5063 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
5064 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
5065 - MINOR: mux-h2: Set HTX extra value when possible
5066 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
5067 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
5068 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
5069 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
5070 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
5071 - MINOR: fd: add a new my_closefrom() function to close all FDs
5072 - MINOR: checks: use my_closefrom() to close all FDs
5073 - MINOR: fd: implement an optimised my_closefrom() function
5074 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
5075 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
5076 - BUG/MAJOR: listener: Make sure the listener exist before using it.
5077 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
5078 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
5079 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
5080 - MINOR: htx: Add function to drain data from an HTX message
5081 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
5082 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
5083 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
5084 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
5085 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
5086 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
5087 - BUG/MEDIUM: h2: advertise to servers that we don't support push
5088 - MINOR: standard: Add a function to parse uints (dotted notation).
5089 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
5090 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
5091 - MINOR: sample: Add two sample converters for protocol buffers.
5092 - DOC: sample: Add gRPC related documentation.
5093
Willy Tarreaufba74ea2018-12-22 11:19:45 +010050942018/12/22 : 2.0-dev0
5095 - BUG/MAJOR: connections: Close the connection before freeing it.
5096 - REGTEST: Require the option LUA to run lua tests
5097 - REGTEST: script: Process script arguments before everything else
5098 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
5099 - REGTEST: script: Add the option --clean to remove previous log direcotries
5100 - REGTEST: script: Add the option --debug to show logs on standard ouput
5101 - REGTEST: script: Add the option --keep-logs to keep all log directories
5102 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
5103 - REGTEST: script: Print only errors in the results report
5104 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
5105 - REGTEST: Make reg-tests target support argument.
5106 - REGTEST: Fix a typo about barrier type.
5107 - REGTEST: Be less Linux specific with a syslog regex.
5108 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
5109 - REGTEST: Exclude freebsd target for some reg tests.
5110 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
5111 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
5112 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
5113 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
5114 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
5115 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
5116 - MEDIUM: mux_h1: Implement h1_show_fd.
5117 - REGTEST: script: Add support of alternatives in requited options list
5118 - REGTEST: Add a basic test for the compression
5119 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
5120 - REGTEST: A basic test for "http-buffer-request"
5121 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
5122 - MINOR: ssl: Add ssl_sock_set_alpn().
5123 - MEDIUM: checks: Add check-alpn.
5124 - wip
5125
Willy Tarreau82230502018-12-19 19:13:17 +010051262018/12/19 : 1.9.0
5127 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
5128 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
5129 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
5130 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
5131 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
5132 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
5133 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
5134 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
5135 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
5136 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
5137 - MINOR: cli/stream: add the conn_stream in "show sess" output
5138 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
5139 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
5140 - MINOR: objtype: report a few missing types in names and base pointers
5141 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
5142 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
5143 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
5144 - BUG/MINOR: mux-h1: report the correct frontend in error captures
5145 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
5146 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
5147 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
5148 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
5149 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
5150 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
5151 - MINOR: compression: Remove the thread_local variable buf_output
5152 - CLEANUP: connection: rename subscription events values and event field
5153 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
5154 - MINOR: connection: remove an unwelcome dependency on struct stream
5155 - CLEANUP: stream-int: consistently call the si/stream_int functions
5156 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
5157 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
5158 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
5159 - MEDIUM: stream-int: always consider all CS errors on the send side
5160 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
5161 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
5162 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
5163 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
5164 - MINOR: connection: add cs_set_error() to set the error bits
5165 - CLEANUP: mux-h2: make use of cs_set_error()
5166 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
5167 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
5168 - MINOR: cli/show_fd: report that a connection is back or not
5169 - SCRIPTS: add the slack channel URL to the announce script
5170 - CLEANUP: remove my name and address from the copyright banner
5171 - DOC: mention in the readme that 1.9 is a stable version now
5172
Willy Tarreau2a7d6502018-12-16 22:35:06 +010051732018/12/16 : 1.9-dev11
5174 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
5175 - REGTEST/MINOR: remove double body specification for server txresp
5176 - BUG/MEDIUM: connections: Remove error flags when retrying.
5177 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
5178 - REGTEST/MINOR: remove health-check that can make the test fail
5179 - DOC: clarify that check-sni needs an argument.
5180 - DOC: refer to check-sni in the documentation of sni
5181 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
5182 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
5183 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
5184 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
5185 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
5186 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
5187 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
5188 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
5189 - MINOR: hpack: simplify the len to bytes conversion
5190 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
5191 - MINOR: hpack: optimize header encoding for short names
5192 - CONTRIB: hpack: add a compressed stream generator for the encoder
5193 - MEDIUM: hpack: make it possible to encode any static header name
5194 - MINOR: hpack: move the length computation and encoding functions to .h
5195 - MINOR: hpack: provide a function to encode a short indexed header
5196 - MINOR: hpack: provide a function to encode a long indexed header
5197 - MINOR: hpack: provide new functions to encode the ":status" header
5198 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
5199 - MINOR: hpack: provide a function to encode an HTTP method
5200 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
5201 - MINOR: hpack: provide a function to encode an HTTP scheme
5202 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
5203 - MINOR: hpack: provide a function to encode an HTTP path
5204 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
5205 - REGTEST: add the HTTP rules test involving HTX processing
5206 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
5207 - MEDIUM: cli: rework the CLI proxy parser
5208 - MINOR: cli: parse prompt command in the CLI proxy
5209 - MINOR: cli: implements 'quit' in the CLI proxy
5210 - BUG/MINOR: cli: wait for payload data even without prompt
5211 - MEDIUM: cli: handle payload in CLI proxy
5212 - MINOR: cli: use pcli_flags for prompt activation
5213 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
5214 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
5215 - MINOR: cache: Register the cache as a data filter only if response is cacheable
5216 - MEDIUM: cache/htx: Add the HTX support into the cache
5217 - MINOR: cache: Improve and simplify the cache configuration check
5218 - MINOR: filters: Export the name of known filters
5219 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
5220 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
5221 - REORG: htx: merge types+proto into common/htx.h
5222 - REORG: http: create http_msg.c to place there some legacy HTTP parts
5223 - REORG: h1: move legacy http functions to http_msg.c
5224 - REORG: h1: move the h1_state definition to proto_http
5225 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
5226 - REORG: h1: merge types+proto into common/h1.h
5227 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
5228 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
5229 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
5230 - BUG/MINOR: mux-h2: refrain from muxing during the preface
5231 - BUG/MINOR: mux-h2: advertise a larger connection window size
5232 - DOC: master CLI documentation in management.txt
5233 - MINOR: mux-h2: avoid copying large blocks into full buffers
5234 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
5235 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
5236 - MINOR: cli: change 'show proc' output of old processes
5237 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
5238 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
5239 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
5240 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
5241 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
5242 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
5243 - REGTEST: the cache regtest requires haproxy 1.9
5244 - MEDIUM: cli: store CLI level in the appctx
5245 - MEDIUM: cli: show and change CLI permissions
5246 - CLEANUP: cli: use dedicated define instead of appctx ones
5247 - MEDIUM: cli: handle CLI level from the master CLI
5248 - BUG/MEDIUM: cli: handle correctly prefix and payload
5249 - BUILD: Makefile: Implements the help target
5250 - REGTESTS: adjust the http-rules regtest to support window updates
5251 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
5252 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
5253 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
5254 - MEDIUM: mux: Add an optional "reset" method.
5255 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
5256 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
5257 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
5258 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
5259 - MEDIUM: htx: Try to take a connection over if it has no owner.
5260 - REGTEST: Reg testing improvements.
5261 - REGTEST: Add a first test for health-checks.
5262 - REGTEST: Reg test for "check" health-check option.
5263 - REGTEST: level 1 health-check test 2.
5264 - REGTEST: Add miscellaneous reg tests for health-checks.
5265 - REGTEST: add a few HTTP messaging tests
5266 - MINOR: lb: make the leastconn algorithm more accurate
5267 - REGTEST: fix missing space in checks/s00001
5268 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
5269 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
5270 - MINOR: connection: realign empty buffers in muxes, not transport layers
5271 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
5272 - MINOR: backend: count the number of connect and reuse per server and per backend
5273 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
5274 - MINOR: tools: increase the number of ITOA strings to 16
5275 - MINOR: cache: report the number of cache lookups and cache hits
5276 - MEDIUM: tasks: check the global task mask instead of the thread number
5277 - MINOR: mworker: set all_threads_mask and pid_bit to 1
5278 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
5279 - BUG/MINOR: stats: Parse post data for HTX streams
5280 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
5281 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
5282 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
5283 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
5284 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
5285 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
5286 - MINOR: lua: Remove useless check on the messages state in HTTP functions
5287 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
5288 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
5289 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
5290 - MINOR: cli: implements 'reload' on master CLI
5291 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
5292 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
5293 - BUG/MAJOR: backend: only update server's counters when the server exists
5294 - MINOR: tools: preset the port of fd-based "sockets" to zero
5295 - BUG/MINOR: log: fix logging to both FD and IP
5296 - REGTEST: Add a reg test for HTTP cookies.
5297 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
5298 - BUILD: thread: properly report multi-thread support
5299 - BUG/MINOR: logs: leave startup-logs global and not per-thread
5300 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
5301 - BUG/MAJOR: compression/cache: Make it really works with these both filters
5302 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
5303 - MEDIUM: proxy: Set http-reuse safe as default.
5304 - MEDIUM: servers: Add a command to limit the number of idling connections.
5305 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
5306 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
5307 - MEDIUM: mux: provide the session to the init() and attach() method.
5308 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
5309 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
5310 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
5311 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
5312 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
5313 - MINOR: pools: Cast to volatile int * instead of int *.
5314 - MINOR: debug: make the ABORT_NOW macro use a volatile int
5315 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
5316 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
5317 - DOC: clarify the agent-check status line syntax
5318 - BUG/MAJOR: hpack: fix length check for short names encoding
5319 - DOC: split the README into README + INSTALL
5320
Willy Tarreau72e92272018-12-08 16:20:55 +010053212018/12/08 : 1.9-dev10
5322 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
5323 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
5324 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
5325 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
5326 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
5327 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
5328 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
5329 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
5330 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
5331 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
5332 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
5333 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
5334 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
5335 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
5336 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
5337 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
5338 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
5339 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
5340 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
5341 - BUG/MEDIUM: h1: Correctly report used data with no len.
5342 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
5343 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
5344 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
5345 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
5346 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
5347 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
5348 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
5349 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
5350 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
5351 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
5352 - MEDIUM: channel/htx: Add functions for forward HTX data
5353 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
5354 - CLEANUP: htx: Fix indentation here and there in HTX files
5355 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
5356 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
5357 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
5358 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
5359 - BUG/MEDIUM: mworker: stop every tasks in the master
5360 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
5361 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
5362 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
5363 - MINOR: stream-int: add a new blocking condition on the remote connection
5364 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
5365 - BUG/MEDIUM: lua: block on remote connection establishment
5366 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
5367 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
5368 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
5369 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
5370 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
5371 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
5372 - REGTEST: Move LUA reg test 4 to level 1.
5373 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
5374 - MEDIUM: ist: always turn header names to lower case
5375 - MINOR: h2: don't turn HTX header names to lower case anymore
5376 - MEDIUM: ist: use local conversion arrays to case conversion
5377 - MINOR: htx: switch to case sensitive search of lower case header names
5378 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
5379 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
5380 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
5381 - REGTEST: add a basic test for HTTP rules manipulating headers
5382 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
5383 - MINOR: sample: add bc_http_major
5384 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
5385 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
5386 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
5387 - MINOR: compiler: add a new macro ALREADY_CHECKED()
5388 - BUILD: h2: mark the start line already checked to avoid warnings
5389 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
5390
Willy Tarreauda7e3be2018-12-02 19:31:37 +010053912018/12/02 : 1.9-dev9
5392 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
5393 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
5394 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
5395 - MINOR: compression: always create the compression pool
5396 - BUG/MEDIUM: mworker: fix FD leak upon reload
5397 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
5398 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
5399 - MINOR: initcall: introduce a way to register init functions to call at boot
5400 - MINOR: init: process all initcalls in order at boot time
5401 - MEDIUM: init: convert all trivial registration calls to initcalls
5402 - MINOR: thread: provide a set of lock initialisers
5403 - MINOR: threads: add new macros to declare self-initializing locks
5404 - MEDIUM: init: use self-initializing spinlocks and rwlocks
5405 - MINOR: initcall: apply initcall to all register_build_opts() calls
5406 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
5407 - MINOR: initcall: use initcalls for section parsers
5408 - MINOR: memory: add a callback function to create a pool
5409 - MEDIUM: init: use initcall for all fixed size pool creations
5410 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
5411 - MEDIUM: initcall: use initcalls for a few initialization functions
5412 - MEDIUM: memory: make the pool cache an array and not a thread_local
5413 - MINOR: ssl: free ctx when libssl doesn't support NPN
5414 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
5415 - MINOR: h2: make struct h2_ops static
5416 - BUG/MEDIUM: mworker: avoid leak of client socket
5417 - REORG: mworker: declare master variable in global.h
5418 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
5419 - CLEANUP: http: Fix typo in init_http's comment
5420 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
5421 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
5422 - REGTEST/MINOR: script: add run-regtests.sh script
5423 - REGTEST: Add a basic test for the cache.
5424 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
5425 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
5426 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
5427 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
5428 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
5429 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
5430 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
5431 - REGTEST: Fix several issues.
5432 - REGTEST: lua: check socket functionality from a lua-task
5433 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
5434 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
5435 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
5436 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
5437 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
5438 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
5439 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
5440 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
5441 - MAJOR: sessions: Store multiple outgoing connections in the session.
5442 - MEDIUM: session: Steal owner-less connections on end of transaction.
5443 - MEDIUM: server: Be smarter about deciding to reuse the last server.
5444 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
5445 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
5446 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
5447 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
5448 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
5449 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
5450 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
5451 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
5452 - BUG/MINOR: connection: report mux modes when HTX is supported
5453 - MINOR: htx: add a function to cut the beginning of a DATA block
5454 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
5455 - MINOR: mux-h1: Implement get_cs_info() callback
5456 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
5457 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
5458 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
5459 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
5460 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
5461 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
5462 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
5463 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
5464 - MINOR: htx: Add function to add an HTX block just before another one
5465 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
5466 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
5467 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
5468 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
5469 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
5470 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
5471 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
5472 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
5473 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
5474 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
5475 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
5476 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
5477 - MINOR: proto_htx: Send valid HTX message to send 30x responses
5478 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
5479 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
5480 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
5481 - MINOR: mux-h1: Capture bad H1 messages
5482 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
5483 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
5484 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
5485 - MEDIUM: compression: Adapt to be compatible with the HTX representation
5486 - MINOR: h2: implement H2->HTX request header frame transcoding
5487 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
5488 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
5489 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
5490 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
5491 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
5492 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
5493 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
5494 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
5495 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
5496 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
5497 - MINOR: listener: the mux_proto entry in the bind_conf is const
5498 - MINOR: connection: create conn_get_best_mux_entry()
5499 - MINOR: server: the mux_proto entry in the server is const
5500 - MINOR: config: make sure to associate the proper mux to bind and servers
5501 - MINOR: hpack: add ":path" to the list of common header fields
5502 - MINOR: h2: add new functions to produce an HTX message from an H2 response
5503 - MINOR: mux-h2: mention that the mux is compatible with both sides
5504 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
5505 - MEDIUM: mux-h2: start to create the outgoing mux
5506 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
5507 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
5508 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
5509 - MEDIUM: mux-h2: Implement h2_attach().
5510 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
5511 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
5512 - MINOR: connection: Fix a comment.
5513 - MINOR: mux: add a "max_streams" method.
5514 - MEDIUM: servers: Add a way to keep idle connections alive.
5515 - CLEANUP: fix typos in the htx subsystem
5516 - CLEANUP: Fix typo in the chunk headers file
5517 - CLEANUP: Fix typos in the h1 subsystem
5518 - CLEANUP: Fix typos in the h2 subsystem
5519 - CLEANUP: Fix a typo in the mini-clist header
5520 - CLEANUP: Fix a typo in the proto_htx subsystem
5521 - CLEANUP: Fix typos in the proto_tcp subsystem
5522 - CLEANUP: Fix a typo in the signal subsystem
5523 - CLEANUP: Fix a typo in the session subsystem
5524 - CLEANUP: Fix a typo in the queue subsystem
5525 - CLEANUP: Fix typos in the shctx subsystem
5526 - CLEANUP: Fix typos in the socket pair protocol subsystem
5527 - CLEANUP: Fix typos in the map management functions
5528 - CLEANUP: Fix typo in the fwrr subsystem
5529 - CLEANUP: Fix typos in the cli subsystem
5530 - CLEANUP: Fix typo in the 51d subsystem
5531 - CLEANUP: Fix a typo in the base64 subsystem
5532 - CLEANUP: Fix a typo in the connection subsystem
5533 - CLEANUP: Fix a typo in the protocol header file
5534 - CLEANUP: Fix a typo in the checks header file
5535 - CLEANUP: Fix typos in the file descriptor subsystem
5536 - CLEANUP: Fix a typo in the listener subsystem
5537 - BUG/MINOR: lb-map: fix unprotected update to server's score
5538 - BUILD: threads: fix minor build warnings when threads are disabled
5539
Willy Tarreau0b936ad2018-11-25 09:16:46 +010055402018/11/25 : 1.9-dev8
5541 - REORG: config: extract the global section parser into cfgparse-global
5542 - REORG: config: extract the proxy parser into cfgparse-listen.c
5543 - BUILD: update the list of supported targets and compilers in makefile and readme
5544 - BUILD: reorder the objects in the makefile
5545 - BUILD: Makefile: make "V=1" show some of the commands that are executed
5546 - BUILD: Makefile: add the quiet mode to a few more targets
5547 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
5548 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
5549 - MINOR: cli: format `show proc` to be more readable
5550 - MINOR: cli: displays uptime in `show proc`
5551 - MINOR: cli: show master information in 'show proc'
5552 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
5553 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
5554 - BUG/MINOR: mux-h1: Enable keep-alive on server side
5555 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
5556 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
5557 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
5558 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
5559 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
5560 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
5561 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
5562 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
5563 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
5564 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
5565 - MEDIUM: mworker: wait mode use standard init code path
5566 - MINOR: log: introduce ha_notice()
5567 - MINOR: mworker: use ha_notice to announce a new worker
5568 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
5569 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
5570 - MEDIUM: signal: signal_unregister() removes every handlers
5571 - BUG/MEDIUM: mworker: unregister the signals of main()
5572 - MINOR: cli: add a few missing includes in proto/cli.h
5573 - REORG: time/activity: move activity measurements to activity.{c,h}
5574 - MINOR: activity: report the average loop time in "show activity"
5575 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
5576 - MEDIUM: tasks: collect per-task CPU time and latency
5577 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
5578 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
5579 - BUG/MINOR: cli: Fix memory leak
5580 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
5581 - MINOR: poller: move the call of tv_update_date() back to the pollers
5582 - MINOR: polling: add an option to support busy polling
5583 - MINOR: server: Add "alpn" and "npn" keywords.
5584 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
5585 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
5586 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
5587 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
5588 - REGTEST: add the option to test only a specific set of files
5589 - REGTEST: add a test for connections to a "dispatch" address
5590 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
5591 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
5592 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
5593 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
5594 - MEDIUM: servers: Store the connection in the SI until we have a mux.
5595 - BUG/MEDIUM: h2: wake the processing task up after demuxing
5596 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
5597
Willy Tarreau5c0e41b2018-11-18 22:33:00 +010055982018/11/18 : 1.9-dev7
5599 - BUILD: cache: fix a build warning regarding too large an integer for the age
5600 - CLEANUP: fix typos in the comments of the Makefile
5601 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
5602 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
5603 - CLEANUP: fix typos in comments for contrib/spoa_example
5604 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
5605 - DOC: Fix typos in README and CONTRIBUTING
5606 - MINOR: log: slightly improve error message syntax on log failure
5607 - DOC: logs: the format directive was missing from the second log part
5608 - MINOR: log: report the number of dropped logs in the stats
5609 - MEDIUM: log: add support for logging to existing file descriptors
5610 - MEDIUM: log: support a new "short" format
5611 - MEDIUM: log: add a new "raw" format
5612 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
5613 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
5614 - MINOR: namespaces: don't build namespace.c if disabled
5615 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
5616 - MINOR: http: Add new "early-hint" http-request action.
5617 - MINOR: http: Make new "early-hint" http-request action really be parsed.
5618 - MINOR: http: Implement "early-hint" http request rules.
5619 - MINOR: doc: Add information about "early-hint" http-request action.
5620 - DOC: early-hints: fix truncated line.
5621 - MINOR: mworker: only close std{in,out,err} in daemon mode
5622 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
5623 - BUG/MEDIUM: Make sure stksess is properly aligned.
5624 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
5625 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
5626 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
5627 - CONTRIB: debug: fix build related to conn_stream flags change
5628 - REGTEST: fix scripts 1 and 3 to accept development version
5629 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
5630 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
5631 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
5632 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
5633 - MEDIUM: jobs: support unstoppable jobs for soft stop
5634 - MEDIUM: listeners: support unstoppable listener
5635 - MEDIUM: cli: worker socketpair is unstoppable
5636 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
5637 - MINOR: stream: move the conn_stream specific calls to the stream-int
5638 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
5639 - CLEANUP: h2: minimum documentation for recent API changes
5640 - MINOR: mux: implement a get_first_cs() method
5641 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
5642 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
5643 - MINOR: stream-int: expand the flags to 32-bit
5644 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
5645 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
5646 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
5647 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
5648 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
5649 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
5650 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
5651 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
5652 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
5653 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
5654 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
5655 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
5656 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
5657 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
5658 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
5659 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
5660 - MEDIUM: connections: Wait until the connection is established to try to recv.
5661 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
5662 - MINOR: mux: Add a new "avail_streams" method.
5663 - MINOR: mux: Add a destroy() method.
5664 - MINOR: sessions: Start to store the outgoing connection in sessions.
5665 - MAJOR: connections: Detach connections from streams.
5666 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
5667 - MINOR: htx: Add proto_htx.c file
5668 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
5669 - MINOR: http: Add standalone functions to parse a start-line or a header
5670 - MINOR: http: Call http_send_name_header with the stream instead of the txn
5671 - MINOR: conn_stream: Add a flag to notify the SI some data were received
5672 - MINOR: http: Add macros to check if a stream uses the HTX representation
5673 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
5674 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
5675 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
5676 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
5677 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
5678 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
5679 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
5680 - MINOR: proto_htx: Add some functions to handle HTX messages
5681 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
5682 - MINOR: http_htx: Add functions to replace part of the start-line
5683 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
5684 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
5685 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
5686 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
5687 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
5688 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
5689 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
5690 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
5691 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
5692 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
5693 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
5694 - MINOR: proto_htx: Add functions htx_send_name_header
5695 - MINOR: proto_htx: Add functions htx_perform_server_redirect
5696 - MINOR: proto_htx: Add functions to handle the stats applet
5697 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
5698 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
5699 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
5700 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
5701 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
5702 - MINOR: http_fetch: Add smp_prefetch_htx
5703 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
5704 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
5705 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
5706 - MINOR: stream: Don't reset sov value with HTX messages
5707 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
5708 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
5709 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
5710 - CLEANUP: Fix some typos in the haproxy subsystem
5711 - CLEANUP: Fix typos in the dns subsystem
5712 - CLEANUP: Fix typos in the pattern subsystem
5713 - CLEANUP: fix 2 typos in the xxhash subsystem
5714 - CLEANUP: fix a few typos in the comments of the server subsystem
5715 - CLEANUP: fix a misspell in tests/filltab25.c
5716 - CLEANUP: fix a typo found in the stream subsystem
5717 - CLEANUP: fix typos in comments in ebtree
5718 - CLEANUP: fix typos in reg-tests
5719 - CLEANUP: fix typos in the comments of the vars subsystem
5720 - CLEANUP: fix typos in the hlua_fcn subsystem
5721 - CLEANUP: fix typos in the proto_http subsystem
5722 - CLEANUP: fix typos in the proxy subsystem
5723 - CLEANUP: fix typos in the ssl_sock subsystem
5724 - DOC: Fix typos in different subsections of the documentation
5725 - DOC: fix a few typos in the documentation
5726 - MINOR: Fix an error message thrown when we run out of memory
5727 - MINOR: Fix typos in error messages in the proxy subsystem
5728 - MINOR: fix typos in the examples files
5729 - CLEANUP: Fix a typo in the stats subsystem
5730 - CLEANUP: Fix typos in the acl subsystem
5731 - CLEANUP: Fix typos in the cache subsystem
5732 - CLEANUP: Fix typos in the cfgparse subsystem
5733 - CLEANUP: Fix typos in the filters subsystem
5734 - CLEANUP: Fix typos in the http subsystem
5735 - CLEANUP: Fix typos in the log subsystem
5736 - CLEANUP: Fix typos in the peers subsystem
5737 - CLEANUP: Fix typos in the regex subsystem
5738 - CLEANUP: Fix typos in the sample subsystem
5739 - CLEANUP: Fix typos in the spoe subsystem
5740 - CLEANUP: Fix typos in the standard subsystem
5741 - CLEANUP: Fix typos in the stick_table subsystem
5742 - CLEANUP: Fix typos in the task subsystem
5743 - MINOR: Fix typo in error message in the standard subsystem
5744 - CLEANUP: fix typos in the comments of hlua
5745 - MINOR: Fix typo in the error 500 output of hlua
5746 - MINOR: Fix a typo in a warning message in the spoe subsystem
5747
Willy Tarreau96079492018-11-11 10:43:39 +010057482018/11/11 : 1.9-dev6
5749 - BUG/MEDIUM: tools: fix direction of my_ffsl()
5750 - BUG/MINOR: cli: forward the whole command on master CLI
5751 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
5752 - MINOR: compat: automatically detect support for crypt_r()
5753 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
5754 - DOC: split the http-request actions in their own section
5755 - DOC: split the http-response actions in their own section
5756 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
5757 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
5758 - MINOR: stats: report the number of active jobs and listeners in "show info"
5759 - MINOR: stats: report the number of active peers in "show info"
5760 - MINOR: stats: report the number of currently connected peers
5761 - MINOR: cli: show the number of reload in 'show proc'
5762 - MINOR: cli: can't connect to the target CLI
5763 - MEDIUM: mworker: does not create the CLI proxy when no listener
5764 - MINOR: mworker: displays more information when leaving
5765 - MEDIUM: mworker: exit with the incriminated exit code
5766 - MINOR: mworker: displays a message when a worker is forked
5767 - MEDIUM: mworker: leave when the master die
5768 - CLEANUP: stream-int: retro-document si_cs_io_cb()
5769 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
5770 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
5771 - BUG/MEDIUM: cli: crash when trying to access a worker
5772 - DOC: restore note about "independant" typo
5773 - MEDIUM: stream: implement stream_buf_available()
5774 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
5775 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
5776 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
5777 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
5778 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
5779 - MINOR: stream-int: make it clear that si_ops cannot be null
5780 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
5781 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
5782 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
5783 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
5784 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
5785 - MINOR: stream-int: replace si_update() with si_update_both()
5786 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
5787 - CLEANUP: stream-int: remove the now unused si->update() function
5788 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
5789 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
5790 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
5791
Willy Tarreaubddf2922018-10-28 20:39:31 +010057922018/10/28 : 1.9-dev5
5793 - BUILD: Makefile: add the new ERR variable to force -Werror
5794 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
5795 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
5796 - CLEANUP: http: Remove the unused function http_find_header
5797 - MINOR: h1: Export some functions parsing the value of some HTTP headers
5798 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
5799 - MINOR: proxy: add a new option "http-use-htx"
5800 - BUG/MEDIUM: pools: fix the minimum allocation size
5801 - MINOR: shctx: Shared objects block by block allocation.
5802 - MINOR: cache: Larger HTTP objects caching.
5803 - MINOR: shctx: Add a maximum object size parameter.
5804 - MINOR: cache: Add "max-object-size" option.
5805 - DOC: Update about the cache support for big objects.
5806 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
5807 - BUG/MINOR: cache: Wrong usage of shctx_init().
5808 - BUG/MINOR: ssl: Wrong usage of shctx_init().
5809 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
5810 - MINOR: shctx: Change max. object size type to unsigned int.
5811 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
5812 - CLEANUP: tools: fix misleading comment above function LIM2A
5813 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
5814 - BUG/MINOR: only mark connections private if NTLM is detected
5815 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
5816 - MINOR: stream: don't prune variables if the list is empty
5817 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
5818 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
5819 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
5820 - MEDIUM: stream: don't try to send first in process_stream()
5821 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
5822 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
5823 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
5824 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
5825 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
5826 - MINOR: mworker: number of reload in the life of a worker
5827 - MEDIUM: mworker: each worker socketpair is a CLI listener
5828 - REORG: mworker: move struct mworker_proc to global.h
5829 - MINOR: server: export new_server() function
5830 - MEDIUM: mworker: move proc_list gen before proxies startup
5831 - MEDIUM: mworker: add proc_list in global.h
5832 - MEDIUM: mworker: proxy for the master CLI
5833 - MEDIUM: mworker: create CLI listeners from argv[]
5834 - MEDIUM: cli: disable some keywords in the master
5835 - MEDIUM: mworker: find the server ptr using a CLI prefix
5836 - MEDIUM: cli: 'show proc' displays processus
5837 - MEDIUM: cli: implement 'mode cli' proxy analyzers
5838 - MINOR: cli: displays sockpair@ in "show cli sockets"
5839 - MEDIUM: cli: enable "show cli sockets" for the master
5840 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
5841 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
5842 - MEDIUM: mworker: stop the master proxy in the workers
5843 - MEDIUM: channel: reorder the channel analyzers for the cli
5844 - MEDIUM: cli: write a prompt for the CLI proxy of the master
5845 - MINOR: cli: helper to write an response message and close
5846 - MINOR: cache: Add "Age" header.
5847 - REGTEST: make the IP+port logging test more reliable
5848 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
5849 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
5850 - BUG/MINOR: backend: assign the wait list after the error check
5851
Willy Tarreau01fbe742018-10-21 20:28:30 +020058522018/10/21 : 1.9-dev4
5853 - BUILD: Allow configuration of pcre-config path
5854 - DOC: clarify force-private-cache is an option
5855 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
5856 - REORG: http: move the code to different files
5857 - REORG: http: move HTTP rules parsing to http_rules.c
5858 - CLEANUP: http: remove some leftovers from recent cleanups
5859 - BUILD: Makefile: add a "make opts" target to simply show the build options
5860 - BUILD: Makefile: speed up compiler options detection
5861 - BUG/MINOR: backend: check that the mux installed properly
5862 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
5863 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
5864 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
5865 - MINOR: ssl: cleanup old openssl API call
5866 - MINOR: ssl: generate-certificates for BoringSSL
5867 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
5868 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
5869 - CLEANUP: haproxy: Remove unused variable
5870 - CLEANUP: h1: Fix debug warnings for h1 headers
5871 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
5872 - MEDIUM: task: perform a single tree lookup per run queue batch
5873 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
5874 - BUG/MINOR: threads: move declaration of capabilities to config.h
5875 - OPTIM: tools: optimize my_ffsl() for x86_64
5876 - BUG/MINOR: h2: null-deref
5877 - BUG/MINOR: checks: queues null-deref
5878 - MINOR: connections: Introduce an unsubscribe method.
5879 - MEDIUM: connections: Change struct wait_list to wait_event.
5880 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
5881 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
5882 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
5883 - MINOR: http: Move comment about some HTTP macros in the right header file
5884 - MINOR: stats: Add missing include
5885 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
5886 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
5887 - MEDIUM: http: Ignore http-tunnel option on backend
5888 - MINOR: http: Use same flag for httpclose and forceclose options
5889 - MINOR: h1: Add EOH marker during headers parsing
5890 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
5891 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
5892 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
5893 - MINOR: log: make sess_log() support sess=NULL
5894 - MINOR: chunk: add chunk_cpy() and chunk_cat()
5895 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
5896 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
5897 - MINOR: h2: don't try to send data before preface
5898 - MINOR: h2: unify the mux init function
5899 - MINOR: h2: retrieve the front proxy from the caller instead of the session
5900 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
5901 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
5902 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
5903 - BUG/MEDIUM: stream: don't crash on out-of-memory
5904 - BUILD: compiler: add a new statement "__unreachable()"
5905 - BUILD: lua: silence some compiler warnings about potential null derefs
5906 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
5907 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
5908 - BUILD: stick-table: make sure not to fail on task_new() during initialization
5909 - BUILD: peers: check allocation error during peers_init_sync()
5910 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
5911 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
5912 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
5913 - MAJOR: tasks: create per-thread wait queues
5914 - OPTIM: tasks: group all tree roots per cache line
5915 - DOC: Fix a few typos
5916 - MINOR: pools: allocate most memory pools from an array
5917 - MINOR: pools: split pool_free() in the lockfree variant
5918 - MEDIUM: pools: implement a thread-local cache for pool entries
5919 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
5920 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
5921 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
5922 - MINOR: lua: all functions calling lua_yieldk() may return
5923 - BUILD: lua: silence some compiler warnings after WILL_LJMP
5924 - BUILD: Makefile: silence an option conflict warning with clang
5925 - MINOR: server: Use memcpy() instead of strncpy().
5926 - CLEANUP: state-file: make the path concatenation code a bit more consistent
5927 - MINOR: build: Disable -Wstringop-overflow.
5928 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
5929 - MINOR: peers: use defines instead of enums to appease clang.
5930 - DOC: fix reference to map files in MAINTAINERS
5931 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
5932 - MINOR: poller: move time and date computation out of the pollers
5933 - BUILD: memory: fix pointer declaration for atomic CAS
5934 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
5935 - MINOR: time: add now_mono_time() and now_cpu_time()
5936 - MEDIUM: time: measure the time stolen by other threads
5937 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
5938 - BUILD: compiler: rename __unreachable() to my_unreachable()
5939 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
5940 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
5941 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
5942 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
5943 - BUG/MEDIUM: stream: Make sure polling is right on retry.
5944 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
5945 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
5946 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
5947 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
5948 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
5949 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
5950
Willy Tarreau27010f02018-09-29 20:17:33 +020059512018/09/29 : 1.9-dev3
5952 - BUG/MINOR: h1: don't consider the status for each header
5953 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
5954 - MINOR: h1: parse the Connection header field
5955 - DOC: Fix typos in lua documentation
5956 - MINOR: h1: Add H1_MF_XFER_LEN flag
5957 - MINOR: http: add http_hdr_del() to remove a header from a list
5958 - MINOR: h1: add headers to the list after controls, not before
5959 - MEDIUM: h1: better handle transfer-encoding vs content-length
5960 - MEDIUM: h1: deduplicate the content-length header
5961 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
5962 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
5963 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
5964 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
5965 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
5966 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
5967 - MINOR: stream-int: make si_appctx() never fail
5968 - BUILD: ssl_sock: remove build warnings on potential null-derefs
5969 - BUILD: stats: remove build warnings on potential null-derefs
5970 - BUILD: stream: address null-deref build warnings at -Wextra
5971 - BUILD: http: address a couple of null-deref warnings at -Wextra
5972 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
5973 - BUILD: dns: fix null-deref build warning at -Wextra
5974 - BUILD: checks: silence a null-deref build warning at -Wextra
5975 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
5976 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
5977 - BUILD: sockpair: silence a build warning at -Wextra
5978 - BUILD: build with -Wextra and sort out certain warnings
5979 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
5980 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
5981 - DOC: Update configuration doc about the maximum number of stick counters.
5982 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
5983 - MINOR: h2/stream_interface: Reintroduce te wake() method.
5984 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
5985 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
5986 - MEDIUM: lua: Add stick table support for Lua.
5987
Willy Tarreau253006d2018-09-12 18:59:48 +020059882018/09/12 : 1.9-dev2
5989 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
5990 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
5991 - BUG/MEDIUM: servers: check the queues once enabling a server
5992 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
5993 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
5994 - CLEANUP: backend: Move mux install to call it at only one place
5995 - MINOR: conn_stream: add an tx buffer to the conn_stream
5996 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
5997 - MINOR: backend: Try to find the best mux for outgoing connections
5998 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
5999 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
6000 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
6001 - MINOR: mux: Print the list of existing mux protocols during HA startup
6002 - MEDIUM: checks: use the new rendez-vous point to spread check result
6003 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
6004 - MINOR: threads: remove the previous synchronization point
6005 - MAJOR: server: make server state changes synchronous again
6006 - CLEANUP: server: remove the update list and the update lock
6007 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
6008 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
6009 - MINOR: mux: Change get_mux_proto to get an ist as parameter
6010 - MINOR: mux: Improve the message with the list of existing mux protocols
6011 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
6012 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
6013 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
6014 - BUG/MEDIUM: connection/mux: take care of serverless proxies
6015 - MINOR: queue: make sure the pendconn is released before logging
6016 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
6017 - MINOR: queue: store the queue index in the stream when enqueuing
6018 - MINOR: queue: replace the linked list with a tree
6019 - MEDIUM: add set-priority-class and set-priority-offset
6020 - MEDIUM: queue: adjust position based on priority-class and priority-offset
6021 - DOC: update the roadmap about priority queues
6022 - BUG/MINOR: ssl: empty connections reported as errors.
6023 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
6024 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
6025 - MINOR: connections: Get rid of txbuf.
6026 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
6027 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
6028 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
6029 - MINOR: stream_interface: Give stream_interface its own wait_list.
6030 - MINOR: mux_h2: Don't use h2_send() as a callback.
6031 - MINOR: checks: Add event_srv_chk_io().
6032 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
6033 - BUG/MEDIUM: sessions: Don't use t->state.
6034 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
6035 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
6036 - BUG/MINOR: map: fix map_regm with backref
6037 - DOC: dns: explain set server ... fqdn requires resolver
6038 - DOC: add documentation for prio_class and prio_offset sample fetches.
6039 - DOC: ssl: Use consistent naming for TLS protocols
6040 - DOC: update the layering design notes
6041 - MINOR: tasks: Don't special-case when nbthreads == 1
6042 - MINOR: fd cache: And the thread_mask with all_threads_mask.
6043 - BUG/MEDIUM: lua: socket timeouts are not applied
6044 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
6045 - BUG/MEDIUM: server: update our local state before propagating changes
6046 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
6047 - DOC: server/threads: document which functions need to be called with/without locks
6048 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
6049 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
6050 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
6051 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
6052 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
6053 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
6054 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
6055 - BUG/MEDIUM: connection: don't forget to always delete the list's head
6056 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
6057 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
6058 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
6059 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
6060 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
6061 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
6062 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
6063 - BUG/MEDIUM: connection: don't store recv() result into trash.data
6064 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
6065 - MINOR: chunk: remove impossible tests on negative chunk->data
6066 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
6067 - DOC: Fix spelling error in configuration doc
6068 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
6069 - REGTEST/MINOR: Add a new class of regression testing files.
6070 - BUG/MEDIUM: unix: provide a ->drain() function
6071 - MINOR: connection: make conn_sock_drain() work for all socket families
6072 - BUG/MINOR: lua: Bad HTTP client request duration.
6073 - REGEST/MINOR: Add reg testing files.
6074 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
6075 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
6076 - BUG/MEDIUM: lua: reset lua transaction between http requests
6077 - MINOR: add be_conn_free sample fetch
6078 - MINOR: Add srv_conn_free sample fetch
6079 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
6080 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
6081 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
6082 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
6083 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
6084 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
6085 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
6086 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
6087 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
6088 - MINOR: tools: make date2str_log() take some consts
6089 - MINOR: thread: implement HA_ATOMIC_XADD()
6090 - BUG/MINOR: stream: use atomic increments for the request counter
6091 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
6092 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
6093 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
6094 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
6095 - MINOR: log: make the backend fall back to the frontend when there's no stream
6096 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
6097 - MINOR: log: don't unconditionally pick log info from s->logs
6098 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
6099 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
6100 - MINOR: log: do not dereference a null stream to access captures
6101 - MINOR: log: be sure not to dereference a null stream for a target
6102 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
6103 - MINOR: log: use NULL for the unique_id if there is no stream
6104 - MINOR: log: keep a copy of s->flags early to avoid a dereference
6105 - MINOR: log: use zero as the request counter if there is no stream
6106 - MEDIUM: log: make sess_build_logline() support being called with no stream
6107 - MINOR: log: provide a function to emit a log for a session
6108 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
6109 - BUG/MINOR: h1: fix buffer shift after realignment
6110 - MINOR: connection: make the initialization more consistent
6111 - MINOR: connection: add new function conn_get_proxy()
6112 - MINOR: connection: add new function conn_is_back()
6113 - MINOR: log: One const should be enough.
6114 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
6115 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
6116 - MINOR: snapshot: restart on the event ID and not the stream ID
6117 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
6118 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
6119 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
6120 - MINOR: proxy: add a new generic proxy_capture_error()
6121 - MINOR: http: make the HTTP error capture rely on the generic proxy code
6122 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
6123 - REORG: cli: move the "show errors" handler from http to proxy
6124 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
6125 - MEDIUM: snapshots: dynamically allocate the snapshots
6126 - MEDIUM: snapshot: merge the captured data after the descriptor
6127 - MEDIUM: mworker: remove register/unregister signal functions
6128 - MEDIUM: mworker: use the haproxy poll loop
6129 - BUG/MINOR: mworker: no need to stop peers for each proxy
6130 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
6131 - MEDIUM: mworker: block SIGCHLD until the master is ready
6132 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
6133 - MEDIUM: startup: unify signal init between daemon and mworker mode
6134 - MINOR: mworker: don't deinit the poller fd when in wait mode
6135 - MEDIUM: mworker: master wait mode use its own initialization
6136 - MEDIUM: mworker: replace the master pipe by socketpairs
6137 - MINOR: mworker: keep and clean the listeners
6138 - MEDIUM: threads: close the thread-waker pipe during deinit
6139 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
6140 - REORG: http: move the HTTP semantics definitions to http.h/http.c
6141 - REORG: http: move http_get_path() to http.c
6142 - REORG: http: move error codes production and processing to http.c
6143 - REORG: http: move the log encoding tables to log.c
6144 - REORG: http: move some header value processing functions to http.c
6145 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
6146 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
6147 - MEDIUM: protocol: sockpair protocol
6148 - TESTS: add a python wrapper for sockpair@
6149 - BUG/MINOR: server: Crash when setting FQDN via CLI.
6150 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
6151 - BUILD: fix build without thread
6152 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
6153 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
6154 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
6155 - MEDIUM: connections: Get rid of the recv() method.
6156 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
6157 - MEDIUM: h2: always subscribe to receive if allowed.
6158 - MEDIUM: h2: Don't use a wake() method anymore.
6159 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
6160 - MINOR: connections: Add a "handle" field to wait_list.
6161 - MEDIUM: mux_h2: Revamp the send path when blocking.
6162 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
6163 - MINOR: checks: Give checks their own wait_list.
6164 - MINOR: conn_streams: Remove wait_list from conn_streams.
6165 - REORG: h1: create a new h1m_state
6166 - MINOR: h1: add the restart offsets into struct h1m
6167 - MINOR: h1: remove the unused states from h1m_state
6168 - MINOR: h1: provide a distinct init() function for request and response
6169 - MINOR: h1: add a message flag to indicate that a message carries a response
6170 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
6171 - MINOR: h1: properly pre-initialize err_pos to -2
6172 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
6173 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
6174 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
6175 - MEDIUM: h1: make the parser support a pointer to a start line
6176 - MEDIUM: h1: let the caller pass the initial parser's state
6177 - MINOR: h1: make the message parser support a null <hdr> argument
6178 - MEDIUM: h1: support partial message parsing
6179 - MEDIUM: h1: remove the useless H1_MSG_BODY state
6180 - MINOR: h2: store the HTTP status into the H2S, not the H1M
6181 - MINOR: h1: remove the HTTP status from the H1M struct
6182 - MEDIUM: h1: implement the request parser as well
6183 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
6184 - MINOR: connection: pass the proxy when creating a connection
6185 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
6186 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
6187 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
6188
Willy Tarreau65e94d12018-08-02 18:12:50 +020061892018/08/02 : 1.9-dev1
6190 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
6191 - DOC: cache: update sections and fix some typos
6192 - BUILD/MINOR: deviceatlas: enable thread support
6193 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
6194 - BUG/MEDIUM: ssl: don't allocate shctx several time
6195 - BUG/MEDIUM: cache: bad computation of the remaining size
6196 - BUILD: checks: don't include server.h
6197 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
6198 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
6199 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
6200 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
6201 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
6202 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
6203 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
6204 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
6205 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
6206 - MINOR: config: report when "monitor fail" rules are misplaced
6207 - BUG/MINOR: mworker: fix validity check for the pipe FDs
6208 - BUG/MINOR: mworker: detach from tty when in daemon mode
6209 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
6210 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
6211 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
6212 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
6213 - BUG/MINOR: hpack: fix debugging output of pseudo header names
6214 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
6215 - BUG/MINOR: hpack: reject invalid header index
6216 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
6217 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
6218 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
6219 - BUG/MINOR: h2: try to abort closed streams as soon as possible
6220 - BUG/MINOR: h2: ":path" must not be empty
6221 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
6222 - BUG/MINOR: h2: the TE header if present may only contain trailers
6223 - BUG/MEDIUM: h2: enforce the per-connection stream limit
6224 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
6225 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
6226 - BUG/MINOR: h2: properly check PRIORITY frames
6227 - BUG/MINOR: h2: reject response pseudo-headers from requests
6228 - BUG/MEDIUM: h2: remove connection-specific headers from request
6229 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
6230 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
6231 - BUG/MINOR: action: Don't check http capture rules when no id is defined
6232 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
6233 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
6234 - BUG/MEDIUM: mworker: also close peers sockets in the master
6235 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
6236 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
6237 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
6238 - BUG/MEDIUM: h2: fix handling of end of stream again
6239 - MINOR: mworker: Update messages referencing exit-on-failure
6240 - MINOR: mworker: Improve wording in `void mworker_wait()`
6241 - CONTRIB: halog: Add help text for -s switch in halog program
6242 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
6243 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
6244 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
6245 - DOC: notifications: add precisions about thread usage
6246 - BUG/MEDIUM: lua/notification: memory leak
6247 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
6248 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
6249 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
6250 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
6251 - BUG/MEDIUM: h2: work around a connection API limitation
6252 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
6253 - MINOR: h2: store the demux padding length in the h2c struct
6254 - BUG/MEDIUM: h2: support uploading partial DATA frames
6255 - MINOR: h2: don't demand that a DATA frame is complete before processing it
6256 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
6257 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
6258 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
6259 - BUG/MEDIUM: h2: fix stream limit enforcement
6260 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
6261 - MINOR: sample: add len converter
6262 - BUG: MAJOR: lb_map: server map calculation broken
6263 - BUG: MINOR: http: don't check http-request capture id when len is provided
6264 - MINOR: sample: rename the "len" converter to "length"
6265 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
6266 - DOC/MINOR: intro: typo, wording, formatting fixes
6267 - MINOR: netscaler: respect syntax
6268 - MINOR: netscaler: remove the use of cip_magic only used once
6269 - MINOR: netscaler: rename cip_len to clarify its uage
6270 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
6271 - BUG/MAJOR: netscaler: address truncated CIP header detection
6272 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
6273 - MEDIUM: netscaler: do not analyze original IP packet size
6274 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
6275 - MINOR: spoe: add force-set-var option in spoe-agent configuration
6276 - CONTRIB: iprange: Fix compiler warning in iprange.c
6277 - CONTRIB: halog: Fix compiler warnings in halog.c
6278 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
6279 - MINOR: mux: add flags to describe a mux's capabilities
6280 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
6281 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
6282 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
6283 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
6284 - MINOR: http: adjust the list of supposedly cacheable methods
6285 - MINOR: http: update the list of cacheable status codes as per RFC7231
6286 - MINOR: http: start to compute the transaction's cacheability from the request
6287 - BUG/MINOR: http: do not ignore cache-control: public
6288 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
6289 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
6290 - MINOR: http: add a function to check request's cache-control header field
6291 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
6292 - BUG/MEDIUM: cache: replace old object on store
6293 - BUG/MEDIUM: cache: respect the request cache-control header
6294 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
6295 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
6296 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
6297 - BUG/MEDIUM: h2: properly handle and report some stream errors
6298 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
6299 - DOC/MINOR: configuration: typo, formatting fixes
6300 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
6301 - BUG/MEDIUM: mworker: don't close stdio several time
6302 - MINOR: don't close stdio anymore
6303 - BUG/MEDIUM: http: don't automatically forward request close
6304 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
6305 - MINOR: h2: add a function to report pseudo-header names
6306 - DEBUG: hpack: make hpack_dht_dump() expose the output file
6307 - DEBUG: hpack: add more traces to the hpack decoder
6308 - CONTRIB: hpack: add an hpack decoder
6309 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
6310 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
6311 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
6312 - CLEANUP: rbtree: remove
6313 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
6314 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
6315 - DOC: lua: Fix typos in comments of hlua_socket_receive
6316 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
6317 - BUG/MINOR: lua: Fix return value of Socket.settimeout
6318 - MINOR: dns: Handle SRV record weight correctly.
6319 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
6320 - MINOR: hathreads: add support for gcc < 4.7
6321 - BUILD/MINOR: ancient gcc versions atomic fix
6322 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
6323 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
6324 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
6325 - DOC: clarify the scope of ssl_fc_is_resumed
6326 - CONTRIB: debug: fix a few flags definitions
6327 - BUG/MINOR: poll: too large size allocation for FD events
6328 - MINOR: sample: add date_us sample
6329 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
6330 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
6331 - MINOR: global/threads: move cpu_map at the end of the global struct
6332 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
6333 - MINOR: global: add some global activity counters to help debugging
6334 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
6335 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
6336 - BUG/MEDIUM: fd: maintain a per-thread update mask
6337 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
6338 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
6339 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
6340 - BUG/MEDIUM: threads/mworker: fix a race on startup
6341 - BUG/MINOR: mworker: only write to pidfile if it exists
6342 - MINOR: threads: Fix build when we're not compiling with threads.
6343 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
6344 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
6345 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
6346 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
6347 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
6348 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
6349 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
6350 - CLEANUP: sample: Fix comment encoding of sample.c
6351 - CLEANUP: sample: Fix outdated comment about sample casts functions
6352 - BUG/MINOR: sample: Fix output type of c_ipv62ip
6353 - CLEANUP: Fix typo in ARGT_MSK6 comment
6354 - CLEANUP: standard: Use len2mask4 in str2mask
6355 - MINOR: standard: Add str2mask6 function
6356 - MINOR: config: Add support for ARGT_MSK6
6357 - MEDIUM: sample: Add IPv6 support to the ipmask converter
6358 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
6359 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
6360 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
6361 - MINOR: fd: don't report maxfd in alert messages
6362 - MEDIUM: polling: start to move maxfd computation to the pollers
6363 - CLEANUP: fd/threads: remove the now unused fdtab_lock
6364 - MINOR: poll: more accurately compute the new maxfd in the loop
6365 - CLEANUP: fd: remove the unused "new" field
6366 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
6367 - MEDIUM: select: make use of hap_fd_* functions
6368 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
6369 - MEDIUM: select: don't use the old FD state anymore
6370 - MEDIUM: poll: don't use the old FD state anymore
6371 - MINOR: fd: pass the iocb and owner to fd_insert()
6372 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
6373 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
6374 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
6375 - DOC: don't suggest using http-server-close
6376 - MINOR: introduce proxy-v2-options for send-proxy-v2
6377 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
6378 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
6379 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
6380 - MINOR: spoe: Always link a SPOE context with the applet processing it
6381 - MINOR: spoe: Replace sending_rate by a frequency counter
6382 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
6383 - MEDIUM: spoe: Use an ebtree to manage idle applets
6384 - MINOR: spoa_example: Count the number of frames processed by each worker
6385 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
6386 - MINOR: init: make stdout unbuffered
6387 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
6388 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
6389 - MINOR: compiler: introduce offsetoff().
6390 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
6391 - MINOR: threads: add test and set/reset operations
6392 - MINOR: pools/threads: Implement lockless memory pools.
6393 - MAJOR: fd/threads: Make the fdcache mostly lockless.
6394 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
6395 - MAJOR: fd: compute the new fd polling state out of the fd lock
6396 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
6397 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
6398 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
6399 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
6400 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
6401 - MEDIUM: fd: make updt_fd_polling() use atomics
6402 - MEDIUM: poller: use atomic ops to update the fdtab mask
6403 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
6404 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
6405 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
6406 - MINOR: fd: reorder fd_add_to_fd_list()
6407 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
6408 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
6409 - MINOR: init: emit warning when -sf/-sd cannot parse argument
6410 - BUILD: fd/threads: fix breakage build breakage without threads
6411 - DOC: Describe routing impact of using interface keyword on bind lines
6412 - DOC: Mention -Ws in the list of available options
6413 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
6414 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
6415 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
6416 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
6417 - BUILD/MINOR: memory: stdint is needed for uintptr_t
6418 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
6419 - DOC: lua: new prototype for function "register_action()"
6420 - DOC: cfgparse: Warn on option (tcp|http)log in backend
6421 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
6422 - MINOR: sample: add a new "concat" converter
6423 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
6424 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
6425 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
6426 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
6427 - CLEANUP: cfgparse: Remove unused label end
6428 - CLEANUP: spoe: Remove unused label retry
6429 - CLEANUP: h2: Remove unused labels from mux_h2.c
6430 - CLEANUP: pools: Remove unused end label in memory.h
6431 - CLEANUP: standard: Fix typo in IPv6 mask example
6432 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
6433 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
6434 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
6435 - MINOR: stats: display the number of threads in the statistics.
6436 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
6437 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
6438 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
6439 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
6440 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
6441 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
6442 - MINOR: ssl: extract full pkey info in load_certificate
6443 - MINOR: ssl: add ssl_sock_get_pkey_algo function
6444 - MINOR: ssl: add ssl_sock_get_cert_sig function
6445 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
6446 - MINOR: connection: add proxy-v2-options authority
6447 - MINOR: systemd: Add section for SystemD sandboxing to unit file
6448 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
6449 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
6450 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
6451 - MINOR: h2: provide and use h2s_detach() and h2s_free()
6452 - MEDIUM: h2: use a single buffer allocator
6453 - MINOR/BUILD: fix Lua build on Mac OS X
6454 - BUILD/MINOR: fix Lua build on Mac OS X (again)
6455 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
6456 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
6457 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
6458 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
6459 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
6460 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
6461 - CLEANUP: ssl: Remove a duplicated #include
6462 - CLEANUP: cli: Remove a leftover debug message
6463 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
6464 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
6465 - BUG/MINOR: force-persist and ignore-persist only apply to backends
6466 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
6467 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
6468 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
6469 - TESTS: Add a testcase for multi-port + multi-server listener issue
6470 - CLEANUP: dns: remove duplicate code in src/dns.c
6471 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
6472 - BUG/MINOR: cli: Ensure all command outputs end with a LF
6473 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
6474 - BUILD: ssl: Fix build with OpenSSL without NPN capability
6475 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
6476 - BUG/MINOR: lua: return bad error messages
6477 - CLEANUP: lua/syntax: lua is a name and not an acronym
6478 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
6479 - BUG/MINOR: tcp-check: use the server's service port as a fallback
6480 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
6481 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
6482 - BUILD/BUG: enable -fno-strict-overflow by default
6483 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
6484 - DOC: log: more than 2 log servers are allowed
6485 - MINOR: hash: add new function hash_crc32c
6486 - MINOR: proxy-v2-options: add crc32c
6487 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
6488 - REORG: compact "struct server"
6489 - MINOR: samples: add crc32c converter
6490 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
6491 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
6492 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
6493 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
6494 - BUG/MINOR: lua: the function returns anything
6495 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
6496 - CLEANUP: lua: typo fix in comments
6497 - BUILD/MINOR: fix build when USE_THREAD is not defined
6498 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
6499 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
6500 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
6501 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
6502 - BUILD/MINOR: cli: fix a build warning introduced by last commit
6503 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
6504 - MINOR: h2: always call h2s_detach() in h2_detach()
6505 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
6506 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
6507 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
6508 - BUILD/MINOR: threads: always export thread_sync_io_handler()
6509 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
6510 - MINOR: h2: implement a basic "show_fd" function
6511 - MINOR: cli: report cache indexes in "show fd"
6512 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
6513 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
6514 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
6515 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
6516 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
6517 - BUG/MINOR: cache: fix "show cache" output
6518 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
6519 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
6520 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
6521 - BUG/MINOR: spoe: Register the variable to set when an error occurred
6522 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
6523 - MINOR: spoe: Add metrics in to know time spent in the SPOE
6524 - MINOR: spoe: Add options to store processing times in variables
6525 - MINOR: log: move 'log' keyword parsing in dedicated function
6526 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
6527 - MINOR: spoe: Add loggers dedicated to the SPOE agent
6528 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
6529 - MINOR: spoe: use agent's logger to log SPOE messages
6530 - MINOR: spoe: Add counters to log info about SPOE agents
6531 - BUG/MAJOR: cache: always initialize newly created objects
6532 - MINOR: servers: Support alphanumeric characters for the server templates names
6533 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
6534 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
6535 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
6536 - MINOR: proxy: Add fe_defbe fetcher
6537 - MINOR: config: Warn if resolvers has no nameservers
6538 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
6539 - MINOR: cli: Ensure the CLI always outputs an error when it should
6540 - MEDIUM: sample: Extend functionality for field/word converters
6541 - MINOR: export localpeer as an environment variable
6542 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
6543 - BUILD: sample: avoid build warning in sample.c
6544 - BUG/CRITICAL: h2: fix incorrect frame length check
6545 - DOC: lua: update the links to the config and Lua API
6546 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
6547 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
6548 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
6549 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
6550 - MINOR: h2: detect presence of CONNECT and/or content-length
6551 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
6552 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
6553 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
6554 - MEDIUM: cli: Add payload support
6555 - MINOR: map: Add payload support to "add map"
6556 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
6557 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
6558 - MINOR: sample: Add strcmp sample converter
6559 - MINOR: http: Add support for 421 Misdirected Request
6560 - BUG/MINOR: config: disable http-reuse on TCP proxies
6561 - MINOR: ssl: disable SSL sample fetches when unsupported
6562 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
6563 - BUG/MINOR: checks: Fix check->health computation for flapping servers
6564 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
6565 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
6566 - MINOR: backend: implement random-based load balancing
6567 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
6568 - MINOR: lua: Add server name & puid to LUA Server class.
6569 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
6570 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
6571 - BUG/MEDIUM: task: Don't free a task that is about to be run.
6572 - MINOR: fd: Make the lockless fd list work with multiple lists.
6573 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
6574 - MINOR: pollers: move polled_mask outside of struct fdtab.
6575 - BUG/MINOR: lua: schedule socket task upon lua connect()
6576 - BUG/MINOR: lua: ensure large proxy IDs can be represented
6577 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
6578 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
6579 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
6580 - BUG/MEDIUM: ssl: properly protect SSL cert generation
6581 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
6582 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
6583 - BUG/MEDIUM: spoe: Flags are not encoded in network order
6584 - CLEANUP: spoe: Remove unused variables the agent structure
6585 - DOC: spoe: fix a typo
6586 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
6587 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
6588 - DOC: add some description of the pending rework of the buffer structure
6589 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
6590 - MINOR: lua: Improve error message
6591 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
6592 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
6593 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
6594 - BUG/BUILD: threads: unbreak build without threads
6595 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
6596 - BUG/MEDIUM: lua/socket: Length required read doesn't work
6597 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
6598 - MAJOR: tasks: Create a per-thread runqueue.
6599 - MAJOR: tasks: Introduce tasklets.
6600 - MINOR: tasks: Make the number of tasks to run at once configurable.
6601 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
6602 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
6603 - MINOR: http: Log warning if (add|set)-header fails
6604 - DOC: management: add the new wrew stats column
6605 - MINOR: stats: also report the failed header rewrites warnings on the stats page
6606 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
6607 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
6608 - MINOR: task: Also consider the task list size when getting global tasks.
6609 - MINOR: dns: Implement `parse-resolv-conf` directive
6610 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
6611 - MINOR: task/notification: Is notifications registered ?
6612 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
6613 - BUG/MAJOR: lua: Dead lock with sockets
6614 - BUG/MEDIUM: lua/socket: Notification error
6615 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
6616 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
6617 - DOC: contrib/modsecurity: few typo fixes
6618 - DOC: SPOE.txt: fix a typo
6619 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
6620 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
6621 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
6622 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
6623 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
6624 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
6625 - MINOR: task: Fix a compiler warning by adding a cast.
6626 - MINOR: stats: also report the nice and number of calls for applets
6627 - MINOR: applet: assign the same nice value to a new appctx as its owner task
6628 - MINOR: task: Fix compiler warning.
6629 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
6630 - MINOR: tasks: Don't define rqueue if we're building without threads.
6631 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
6632 - MINOR: lua: Increase debug information
6633 - BUG/MEDIUM: threads: handle signal queue only in thread 0
6634 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
6635 - BUG/MINOR: signals: ha_sigmask macro for multithreading
6636 - BUG/MAJOR: map: fix a segfault when using http-request set-map
6637 - DOC: regression testing: Add a short starting guide.
6638 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
6639 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
6640 - BUG/MINOR: lua: Segfaults with wrong usage of types.
6641 - BUG/MAJOR: ssl: Random crash with cipherlist capture
6642 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
6643 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
6644 - MINOR: tests: First regression testing file.
6645 - MINOR: reg-tests: Add reg-tests/README file.
6646 - MINOR: reg-tests: Add a few regression testing files.
6647 - DOC: Add new REGTEST tag info about reg testing.
6648 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
6649 - MINOR: Some spelling cleanup in the comments.
6650 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
6651 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
6652 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
6653 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
6654 - REGTEST/MINOR: Add levels to reg-tests target.
6655 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
6656 - BUG/BUILD: threads: unbreak build without threads
6657 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
6658 - MINOR: stick-tables: make stktable_release() do nothing on NULL
6659 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
6660 - MINOR: startup: change session/process group settings
6661 - MINOR: systemd: consider exit status 143 as successful
6662 - REGTEST/MINOR: Wrong URI syntax.
6663 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
6664 - CLEANUP: dns: inacurate comment about prefered IP score
6665 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
6666 - MINOR: dns: new DNS options to allow/prevent IP address duplication
6667 - REGTEST/MINOR: Unexpected curl URL globling.
6668 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
6669 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
6670 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
6671 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
6672 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
6673 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
6674 - MINOR: tasklet: Set process to NULL.
6675 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
6676 - MINOR: buffer: switch buffer sizes and offsets to size_t
6677 - MINOR: buffer: add a few basic functions for the new API
6678 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
6679 - MINOR: buffer: Add b_set_data().
6680 - MINOR: buffer: introduce b_realign_if_empty()
6681 - MINOR: compression: pass the channel to http_compression_buffer_end()
6682 - MINOR: channel: add a few basic functions for the new buffer API
6683 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
6684 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
6685 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
6686 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
6687 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
6688 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
6689 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
6690 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
6691 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
6692 - MINOR: buffer: remove bi_ptr()
6693 - MINOR: buffer: remove bo_ptr()
6694 - MINOR: buffer: remove bo_end()
6695 - MINOR: buffer: remove bi_end()
6696 - MINOR: buffer: remove bo_contig_data()
6697 - MINOR: buffer: merge b{i,o}_contig_space()
6698 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
6699 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
6700 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
6701 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
6702 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
6703 - MINOR: h2: clarify the fact that the send functions are unsigned
6704 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
6705 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
6706 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
6707 - MINOR: h1: make h1_measure_trailers() use an offset and a count
6708 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
6709 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
6710 - MINOR: buffer: get rid of b_end() and b_to_end()
6711 - MINOR: buffer: make b_getblk_nc() take const pointers
6712 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
6713 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
6714 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
6715 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
6716 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
6717 - MINOR: connection: add a flags argument to rcv_buf()
6718 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
6719 - MINOR: buffer: get rid of b_ptr() and convert its last users
6720 - MINOR: buffer: use b_room() to determine available space in a buffer
6721 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
6722 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
6723 - MINOR: buffer: make bo_putchar() use b_tail()
6724 - MINOR: buffer: replace buffer_full() with channel_full()
6725 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
6726 - MINOR: buffer: replace buffer_pending() with ci_data()
6727 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
6728 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
6729 - MINOR: buffer: use b_orig() to replace most references to b->data
6730 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
6731 - MINOR: channel: remove almost all references to buf->i and buf->o
6732 - MINOR: channel: Add co_set_data().
6733 - MEDIUM: channel: adapt to the new buffer API
6734 - MINOR: checks: adapt to the new buffer API
6735 - MEDIUM: h2: update to the new buffer API
6736 - MINOR: buffer: remove unused bo_add()
6737 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
6738 - MINOR: stats: adapt to the new buffers API
6739 - MINOR: cli: use the new buffer API
6740 - MINOR: cache: use the new buffer API
6741 - MINOR: stream-int: use the new buffer API
6742 - MINOR: stream: use wrappers instead of directly manipulating buffers
6743 - MINOR: backend: use new buffer API
6744 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
6745 - MINOR: filters: convert to the new buffer API
6746 - MINOR: payload: convert to the new buffer API
6747 - MEDIUM: h1: port to new buffer API.
6748 - MINOR: flt_trace: adapt to the new buffer API
6749 - MEDIUM: compression: start to move to the new buffer API
6750 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
6751 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
6752 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
6753 - MAJOR: start to change buffer API
6754 - MINOR: buffer: remove the check for output on b_del()
6755 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
6756 - MINOR: buffer: rename the "data" field to "area"
6757 - MEDIUM: buffers: move "output" from struct buffer to struct channel
6758 - MINOR: buffer: replace bi_fast_delete() with b_del()
6759 - MINOR: buffer: replace b{i,o}_put* with b_put*
6760 - MINOR: buffer: add a new file for ist + buffer manipulation functions
6761 - MINOR: checks: use b_putist() instead of b_putstr()
6762 - MINOR: buffers: remove b_putstr()
6763 - CLEANUP: buffer: minor cleanups to buffer.h
6764 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
6765 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
6766 - MINOR: buffer: rename the data length member to '->data'
6767 - MAJOR: buffer: finalize buffer detachment
6768 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
6769 - MAJOR: chunks: replace struct chunk with struct buffer
6770 - DOC: buffers: document the new buffers API
6771 - DOC: buffers: remove obsolete docs about buffers
6772 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
6773 - MINOR: connections/mux: Add a new "subscribe" method.
6774 - MEDIUM: connections/mux: Revamp the send direction.
6775 - MINOR: connection: simplify subscription by adding a registration function
6776 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
6777 - BUG/MINOR: build: Fix compilation with debug mode enabled
6778 - BUILD: Generate sha256 checksums in publish-release
6779 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
6780 - MINOR: debug: Add checks for conn_stream flags
6781 - MINOR: ist: Add the function isteqi
6782 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
6783 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
6784 - MINOR: buffers: simplify b_contig_space()
6785 - MINOR: buffers: split b_putblk() into __b_putblk()
6786 - MINOR: buffers: add b_xfer() to transfer data between buffers
6787 - DOC: add some design notes about the new layering model
6788 - MINOR: conn_stream: add a new CS_FL_REOS flag
6789 - MINOR: conn_stream: add an rx buffer to the conn_stream
6790 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
6791 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
6792 - MINOR: h2: make each H2 stream support an intermediary input buffer
6793 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
6794 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
6795 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
6796 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
6797 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
6798 - MEDIUM: h2: perform a single call to the data layer in demux()
6799 - MEDIUM: h2: don't call data_cb->recv() anymore
6800 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
6801 - MEDIUM: h2: use the default conn_stream's receive function
6802 - DOC: add more design feedback on the new layering model
6803 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
6804 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
6805 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
6806 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
6807 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
6808 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
6809 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
6810 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
6811 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
6812 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
6813 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
6814 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
6815 - MINOR: queue: centralize dequeuing code a bit better
6816 - MEDIUM: queue: make pendconn_free() work on the stream instead
6817 - DOC: queue: document the expected locking model for the server's queue
6818 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
6819 - MINOR: queue: use a distinct variable for the assigned server and the queue
6820 - MINOR: queue: implement pendconn queue locking functions
6821 - MEDIUM: queue: get rid of the pendconn lock
6822 - MINOR: tasks: Make active_tasks_mask volatile.
6823 - MINOR: tasks: Make global_tasks_mask volatile.
6824 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
6825 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
6826 - BUG/MEDIUM: threads/sync: use sched_yield when available
6827 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
6828 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
6829 - BUG/MINOR: config: stick-table is not supported in defaults section
6830 - BUILD/MINOR: threads: unbreak build with threads disabled
6831 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
6832 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
6833 - MINOR: threads: move "nbthread" parsing to hathreads.c
6834 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
6835 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
6836 - BUILD/MINOR: compiler: fix offsetof() on older compilers
6837 - SCRIPTS: git-show-backports: add missing quotes to "echo"
6838 - MINOR: threads: add more consistency between certain variables in no-thread case
6839 - MEDIUM: hathreads: implement a more flexible rendez-vous point
6840 - BUG/MEDIUM: cli: make "show fd" thread-safe
6841
Willy Tarreaub3066502017-11-26 19:50:17 +010068422017/11/26 : 1.9-dev0
6843
Willy Tarreau0b787922017-11-26 19:25:23 +010068442017/11/26 : 1.8.0
6845 - BUG/MEDIUM: stream: don't automatically forward connect nor close
6846 - BUG/MAJOR: stream: ensure analysers are always called upon close
6847 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
6848 - MEDIUM: mworker: Add systemd `Type=notify` support
6849 - BUG/MEDIUM: cache: free callback to remove from tree
6850 - CLEANUP: cache: remove unused struct
6851 - MEDIUM: cache: enable the HTTP analysers
6852 - CLEANUP: cache: remove wrong comment
6853 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
6854 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
6855 - MINOR: threads/atomic: implement pl_mb() in asm on x86
6856 - MINOR: threads/atomic: implement pl_bts() on non-x86
6857 - MINOR: threads/build: atomic: replace the few inlines with macros
6858 - BUILD: threads/plock: fix a build issue on Clang without optimization
6859 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
6860 - BUILD: compiler: add a new type modifier __maybe_unused
6861 - BUILD: h2: mark some inlined functions "unused"
6862 - BUILD: server: check->desc always exists
6863 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
6864 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
6865 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
6866 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
6867 - BUG/MINOR: systemd: ignore daemon mode
6868 - CONTRIB: spoa_example: allow to compile outside HAProxy.
6869 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
6870 - CONTRIB: spoa_example: remove last dependencies on type "sample"
6871 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
6872 - CLEANUP: cache: reorder includes
6873 - MEDIUM: shctx: use unsigned int for len and block_count
6874 - MEDIUM: cache: "show cache" on the cli
6875 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
6876 - BUG/MEDIUM: cache: refcount forbids to free the objects
6877 - BUG/MEDIUM: cache fix cli_kws structure
6878 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
6879 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
6880 - MINOR: ssl: Don't disable early data handling if we could not write.
6881 - MINOR: pools: prepare functions to override malloc/free in pools
6882 - MINOR: pools: implement DEBUG_UAF to detect use after free
6883 - BUG/MEDIUM: threads/time: fix time drift correction
6884 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
6885 - MINOR: sample: Add "thread" sample fetch
6886 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
6887 - BUG/MINOR: stream: fix tv_request calculation for applets
6888 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
6889 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
6890 - MINOR: ssl: Handle reading early data after writing better.
6891 - MINOR: mux: Make sure every string is woken up after the handshake.
6892 - MEDIUM: cache: store sha1 for hashing the cache key
6893 - MINOR: http: implement the "http-request reject" rule
6894 - MINOR: h2: send RST_STREAM before GOAWAY on reject
6895 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
6896 - MINOR: h2: make use of client-fin timeout after GOAWAY
6897 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
6898 - MINOR: ssl: Handle early data with BoringSSL
6899 - BUG/MEDIUM: stream: always release the stream-interface on abort
6900 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
6901 - MINOR: cache: move the refcount decrease in the applet release
6902 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
6903 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
6904 - MINOR: config: Slightly change how parse_process_number works
6905 - MINOR: config: Export parse_process_number and use it wherever it's applicable
6906 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
6907 - MINOR: config: Add auto-increment feature for cpu-map
6908 - MINOR: config: Support partial ranges in cpu-map directive
6909 - MINOR:: config: Remove thread-map directive
6910 - MINOR: config: Add the threads support in cpu-map directive
6911 - MINOR: config: Add threads support for "process" option on "bind" lines
6912 - MEDIUM: listener: Bind listeners on a thread subset if specified
6913 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
6914 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
6915 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
6916 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
6917 - DOC: update the roadmap file with the latest changes merged in 1.8
6918 - DOC: fix mangled version in peers protocol documentation
6919 - DOC: add initial peers protovol v2.0 documentation.
6920 - DOC: mention William as maintainer of the cache and master-worker
6921 - DOC: add Christopher and Emeric as maintainers of the threads
6922 - MINOR: cache: replace a fprint() by an abort()
6923 - MEDIUM: cache: max-age configuration keyword
6924 - DOC: explain HTTP2 timeout behavior
6925 - DOC: cache: configuration and management
6926 - MAJOR: mworker: exits the master on failure
6927 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
6928 - MINOR: task: keep a pointer to the currently running task
6929 - MINOR: task: align the rq and wq locks
6930 - MINOR: fd: cache-align fdtab and fdcache locks
6931 - MINOR: buffers: cache-align buffer_wq_lock
6932 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
6933 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
6934 - CLEANUP: checks: remove 16 bytes of holes in struct check
6935 - CLEANUP: cache: more efficiently pack the struct cache
6936 - CLEANUP: fd: place the lock at the beginning of struct fdtab
6937 - CLEANUP: pools: align pools on a cache line
6938 - DOC: config: add a few bits about how to configure HTTP/2
6939 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
6940 - BUILD: Makefile: reorder object files by size
6941
Willy Tarreaucfe14662017-11-19 09:55:29 +010069422017/11/19 : 1.8-rc4
6943 - BUG/MEDIUM: cache: does not cache if no Content-Length
6944 - BUILD: thread/pipe: fix build without threads
6945 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
6946 - MINOR: debug/flags: Add missing flags
6947 - MINOR: threads: Use __decl_hathreads to declare locks
6948 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
6949 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
6950 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
6951 - MINOR: ebtree/scope: add a function to find next node from a parent
6952 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
6953 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
6954 - BUG/MEDIUM: cache: use msg->sov to forward header
6955 - MINOR: cache: forward data with headers
6956 - MINOR: cache: disable cache if shctx_row_data_append fail
6957 - BUG/MINOR: threads: tid_bit must be a unsigned long
6958 - CLEANUP: tasks: Remove useless double test on rq_next
6959 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
6960 - MINOR: tools: add a function to dump a scope-aware tree to a file
6961 - MINOR: tools: improve the DOT dump of the ebtree
6962 - MINOR: tools: emphasize the node being worked on in the tree dump
6963 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
6964 - DOC: peers: Add a first version of peers protocol v2.1.
6965 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
6966 - MINOR: mworker: display an accurate error when the reexec fail
6967 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
6968 - BUG/MEDIUM: mworker: does not deinit anymore
6969 - BUG/MEDIUM: mworker: does not close inherited FD
6970 - MINOR: tests: add a python wrapper to test inherited fd
6971 - BUG/MINOR: Allocate the log buffers before the proxies startup
6972 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
6973 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
6974 - MINOR: applets: Use a bitfield to track applets activity per-thread
6975 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
6976 - MEDIUM: applets: Don't process more than 200 active applets at once
6977 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
6978 - MINOR: SSL: Store the ASN1 representation of client sessions.
6979 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
6980 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
6981
Willy Tarreau34650d52017-11-11 09:06:48 +010069822017/11/11 : 1.8-rc3
6983 - BUILD: use MAXPATHLEN instead of NAME_MAX.
6984 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
6985 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
6986 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
6987 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
6988 - CLEANUP: checks: remove return statements in locked functions
6989 - BUG/MINOR: cli: add severity in "set server addr" parser
6990 - CLEANUP: server: get rid of return statements in the CLI parser
6991 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
6992 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
6993 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
6994 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
6995 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
6996 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
6997 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
6998 - BUG/MEDIUM: threads: don't try to free build option message on exit
6999 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
7000 - MINOR: add master-worker in the warning about nbproc
7001 - MINOR: mworker: allow pidfile in mworker + foreground
7002 - MINOR: mworker: write parent pid in the pidfile
7003 - MINOR: mworker: do not store child pid anymore in the pidfile
7004 - MINOR: ebtree: implement the scope-aware functions for eb32
7005 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
7006 - MINOR: ebtree: update the eb32sc parent node's scope on delete
7007 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
7008 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
7009 - MAJOR: task: make use of the scope-aware ebtree functions
7010 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
7011 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
7012 - MINOR: threads: use faster locks for the spin locks
7013 - MINOR: tasks: only visit filled task slots after processing them
7014 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
7015 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
7016 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
7017 - DOC: Add note about encrypted password CPU usage
7018 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
7019 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
7020 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
7021 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
7022 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
7023 - BUG/MEDIUM: h2: fix some wrong error codes on connections
7024 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
7025 - BUILD: enable USE_THREAD for Solaris build.
7026 - BUG/MEDIUM: h2: don't close the connection is there are data left
7027 - MINOR: h2: don't re-enable the connection's task when we're closing
7028 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
7029 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
7030 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
7031 - BUG/MINOR: h2: don't send GOAWAY on failed response
7032 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
7033 - BUG/MINOR: comp: fix compilation warning compiling without compression.
7034 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
7035 - BUG/MAJOR: threads/tasks: fix the scheduler again
7036 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
7037 - MINOR: ssl: Handle session resumption with TLS 1.3
7038 - MINOR: ssl: Spell 0x10101000L correctly.
7039 - MINOR: ssl: Handle sending early data to server.
7040 - BUILD: ssl: fix build of backend without ssl
7041 - BUILD: shctx: do not depend on openssl anymore
7042 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
7043 - BUG/MEDIUM: h2: reject non-3-digit status codes
7044 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
7045 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
7046 - BUG/MEDIUM: h2: split the function to send RST_STREAM
7047 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
7048 - MINOR: tools: don't use unlikely() in hex2i()
7049 - BUG/MEDIUM: h2: support orphaned streams
7050 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
7051 - CLEANUP: mux: remove the unused "release()" function
7052 - MINOR: cli: make "show fd" report the fd's thread mask
7053 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
7054 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
7055 - MEDIUM: http: always reject the "PRI" method
7056
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +010070572017/11/03 : 1.8-rc2
7058 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
7059 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
7060 - MINOR: mux: Only define pipe functions on linux.
7061 - MINOR: cache: Remove useless test for nonzero.
7062 - MINOR: cache: Don't confuse act_return and act_parse_ret.
7063 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
7064 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
7065 - BUG/MAJOR: fix deadlock on healthchecks.
7066 - BUG/MINOR: thread: fix a typo in the debug code
7067 - BUILD: shctx: allow to be built without openssl
7068 - BUG/MEDIUM: cache: don't try to resolve wrong filters
7069 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
7070 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
7071 - BUG/MINOR: stdarg.h inclusion
7072 - BUG/MINOR: dns: fix missing lock protection on server.
7073 - BUG/MINOR: lua: fix missing lock protection on server.
7074 - BUILD: enable USE_THREAD for OpenBSD build.
7075 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
7076 - MINOR: thread: report multi-thread support in haproxy -vv
7077
Willy Tarreau901f75c2017-10-31 23:18:29 +010070782017/10/31 : 1.8-rc1
7079 - BUG/MEDIUM: server: Allocate tmptrash before using it.
7080 - CONTRIB: trace: add the possibility to place trace calls in the code
7081 - CONTRIB: trace: try to display the function's return value on exit
7082 - CONTRIB: trace: report the base name only for file names
7083 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
7084 - MINOR: ssl: build with recent BoringSSL library
7085 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
7086 - BUG/MINOR: cli: restore "set ssl tls-key" command
7087 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
7088 - IMPORT: sha1: import SHA1 functions
7089 - MINOR: sample: add the sha1 converter
7090 - MINOR: sample: add the hex2i converter
7091 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
7092 - MINOR: ssl: don't abort after sending 16kB
7093 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
7094 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
7095 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
7096 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
7097 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
7098 - BUG/MINOR: checks: Don't forget to release the connection on error case.
7099 - MINOR: buffer: add the buffer input manipulation functions
7100 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
7101 - MEDIUM: cfgparse: post section callback
7102 - MEDIUM: cfgparse: post parsing registration
7103 - MINOR: lua: add uuid to the Class Proxy
7104 - MINOR: hlua: Add regex class
7105 - MINOR: http: Mark the 425 code as "Too Early".
7106 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
7107 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
7108 - MINOR: ssl: generated certificate is missing in switchctx early callback
7109 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
7110 - BUILD: Makefile: disable -Wunused-label
7111 - MINOR: ssl/proto_http: Add keywords to take care of early data.
7112 - BUG/MINOR: lua: const attribute of a string is overridden
7113 - MINOR: ssl: Don't abuse ssl_options.
7114 - MINOR: update proxy-protocol-v2 #define
7115 - MINOR: merge ssl_sock_get calls for log and ppv2
7116 - MINOR: add ALPN information to send-proxy-v2
7117 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
7118 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
7119 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
7120 - REORG: shctx: move lock functions and struct
7121 - MEDIUM: shctx: allow the use of multiple shctx
7122 - REORG: shctx: move ssl functions to ssl_sock.c
7123 - MEDIUM: shctx: separate ssl and shctx
7124 - MINOR: shctx: rename lock functions
7125 - MINOR: h1: store the status code in the H1 message
7126 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
7127 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
7128 - MINOR: action: Add trk_idx inline function
7129 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
7130 - MINOR: action: Add a function pointer in act_rule struct to check its validity
7131 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
7132 - MINOR: action: Add a functions to check http capture rules
7133 - MINOR: action: Factorize checks on rules calling check_ptr if defined
7134 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
7135 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
7136 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
7137 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
7138 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
7139 - MINOR: spoe: Move message encoding in its own function
7140 - MINOR: spoe: Add a type to qualify the message list during encoding
7141 - MINOR: spoe: Add a generic function to encode a list of SPOE message
7142 - MEDIUM: spoe/rules: Process "send-spoe-group" action
7143 - BUG/MINOR: dns: Fix CLI keyword declaration
7144 - MAJOR: dns: Refactor the DNS code
7145 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
7146 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
7147 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
7148 - MINOR: standard: Add memvprintf function
7149 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
7150 - MINOR: cli: Add "show startup-logs" command
7151 - MINOR: startup: Extend the scope the MODE_STARTING flag
7152 - MINOR: threads: Prepare makefile to link with pthread
7153 - MINOR: threads: Add THREAD_LOCAL macro
7154 - MINOR: threads: Add atomic-ops and plock includes in import dir
7155 - MEDIUM: threads: Add hathreads header file
7156 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
7157 - MINOR: threads: Add nbthread parameter
7158 - MEDIUM: threads: Adds a set of functions to handle sync-point
7159 - MAJOR: threads: Start threads to experiment multithreading
7160 - MINOR: threads: Define the sync-point inside run_poll_loop
7161 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
7162 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
7163 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
7164 - MEDIUM: threads/logs: Make logs thread-safe
7165 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
7166 - MAJOR: threads/fd: Make fd stuffs thread-safe
7167 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
7168 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
7169 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
7170 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
7171 - WIP: SQUASH WITH SYNC POINT
7172 - MAJOR: threads/task: handle multithread on task scheduler
7173 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
7174 - MEDIUM: threads/listeners: Make listeners thread-safe
7175 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
7176 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
7177 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
7178 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
7179 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
7180 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
7181 - MINOR: threads/sample: Change temp_smp into a thread local variable
7182 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
7183 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
7184 - MAJOR: threads/applet: Handle multithreading for applets
7185 - MAJOR: threads/peers: Make peers thread safe
7186 - MAJOR: threads/buffer: Make buffer wait queue thread safe
7187 - MEDIUM: threads/stream: Make streams list thread safe
7188 - MAJOR: threads/ssl: Make SSL part thread-safe
7189 - MEDIUM: threads/queue: Make queues thread-safe
7190 - MAJOR: threads/map: Make acls/maps thread safe
7191 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
7192 - MEDIUM: thread/vars: Make vars thread-safe
7193 - MEDIUM: threads/filters: Add init/deinit callback per thread
7194 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
7195 - MEDIUM: threads/compression: Make HTTP compression thread-safe
7196 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
7197 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
7198 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
7199 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
7200 - MEDIUM: threads/xref: Convert xref function to a thread safe model
7201 - MEDIUM: threads/tasks: Add lock around notifications
7202 - MEDIUM: thread/spoe: Make the SPOE thread-safe
7203 - MEDIUM: thread/dns: Make DNS thread-safe
7204 - MINOR: threads: Add thread-map config parameter in the global section
7205 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
7206 - MINOR: threads/checks: Set the task process_mask when a check is executed
7207 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
7208 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
7209 - MINOR: threads: Don't start when device a detection module is used
7210 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
7211 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
7212 - MAJOR: threads: Offically enable the threads support in HAProxy
7213 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
7214 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
7215 - BUILD: stick-tables: silence an uninitialized variable warning
7216 - BUG/MINOR: dns: Fix SRV records with the new thread code.
7217 - MINOR: ssl: Remove the global allow-0rtt option.
7218 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
7219 - CLEANUP: threads: rename process_mask to thread_mask
7220 - MINOR: h1: add a function to measure the trailers length
7221 - MINOR: threads: add a portable barrier for threads and non-threads
7222 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
7223 - BUG/MEDIUM: threads: Initialize the sync-point
7224 - MEDIUM: connection: start to introduce a mux layer between xprt and data
7225 - MINOR: connection: implement alpn registration of muxes
7226 - MINOR: mux: register the pass-through mux for any ALPN string
7227 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
7228 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
7229 - MINOR: connection: introduce conn_stream
7230 - MINOR: mux: add more methods to mux_ops
7231 - MINOR: connection: introduce the conn_stream manipulation functions
7232 - MINOR: mux_pt: implement remaining mux_ops methods
7233 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
7234 - MINOR: connection: make conn_stream users also check for per-stream error flag
7235 - MINOR: conn_stream: new shutr/w status flags
7236 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
7237 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
7238 - MINOR: connection: add cs_close() to close a conn_stream
7239 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
7240 - MEDIUM: connection: replace conn_full_close() with cs_close()
7241 - MEDIUM: connection: make mux->detach() release the connection
7242 - MEDIUM: stream: do not forcefully close the client connection anymore
7243 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
7244 - MEDIUM: connection: add a destroy callback
7245 - MINOR: session: release the listener with the session, not the stream
7246 - MEDIUM: session: make use of the connection's destroy callback
7247 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
7248 - MINOR: hpack: implement the HPACK Huffman table decoder
7249 - MINOR: hpack: implement the header tables management
7250 - MINOR: hpack: implement the decoder
7251 - MEDIUM: hpack: implement basic hpack encoding
7252 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
7253 - MINOR: h2: create a very minimalistic h2 mux
7254 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
7255 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
7256 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
7257 - MINOR: h2: create the h2c struct and allocate its pool
7258 - MINOR: h2: create the h2s struct and the associated pool
7259 - MINOR: h2: handle two extra stream states for errors
7260 - MINOR: h2: add a frame header descriptor for incoming frames
7261 - MEDIUM: h2: allocate and release the h2c context on connection init/end
7262 - MEDIUM: h2: implement basic recv/send/wake functions
7263 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
7264 - MEDIUM: h2: implement the mux buffer allocator
7265 - MINOR: h2: add the connection and stream flags listing the causes for blocking
7266 - MINOR: h2: add function h2s_id() to report a stream's ID
7267 - MINOR: h2: small function to know when the mux is busy
7268 - MINOR: h2: new function h2c_error to mark an error on the connection
7269 - MINOR: h2: new function h2s_error() to mark an error on a stream
7270 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
7271 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
7272 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
7273 - MINOR: h2: add stream lookup function based on the stream ID
7274 - MINOR: h2: create dummy idle and closed streams
7275 - MINOR: h2: add the function to create a new stream
7276 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
7277 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
7278 - MINOR: h2: also terminate the connection on shutr
7279 - MEDIUM: h2: properly consider all conditions for end of connection
7280 - MEDIUM: h2: wake the connection up for send on pending streams
7281 - MEDIUM: h2: start to implement the frames processing loop
7282 - MINOR: h2: add a function to send a GOAWAY error frame
7283 - MINOR: h2: match the H2 connection preface on init
7284 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
7285 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
7286 - MEDIUM: h2: process streams pending for sending
7287 - MINOR: h2: send a real SETTINGS frame based on the configuration
7288 - MEDIUM: h2: detect the presence of the first settings frame
7289 - MINOR: h2: create a stream parser for the demuxer
7290 - MINOR: h2: implement PING frames
7291 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
7292 - MINOR: h2: lookup the stream during demuxing
7293 - MEDIUM: h2: honor WINDOW_UPDATE frames
7294 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
7295 - MINOR: h2: handle CONTINUATION frames
7296 - MEDIUM: h2: partial implementation of h2_detach()
7297 - MEDIUM: h2: unblock a connection when its current stream detaches
7298 - MEDIUM: h2: basic processing of HEADERS frame
7299 - MEDIUM: h2: don't use trash to decode headers!
7300 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
7301 - MEDIUM: h2: send the H1 response body as DATA frames
7302 - MEDIUM: h2: skip the response trailers if any
7303 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
7304 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
7305 - MEDIUM: h2: handle request body in DATA frames
7306 - MINOR: h2: handle RST_STREAM frames
7307 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
7308 - MINOR: h2: use a common function to signal some and all streams.
7309 - MEDIUM: h2: handle GOAWAY frames
7310 - MINOR: h2: centralize the check for the idle streams
7311 - MINOR: h2: centralize the check for the half-closed(remote) streams
7312 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
7313 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
7314 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
7315 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
7316 - MEDIUM: h2: apply a timeout to h2 connections
7317 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
7318 - MEDIUM: shctx: forbid shctx to read more than expected
7319 - MEDIUM: cache: configuration parsing and initialization
7320 - MEDIUM: cache: store objects in cache
7321 - MEDIUM: cache: deliver objects from cache
7322
Willy Tarreauf08137c2017-10-22 10:13:45 +020073232017/10/22 : 1.8-dev3
7324 - REORG: ssl: move defines and methodVersions table upper
7325 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
7326 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
7327 - MEDIUM: ssl: disable SSLv3 per default for bind
7328 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
7329 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
7330 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
7331 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
7332 - BUG/MEDIUM: build without openssl broken
7333 - BUG/MINOR: warning: need_resend may be used uninitialized
7334 - BUG/MEDIUM: misplaced exit and wrong exit code
7335 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
7336 - BUILD: scripts: make publish-release support bare repositories
7337 - BUILD: scripts: add an automatic mode for publish-release
7338 - BUILD: scripts: add a "quiet" mode to publish-release
7339 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
7340 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
7341 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
7342 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
7343 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
7344 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
7345 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
7346 - BUG/MAJOR: server: Segfault after parsing server state file.
7347 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
7348 - scripts: create-release pass -n to tail
7349 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
7350 - BUG/MEDIUM: fix segfault when no argument to -x option
7351 - MINOR: warning on multiple -x
7352 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
7353 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
7354 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
7355 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
7356 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
7357 - DOC: fix references to the section about the unix socket
7358 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
7359 - MAJOR: task: task scheduler rework.
7360 - MINOR: task/stream: tasks related to a stream must be init by the caller.
7361 - MINOR: queue: Change pendconn_get_next_strm into private function
7362 - MINOR: backends: Change get_server_sh/get_server_uh into private function
7363 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
7364 - MEDIUM: stream: make stream_new() always set the target and analysers
7365 - MINOR: frontend: initialize HTTP layer after the debugging code
7366 - MINOR: connection: add a .get_alpn() method to xprt_ops
7367 - MINOR: ssl: add a get_alpn() method to ssl_sock
7368 - MINOR: frontend: retrieve the ALPN name when available
7369 - MINOR: frontend: report the connection's ALPN in the debug output
7370 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
7371 - MINOR: connection: send data before receiving
7372 - MAJOR: applet: applet scheduler rework.
7373 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
7374 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
7375 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
7376 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
7377 - MINOR: compression: Use a memory pool to allocate compression states
7378 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
7379 - DOC: fix references to the section about time format.
7380 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
7381 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
7382 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
7383 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
7384 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
7385 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
7386 - MINOR: peers: Add additional information to stick-table definition messages.
7387 - BUG/MINOR: http: properly handle all 1xx informational responses
7388 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
7389 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
7390 - CLEANUP: hdr_idx: make some function arguments const where possible
7391 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
7392 - BUG/MINOR: lua: In error case, the safe mode is not removed
7393 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
7394 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
7395 - BUG/MEDIUM: lua: bad memory access
7396 - BUG/MINOR: Lua: variable already initialized
7397 - DOC: update CONTRIBUTING regarding optional parts and message format
7398 - DOC: update the list of OpenSSL versions in the README
7399 - BUG/MINOR: http: Set the response error state in http_sync_res_state
7400 - MINOR: http: Reorder/rewrite checks in http_resync_states
7401 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
7402 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
7403 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
7404 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
7405 - BUG/MINOR: contrib/modsecurity: BSD build fix
7406 - BUG/MINOR: contrib/mod_defender: build fix
7407 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
7408 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
7409 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
7410 - MINOR: tools: add a portable timegm() alternative
7411 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
7412 - DOC: Updated 51Degrees git URL to point to a stable version.
7413 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
7414 - MINOR: memory: remove macros
7415 - BUG/MINOR: lua: Fix Server.get_addr() port values
7416 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
7417 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
7418 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
7419 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
7420 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
7421 - MINOR: task: always preinitialize the task's timeout in task_init()
7422 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
7423 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
7424 - MINOR: lua: Add proxy as member of proxy object.
7425 - DOC: lua: Proxy class doc update
7426 - MINOR: lua: Add lists of frontends and backends
7427 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
7428 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
7429 - MINOR: ssl: add a new error codes for wrong server certificates
7430 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
7431 - MINOR: ssl: add "no-ca-names" parameter for bind
7432 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
7433 - DOC: fix alphabetical order of "show commands" in management.txt
7434 - MINOR: listener: add a function to return a listener's state as a string
7435 - MINOR: cli: add a new "show fd" command
7436 - BUG/MEDIUM: ssl: Fix regression about certificates generation
7437 - MINOR: Add server port field to server state file.
7438 - MINOR: ssl: allow to start without certificate if strict-sni is set
7439 - MINOR: dns: Cache previous DNS answers.
7440 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
7441 - Add a few functions to do unaligned access.
7442 - MINOR: dns: Handle SRV records.
7443 - MINOR: check: Fix checks when using SRV records.
7444 - MINOR: doc: Document SRV label usage.
7445 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
7446 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
7447 - BUILD/MINOR: build without openssl still broken
7448 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
7449 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
7450 - MINOR: init: Fix CPU affinity setting on FreeBSD.
7451 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
7452 - MINOR: dns: update record dname matching for SRV query types
7453 - MINOR: dns: update dns response buffer reading pointer due to SRV record
7454 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
7455 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
7456 - MINOR: dns: ability to use a SRV resolution for multiple backends
7457 - MINOR: dns: enable caching of responses for server set by a SRV record
7458 - MINOR: dns: new dns record type (RTYPE) for OPT
7459 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
7460 - MINOR: dns: default "hold obsolete" timeout set to 0
7461 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
7462 - MINOR: session: add a streams field to the session struct
7463 - MINOR: stream: link the stream to its session
7464 - MEDIUM: session: do not free a session until no stream references it
7465 - MINOR: ist: implement very simple indirect strings
7466 - TESTS: ist: add a test file for the functions
7467 - MINOR: http: export some of the HTTP parser macros
7468 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
7469 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
7470 - MINOR: dns: Maximum DNS udp payload set to 8192
7471 - MINOR: dns: automatic reduction of DNS accpeted payload size
7472 - MINOR: dns: make SRV record processing more verbose
7473 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
7474 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
7475 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
7476 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
7477 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
7478 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
7479 - MINOR: lua: properly process the contents of the content-length field
7480 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
7481 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
7482 - OPTIM: lua: don't add "Connection: close" on the response
7483 - REORG/MEDIUM: connection: introduce the notion of connection handle
7484 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
7485 - MEDIUM: connection: get rid of data->init() which was not for data
7486 - MEDIUM: stream: make stream_new() allocate its own task
7487 - CLEANUP: listener: remove the unused handler field
7488 - MEDIUM: session: add a pointer to a struct task in the session
7489 - MINOR: stream: provide a new stream creation function for connections
7490 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
7491 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
7492 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
7493 - DOC: add CLI info on privilege levels
7494 - DOC: Refer to Mozilla TLS info / config generator
7495 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
7496 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
7497 - DOC: Add note about "* " prefix in CSV stats
7498 - CLEANUP: memory: Remove unused function pool_destroy
7499 - MINOR: listeners: Change listener_full and limit_listener into private functions
7500 - MINOR: listeners: Change enable_listener and disable_listener into private functions
7501 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
7502 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
7503 - MINOR: backends: Make get_server_* functions explicitly static
7504 - MINOR: applet: Check applets_active_queue before processing applets queue
7505 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
7506 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
7507 - MINOR: logs: Use dedicated function to init/deinit log buffers
7508 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
7509 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
7510 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
7511 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
7512 - MINOR: fd: Add fd_active function
7513 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
7514 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
7515 - MINOR: freq_ctr: Return the new value after an update
7516 - MEDIUM: check: server states and weight propagation re-work
7517 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
7518 - MINOR: fd: Add fd_update_events function
7519 - MINOR: polling: Use fd_update_events to update events seen for a fd
7520 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
7521 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
7522 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
7523 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
7524 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
7525 - MINOR: xref: Add a new xref system
7526 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
7527 - MINOR: tasks: Move Lua notification from Lua to tasks
7528 - MINOR: net_helper: Inline functions meant to be inlined.
7529 - MINOR: cli: add socket commands and config to prepend informational messages with severity
7530 - MINOR: add severity information to cli feedback messages
7531 - BUILD: Makefile: add a function to detect support by the compiler of certain options
7532 - BUILD: Makefile: shut certain gcc/clang stupid warnings
7533 - BUILD: Makefile: improve detection of support for compiler warnings
7534 - MINOR: peers: don't reference the incoming listener on outgoing connections
7535 - MINOR: frontend: don't retrieve ALPN on the critical path
7536 - MINOR: protocols: always pass a "port" argument to the listener creation
7537 - MINOR: protocols: register the ->add function and stop calling them directly
7538 - MINOR: unix: remove the now unused proto_uxst.h file
7539 - MINOR: listeners: new function create_listeners
7540 - MINOR: listeners: make listeners count consistent with reality
7541 - MEDIUM: session: take care of incrementing/decrementing jobs
7542 - MINOR: listener: new function listener_release
7543 - MINOR: session: small cleanup of conn_complete_session()
7544 - MEDIUM: session: factor out duplicated code for conn_complete_session
7545 - MEDIUM: session: count the frontend's connections at a single place
7546 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
7547 - BUG/MINOR: compression: Check response headers before http-response rules eval
7548 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
7549 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
7550 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
7551 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
7552 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
7553 - MINOR: tools: make my_htonll() more efficient on x86_64
7554 - MINOR: buffer: add b_del() to delete a number of characters
7555 - MINOR: buffer: add b_end() and b_to_end()
7556 - MINOR: net_helper: add functions to read from vectors
7557 - MINOR: net_helper: add write functions
7558 - MINOR: net_helper: add 64-bit read/write functions
7559 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
7560 - MINOR: ist: add a macro to ease const array initialization
7561 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
7562 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
7563 - BUG/MINOR: log: fixing small memory leak in error code path.
7564 - BUG/MINOR: contrib/halog: fixing small memory leak
7565 - BUG/MEDIUM: tcp/http: set-dst-port action broken
7566 - CLEANUUP: checks: don't set conn->handle.fd to -1
7567 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
7568 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
7569 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
7570 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
7571 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
7572 - CLEANUP: checks: remove misleading comments and statuses for external process
7573 - CLEANUP: checks: don't report report the fork() error twice
7574 - CLEANUP: checks: do not allocate a connection for process checks
7575 - TESTS: checks: add a simple test config for external checks
7576 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
7577 - TESTS: checks: add a simple test config for tcp-checks
7578 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
7579 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
7580 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
7581 - MEDIUM: checks: do not allocate a permanent connection anymore
7582 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
7583 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
7584 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
7585 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
7586 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
7587 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
7588 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
7589 - MINOR: session: remove the list of streams from struct session
7590 - DOC: fix some typos
7591 - MINOR: server: add the srv_queue() sample fetch method
7592 - MINOR: payload: add new sample fetch functions to process distcc protocol
7593 - MAJOR: servers: propagate server status changes asynchronously.
7594 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
7595 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
7596 - MINOR: server: Handle weight increase in consistent hash.
7597 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
7598 - BUG/MINOR: tools: fix my_htonll() on x86_64
7599 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
7600 - BUG/MAJOR: lua: scheduled task is freezing.
7601 - MINOR: buffer: add bo_del() to delete a number of characters from output
7602 - MINOR: buffer: add a function to match against string patterns
7603 - MINOR: buffer: add two functions to inject data into buffers
7604 - MINOR: buffer: add buffer_space_wraps()
7605 - REORG: channel: finally rename the last bi_* / bo_* functions
7606 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
7607 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
7608 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
7609 - MINOR: ist: add ist0() to add a trailing zero to a string.
7610 - BUG/MEDIUM: log: check result details truncated.
7611 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
7612 - REORG: http: move some very http1-specific parts to h1.{c,h}
7613 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
7614 - REORG: http: move the HTTP/1 header block parser to h1.c
7615 - MEDIUM: http: make the chunk size parser only depend on the buffer
7616 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
7617 - MINOR: h1: add struct h1m for basic HTTP/1 messages
7618 - MINOR: http: add very simple header management based on double strings
7619 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
7620 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
7621 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
7622 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
7623 - MINOR: connection: add conn_stop_tracking() to disable tracking
7624 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
7625 - MINOR: unix: use conn_full_close() instead of conn_force_close()
7626 - MINOR: checks: use conn_full_close() instead of conn_force_close()
7627 - MINOR: session: use conn_full_close() instead of conn_force_close()
7628 - MINOR: stream: use conn_full_close() instead of conn_force_close()
7629 - MINOR: stream: use conn_full_close() instead of conn_force_close()
7630 - MINOR: backend: use conn_full_close() instead of conn_force_close()
7631 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
7632 - MINOR: connection: remove conn_force_close()
7633 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
7634
Willy Tarreauf57a29a2017-06-02 15:59:51 +020076352017/06/02 : 1.8-dev2
7636 - CLEANUP: server: moving netinet/tcp.h inclusion
7637 - DOC: changed "block"(deprecated) examples to http-request deny
7638 - DOC: add few comments to examples.
7639 - DOC: update sample code for PROXY protocol
7640 - DOC: mention lighttpd 1.4.46 implements PROXY
7641 - MINOR server: Restrict dynamic cookie check to the same proxy.
7642 - DOC: stick-table is available in frontend sections
7643 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
7644 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
7645 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
7646 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
7647 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
7648 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
7649 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
7650 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
7651 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
7652 - BUG/MEDIUM: servers: unbreak server weight propagation
7653 - MINOR: lua: ensure the memory allocator is used all the time
7654 - MINOR: cli: Add a command to send listening sockets.
7655 - MINOR: global: Add an option to get the old listening sockets.
7656 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
7657 - MINOR: doc: document the -x flag
7658 - MINOR: proxy: Don't close FDs if not our proxy.
7659 - MINOR: socket transfer: Set a timeout on the socket.
7660 - MINOR: systemd wrapper: add support for passing the -x option.
7661 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
7662 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
7663 - CLEANUP: logs: typo: simgle => single
7664 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
7665 - MEDIUM: config: don't check config validity when there are fatal errors
7666 - BUG/MAJOR: Use -fwrapv.
7667 - BUG/MINOR: server: don't use "proxy" when px is really meant.
7668 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
7669 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
7670 - MINOR: server: Extract the code responsible of copying default-server settings.
7671 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
7672 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
7673 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
7674 - DOC: Add documentation for new "server-template" keyword.
7675 - DOC: add layer 4 links/cross reference to "block" keyword.
7676 - DOC: errloc/errorloc302/errorloc303 missing status codes.
7677 - BUG/MEDIUM: lua: memory leak
7678 - CLEANUP: lua: remove test
7679 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
7680 - BUG/MINOR: change header-declared function to static inline
7681 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
7682 - MINOR: Add binary encoding request header sample fetch
7683 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
7684 - MINOR: Add ModSecurity wrapper as contrib
7685 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
7686 - DOC: update RFC references
7687 - CONTRIB: tcploop: add action "X" to execute a command
7688 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
7689 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
7690 - BUG/MINOR: checks: don't send proxy protocol with agent checks
7691 - MINOR: ssl: add prefer-client-ciphers
7692 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
7693 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
7694 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
7695 - MINOR: ssl: support TLSv1.3 for bind and server
7696 - MINOR: ssl: show methods supported by openssl
7697 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
7698 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
7699 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
7700 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
7701 - MINOR: sample: Add b64dec sample converter
7702 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
7703 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
7704 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
7705 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
7706 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
7707 - MAJOR: ssl: add openssl async mode support
7708 - MEDIUM: ssl: handle multiple async engines
7709 - MINOR: boringssl: basic support for OCSP Stapling
7710 - MEDIUM: mworker: replace systemd mode by master worker mode
7711 - MEDIUM: mworker: handle reload and signals
7712 - MEDIUM: mworker: wait mode on reload failure
7713 - MEDIUM: mworker: try to guess the next stats socket to use with -x
7714 - MEDIUM: mworker: exit-on-failure option
7715 - MEDIUM: mworker: workers exit when the master leaves
7716 - DOC: add documentation for the master-worker mode
7717 - MEDIUM: systemd: Type=forking in unit file
7718 - MAJOR: systemd-wrapper: get rid of the wrapper
7719 - MINOR: log: Add logurilen tunable.
7720 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
7721 - MINOR: dns: smallest DNS fqdn size
7722 - MINOR: dns: functions to manage memory for a DNS resolution structure
7723 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
7724 - REORG: dns: dns_option structure, storage of hostname_dn
7725 - MINOR: dns: new snr_check_ip_callback function
7726 - MAJOR: dns: save a copy of the DNS response in struct resolution
7727 - MINOR: dns: implement a LRU cache for DNS resolutions
7728 - MINOR: dns: make 'ancount' field to match the number of saved records
7729 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
7730 - MAJOR/REORG: dns: DNS resolution task and requester queues
7731 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
7732 - MINOR: Add Mod Defender integration as contrib
7733 - CLEANUP: str2mask return code comment: non-zero -> zero.
7734 - MINOR: tools: make debug_hexdump() use a const char for the string
7735 - MINOR: tools: make debug_hexdump() take a string prefix
7736 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
7737
Willy Tarreau7b677262017-04-03 09:27:49 +020077382017/04/03 : 1.8-dev1
7739 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
7740 - BUG/MINOR: stats: make field_str() return an empty string on NULL
7741 - DOC: Spelling fixes
7742 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
7743 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
7744 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
7745 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
7746 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
7747 - BUG/MAJOR: stream: fix session abort on resource shortage
7748 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
7749 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
7750 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
7751 - DOC: Fix map table's format
7752 - DOC: Added 51Degrees conv and fetch functions to documentation.
7753 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
7754 - DOC: mention that req_tot is for both frontends and backends
7755 - BUG/MEDIUM: variables: some variable name can hide another ones
7756 - MINOR: lua: Allow argument for actions
7757 - BUILD: rearrange target files by build time
7758 - CLEANUP: hlua: just indent functions
7759 - MINOR: lua: give HAProxy variable access to the applets
7760 - BUG/MINOR: stats: fix be/sessions/max output in html stats
7761 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
7762 - DOC: lua: Documentation about some entry missing
7763 - DOC: lua: Add documentation about variable manipulation from applet
7764 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
7765 - DOC: Add undocumented argument of the trace filter
7766 - DOC: Fix some typo in SPOE documentation
7767 - MINOR: cli: Remove useless call to bi_putchk
7768 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
7769 - MINOR: applet: Count number of (active) applets
7770 - MINOR: task: Rename run_queue and run_queue_cur counters
7771 - BUG/MEDIUM: stream: Save unprocessed events for a stream
7772 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
7773 - BUILD/MEDIUM: Fixing the build using LibreSSL
7774 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
7775 - SCRIPTS: git-show-backports: fix a harmless typo
7776 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
7777 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
7778 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
7779 - CLEANUP: applet/table: add an "action" entry in ->table context
7780 - CLEANUP: applet: remove the now unused appctx->private field
7781 - DOC: lua: documentation about time parser functions
7782 - DOC: lua: improve links
7783 - DOC: lua: section declared twice
7784 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
7785 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
7786 - BUG/MINOR: cli: "show cli sockets" would always report process 64
7787 - CLEANUP: lua: rename one of the lua appctx union
7788 - BUG/MINOR: lua/cli: bad error message
7789 - MEDIUM: lua: use memory pool for hlua struct in applets
7790 - MINOR: lua/signals: Remove Lua part from signals.
7791 - DOC: cli: show cli sockets
7792 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
7793 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
7794 - CLEANUP: applet: group all CLI contexts together
7795 - CLEANUP: stats: move a misplaced stats context initialization
7796 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
7797 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
7798 - MINOR: appctx/cli: remove the env entry from the appctx union
7799 - MINOR: appctx/cli: remove the "be" entry from the appctx union
7800 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
7801 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
7802 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
7803 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
7804 - MINOR/DOC: lua: just precise one thing
7805 - DOC: fix small typo in fe_id (backend instead of frontend)
7806 - BUG/MINOR: Fix the sending function in Lua's cosocket
7807 - BUG/MINOR: lua: memory leak executing tasks
7808 - BUG/MINOR: lua: bad return code
7809 - BUG/MINOR: lua: memleak when Lua/cli fails
7810 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
7811 - CLEANUP: haproxy: statify unexported functions
7812 - MINOR: haproxy: add a registration for build options
7813 - CLEANUP: wurfl: use the build options list to report it
7814 - CLEANUP: 51d: use the build options list to report it
7815 - CLEANUP: da: use the build options list to report it
7816 - CLEANUP: namespaces: use the build options list to report it
7817 - CLEANUP: tcp: use the build options list to report transparent modes
7818 - CLEANUP: lua: use the build options list to report it
7819 - CLEANUP: regex: use the build options list to report the regex type
7820 - CLEANUP: ssl: use the build options list to report the SSL details
7821 - CLEANUP: compression: use the build options list to report the algos
7822 - CLEANUP: auth: use the build options list to report its support
7823 - MINOR: haproxy: add a registration for post-check functions
7824 - CLEANUP: checks: make use of the post-init registration to start checks
7825 - CLEANUP: filters: use the function registration to initialize all proxies
7826 - CLEANUP: wurfl: make use of the late init registration
7827 - CLEANUP: 51d: make use of the late init registration
7828 - CLEANUP: da: make use of the late init registration code
7829 - MINOR: haproxy: add a registration for post-deinit functions
7830 - CLEANUP: wurfl: register the deinit function via the dedicated list
7831 - CLEANUP: 51d: register the deinitialization function
7832 - CLEANUP: da: register the deinitialization function
7833 - CLEANUP: wurfl: move global settings out of the global section
7834 - CLEANUP: 51d: move global settings out of the global section
7835 - CLEANUP: da: move global settings out of the global section
7836 - MINOR: cfgparse: add two new functions to check arguments count
7837 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
7838 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
7839 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
7840 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
7841 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
7842 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
7843 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
7844 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
7845 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
7846 - MINOR: tcp-rules: check that the listener exists before updating its counters
7847 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
7848 - MINOR: listener: move the transport layer pointer to the bind_conf
7849 - MEDIUM: move listener->frontend to bind_conf->frontend
7850 - MEDIUM: ssl: remote the proxy argument from most functions
7851 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
7852 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
7853 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
7854 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
7855 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
7856 - MINOR: connection: add a minimal transport layer registration system
7857 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
7858 - CLEANUP: connection: unexport raw_sock and ssl_sock
7859 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
7860 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
7861 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
7862 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
7863 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
7864 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
7865 - BUG/MINOR: systemd: potential zombie processes
7866 - DOC: Add timings events schemas
7867 - BUILD: lua: build failed on FreeBSD.
7868 - MINOR: samples: add xx-hash functions
7869 - MEDIUM: regex: pcre2 support
7870 - BUG/MINOR: option prefer-last-server must be ignored in some case
7871 - MINOR: stats: Support "select all" for backend actions
7872 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
7873 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
7874 - BUG/MINOR: http: report real parser state in error captures
7875 - BUILD: scripts: automatically update the branch in version.h when releasing
7876 - MINOR: tools: add a generic hexdump function for debugging
7877 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
7878 - MINOR: http: custom status reason.
7879 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
7880 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
7881 - BUG/MINOR: tools: fix off-by-one in port size check
7882 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
7883 - MEDIUM: server: split the address and the port into two different fields
7884 - MINOR: tools: make str2sa_range() return the port in a separate argument
7885 - MINOR: server: take the destination port from the port field, not the addr
7886 - MEDIUM: server: disable protocol validations when the server doesn't resolve
7887 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
7888 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
7889 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
7890 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
7891 - MINOR: proto_http.c 502 error txt typo.
7892 - DOC: add deprecation notice to "block"
7893 - MINOR: compression: fix -vv output without zlib/slz
7894 - BUG/MINOR: Reset errno variable before calling strtol(3)
7895 - MINOR: ssl: don't show prefer-server-ciphers output
7896 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
7897 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
7898 - MAJOR: ssl: bind configuration per certificat
7899 - MINOR: ssl: add curve suite for ECDHE negotiation
7900 - MINOR: checks: Add agent-addr config directive
7901 - MINOR: cli: Add possiblity to change agent config via CLI/socket
7902 - MINOR: doc: Add docs for agent-addr configuration variable
7903 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
7904 - BUILD: ssl: fix to build (again) with boringssl
7905 - BUILD: ssl: fix build on OpenSSL 1.0.0
7906 - BUILD: ssl: silence a warning reported for ERR_remove_state()
7907 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
7908 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
7909 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
7910 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
7911 - MINOR: server: extend the flags to 32 bits
7912 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
7913 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
7914 - BUG/MAJOR: dns: restart sockets after fork()
7915 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
7916 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
7917 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
7918 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
7919 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
7920 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
7921 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
7922 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
7923 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
7924 - MINOR: http: don't close when redirect location doesn't start with "/"
7925 - MEDIUM: boringssl: support native multi-cert selection without bundling
7926 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
7927 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
7928 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
7929 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
7930 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
7931 - MEDIUM: ssl: remove ssl-options from crt-list
7932 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
7933 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
7934 - MINOR: ssl: improved cipherlist captures
7935 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
7936 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
7937 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
7938 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
7939 - MINOR: spoe: Remove SPOE details from the appctx structure
7940 - MINOR: spoe: Add status code in error variable instead of hardcoded value
7941 - MINOR: spoe: Send a log message when an error occurred during event processing
7942 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
7943 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
7944 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
7945 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
7946 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
7947 - MAJOR: spoe: refactor the filter to clean up the code
7948 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
7949 - REORG: spoe: Move struct and enum definitions in dedicated header file
7950 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
7951 - MINOR: spoe: Improve implementation of the payload fragmentation
7952 - MINOR: spoe: Add support of negation for options in SPOE configuration file
7953 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
7954 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
7955 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
7956 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
7957 - DOC: spoe: Update SPOE documentation to reflect recent changes
7958 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
7959 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
7960 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
7961 - BUG/MINOR: Fix "get map <map> <value>" CLI command
7962 - MINOR: Add nbsrv sample converter
7963 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
7964 - MINOR: Add hostname sample fetch
7965 - CLEANUP: Remove comment that's no longer valid
7966 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
7967 - MINOR: http-request tarpit deny_status.
7968 - CLEANUP: http: make http_server_error() not set the status anymore
7969 - MEDIUM: stats: Add JSON output option to show (info|stat)
7970 - MEDIUM: stats: Add show json schema
7971 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
7972 - MINOR: server: Add dynamic session cookies.
7973 - MINOR: cli: Let configure the dynamic cookies from the cli.
7974 - BUG/MINOR: checks: attempt clean shutw for SSL check
7975 - CONTRIB: tcploop: make it build on FreeBSD
7976 - CONTRIB: tcploop: fix time format to silence build warnings
7977 - CONTRIB: tcploop: report action 'K' (kill) in usage message
7978 - CONTRIB: tcploop: fix connect's address length
7979 - CONTRIB: tcploop: use the trash instead of NULL for recv()
7980 - BUG/MEDIUM: listener: do not try to rebind another process' socket
7981 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
7982 - CLEANUP: config: Typo in comment.
7983 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
7984 - TESTS: add a test configuration to stress handshake combinations
7985 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
7986 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
7987 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
7988 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
7989 - BUG: payload: fix payload not retrieving arbitrary lengths
7990 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
7991 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
7992 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
7993 - MINOR: doc: 2.4. Examples should be 2.5. Examples
7994 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
7995 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
7996 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
7997 - OPTIM: poll: enable support for POLLRDHUP
7998 - MINOR: kqueue: exclusively rely on the kqueue returned status
7999 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
8000 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
8001 - DOC/MINOR: Fix typos in proxy protocol doc
8002 - DOC: Protocol doc: add checksum, TLV type ranges
8003 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
8004 - DOC: Protocol doc: add noop TLV
8005 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
8006 - MINOR: dns: improve DNS response parsing to use as many available records as possible
8007 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
8008 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
8009 - MINOR: server: Make 'default-server' support 'backup' keyword.
8010 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
8011 - CLEANUP: server: code alignement.
8012 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
8013 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
8014 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
8015 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
8016 - CLEANUP: server: code alignement.
8017 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
8018 - MINOR: server: Make 'default-server' support 'ssl' keyword.
8019 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
8020 - CLEANUP: server: code alignement.
8021 - MINOR: server: Make 'default-server' support 'verify' keyword.
8022 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
8023 - MINOR: server: Make 'default-server' support 'check' keyword.
8024 - MINOR: server: Make 'default-server' support 'track' setting.
8025 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
8026 - MINOR: server: Make 'default-server' support 'redir' keyword.
8027 - MINOR: server: Make 'default-server' support 'observe' keyword.
8028 - MINOR: server: Make 'default-server' support 'cookie' keyword.
8029 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
8030 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
8031 - MINOR: server: Make 'default-server' support 'namespace' keyword.
8032 - MINOR: server: Make 'default-server' support 'source' keyword.
8033 - MINOR: server: Make 'default-server' support 'sni' keyword.
8034 - MINOR: server: Make 'default-server' support 'addr' keyword.
8035 - MINOR: server: Make 'default-server' support 'disabled' keyword.
8036 - MINOR: server: Add 'no-agent-check' server keyword.
8037 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
8038 - MINOR: doc: fix use-server example (imap vs mail)
8039 - BUG/MEDIUM: tcp: don't require privileges to bind to device
8040 - BUILD: make the release script use shortlog for the final changelog
8041 - BUILD: scripts: fix typo in announce-release error message
8042 - CLEANUP: time: curr_sec_ms doesn't need to be exported
8043 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
8044 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
8045 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
8046 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
8047 - CLEANUP: http: Remove channel_congested function
8048 - CLEANUP: buffers: Remove buffer_bounce_realign function
8049 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
8050 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
8051 - MINOR: http: Add debug messages when HTTP body analyzers are called
8052 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
8053 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
8054 - DOC: fix parenthesis and add missing "Example" tags
8055 - DOC: update the contributing file
8056 - DOC: log-format/tcplog/httplog update
8057 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
8058
Willy Tarreau0e658fb2016-11-25 16:55:50 +010080592016/11/25 : 1.8-dev0
8060
Willy Tarreaue59fcdd2016-11-25 16:39:17 +010080612016/11/25 : 1.7.0
8062 - SCRIPTS: make publish-release also copy the new SPOE doc
8063 - BUILD: http: include types/sample.h in proto_http.h
8064 - BUILD: debug/flags: remove test for SF_COMP_READY
8065 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
8066 - MINOR: lua: add function which return true if the channel is full.
8067 - MINOR: lua: add ip addresses and network manipulation function
8068 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
8069 - CONTRIB: tcploop: implement fork()
8070 - CONTRIB: tcploop: implement logging when called with -v
8071 - CONTRIB: tcploop: update the usage output
8072 - CONTRIB: tcploop: support sending plain strings
8073 - CONTRIB: tcploop: don't report failed send() or recv()
8074 - CONTRIB: tcploop: add basic loops via a jump instruction
8075 - BUG/MEDIUM: channel: bad unlikely macro
8076 - CLEANUP: lua: move comment
8077 - CLEANUP: lua: control executed twice
8078 - BUG/MEDIUM: ssl: Store certificate filename in a variable
8079 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
8080 - CLEANUP: ssl: Remove goto after return dead code
8081 - CLEANUP: ssl: Fix bind keywords name in comments
8082 - DOC: ssl: Use correct wording for ca-sign-pass
8083 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
8084 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
8085 - MINOR: cli: add private pointer and release function
8086 - MEDIUM: lua: Add cli handler for Lua
8087 - BUG/MEDIUM: connection: check the control layer before stopping polling
8088 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
8089 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
8090 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
8091 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
8092 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
8093 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
8094 - MINOR: spoe: Remove useless 'timeout ack' option
8095 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
8096 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
8097 - MINOR: spoe: Add "option set-on-error" statement
8098 - MINOR: stats: correct documentation of process ID for typed output
8099 - BUILD: contrib: fix ip6range build on Centos 7
8100 - BUILD: fix build on Solaris 10/11
8101 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
8102 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
8103 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
8104 - MINOR: connection: add a few functions to report the data and xprt layers' names
8105 - MINOR: connection: add names for transport and data layers
8106 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
8107 - REORG: cli: split dumpstats.h in stats.h and cli.h
8108 - REORG: cli: move ssl CLI functions to ssl_sock.c
8109 - REORG: cli: move map and acl code to map.c
8110 - REORG: cli: move show stat resolvers to dns.c
8111 - MINOR: cli: create new function cli_has_level() to validate permissions
8112 - MINOR: server: create new function cli_find_server() to find a server
8113 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
8114 - REORG: cli: move 'set server' to server.c
8115 - REORG: cli: move 'show pools' to memory.c
8116 - REORG: cli: move 'show servers' to proxy.c
8117 - REORG: cli: move 'show sess' to stream.c
8118 - REORG: cli: move 'show backend' to proxy.c
8119 - REORG: cli: move get/set weight to server.c
8120 - REORG: cli: move "show stat" to stats.c
8121 - REORG: cli: move "show info" to stats.c
8122 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
8123 - REORG: cli: move table dump/clear/set to stick_table.c
8124 - REORG: cli: move "show errors" out of cli.c
8125 - REORG: cli: make "show env" also use the generic keyword registration
8126 - REORG: cli: move "set timeout" to its own handler
8127 - REORG: cli: move "clear counters" to stats.c
8128 - REORG: cli: move "set maxconn global" to its own handler
8129 - REORG: cli: move "set maxconn server" to server.c
8130 - REORG: cli: move "set maxconn frontend" to proxy.c
8131 - REORG: cli: move "shutdown sessions server" to stream.c
8132 - REORG: cli: move "shutdown session" to stream.c
8133 - REORG: cli: move "shutdown frontend" to proxy.c
8134 - REORG: cli: move "{enable|disable} frontend" to proxy.c
8135 - REORG: cli: move "{enable|disable} server" to server.c
8136 - REORG: cli: move "{enable|disable} health" to server.c
8137 - REORG: cli: move "{enable|disable} agent" to server.c
8138 - REORG: cli: move the "set rate-limit" functions to their own parser
8139 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
8140 - CLEANUP: cli: simplify the request parser a little bit
8141 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
8142 - BUILD: server: remove a build warning introduced by latest series
8143 - BUG/MINOR: log-format: uncatched memory allocation functions
8144 - CLEANUP: log-format: useless file and line in json converter
8145 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
8146 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
8147 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
8148 - CLEANUP: log-format: remove unused arguments
8149 - MEDIUM: log-format: strict parsing and enable fail
8150 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
8151 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
8152 - BUILD: vars: remove a build warning on vars.c
8153 - MINOR: lua: add utility function for check boolean argument
8154 - MINOR: lua: Add tokenize function.
8155 - BUG/MINOR: conf: calloc untested
8156 - MINOR: http/conf: store the use_backend configuration file and line for logs
8157 - MEDIUM: log-format: Use standard HAProxy log system to report errors
8158 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
8159 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
8160 - MINOR: cli: make "show stat" support a proxy name
8161 - MINOR: cli: make "show errors" support a proxy name
8162 - MINOR: cli: make "show errors" capable of dumping only request or response
8163 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
8164 - CLEANUP: counters: move from 3 types to 2 types
8165 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
8166 - REORG: tcp-rules: move tcp rules processing to their own file
8167 - REORG: stkctr: move all the stick counters processing to stick-tables.c
8168 - DOC: update the roadmap file with the latest changes
8169
Willy Tarreaud5d890b2016-11-09 23:18:17 +010081702016/11/09 : 1.7-dev6
8171 - DOC: fix the entry for hash-balance-factor config option
8172 - DOC: Fix typo in description of `-st` parameter in man page
8173 - CLEANUP: cfgparse: Very minor spelling correction
8174 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
8175 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
8176 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
8177 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
8178 - MINOR: peers: remove the pointer to the stream
8179 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
8180 - DOC: stats: provide state details for show servers state
8181 - MEDIUM: tools: make str2ip2() preserve existing ports
8182 - CLEANUP: tools: make ipcpy() preserve the original port
8183 - OPTIM: http: move all http character classs tables into a single one
8184 - OPTIM: http: improve parsing performance of long header lines
8185 - OPTIM: http: improve parsing performance of long URIs
8186 - OPTIM: http: optimize lookup of comma and quote in header values
8187 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
8188 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
8189 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
8190 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
8191 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
8192 - DOC: move the device detection modules documentation to their own files
8193 - CLEANUP: wurfl: reduce exposure in the rest of the code
8194 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
8195 - MINOR: stream: make option contstats usable again
8196 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
8197 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
8198 - MAJOR: server: postpone address resolution
8199 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
8200 - MINOR: server: indicate in the logs when RMAINT is cleared
8201 - MINOR: stats: indicate it when a server is down due to resolution
8202 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
8203 - MINOR: dns: implement extra 'hold' timers.
8204 - MAJOR: dns: runtime resolution can change server admin state
8205 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
8206 - MEDIUM: server: add a new init-addr server line setting
8207 - MEDIUM: server: make use of init-addr
8208 - MINOR: server: implement init-addr none
8209 - MEDIUM: server: make libc resolution failure non-fatal
8210 - MINOR: server: add support for explicit numeric address in init-addr
8211 - DOC: add some documentation for the "init-addr" server keyword
8212 - MINOR: init: add -dr to ignore server address resolution failures
8213 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
8214 - BUG: vars: Fix 'set-var' converter because of a typo
8215 - CLEANUP: remove last references to 'ruleset' section
8216 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
8217 - MINOR: filters: Update filters documentation accordingly to recent changes
8218 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
8219 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
8220 - MINOR: flt_trace: Add hexdump option to dump forwarded data
8221 - MINOR: cfgparse: Add functions to backup and restore registered sections
8222 - MINOR: cfgparse: Parse scope lines and save the last one parsed
8223 - REORG: sample: move code to release a sample expression in sample.c
8224 - MINOR: vars: Allow '.' in variable names
8225 - MINOR: vars: Add vars_set_by_name_ifexist function
8226 - MEDIUM: vars: Add a per-process scope for variables
8227 - MINOR: vars: Add 'unset-var' action/converter
8228 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
8229 - MINOR: spoe: add random ip-reputation service as SPOA example
8230 - MINOR: spoe/checks: Add support for SPOP health checks
8231 - DOC: update ROADMAP file
8232
Willy Tarreau608efa12016-10-25 22:22:00 +020082332016/10/25 : 1.7-dev5
8234 - MINOR: cfgparse: few memory leaks fixes.
8235 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
8236 - CLEANUP: logs: remove unused log format field definitions
8237 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
8238 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
8239 - CLEANUP: proto_http: Removing useless variable assignation
8240 - CLEANUP: dumpstats: Removing useless variables allocation
8241 - CLEANUP: dns: Removing usless variable & assignation
8242 - BUG/MINOR: payload: fix SSLv2 version parser
8243 - MINOR: cli: allow the semi-colon to be escaped on the CLI
8244 - MINOR: cli: change a server health check port through the stats socket
8245 - BUG/MINOR: Fix OSX compilation errors
8246 - MAJOR: check: find out which port to use for health check at run time
8247 - MINOR: server: introduction of 3 new server flags
8248 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
8249 - MINOR: cli: ability to change a server's port
8250 - CLEANUP/MINOR dns: comment do not follow up code update
8251 - MINOR: chunk: new strncat function
8252 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
8253 - MINOR: dns: new MAX values
8254 - MINOR: dns: new macro to compute DNS header size
8255 - MINOR: dns: new DNS structures to store received packets
8256 - MEDIUM: dns: new DNS response parser
8257 - MINOR: dns: query type change when last record is a CNAME
8258 - MINOR: dns: proper domain name validation when receiving DNS response
8259 - MINOR: dns: comments in types/dns.h about structures endianness
8260 - BUG/MINOR: displayed PCRE version is running release
8261 - MINOR: show Built with PCRE version
8262 - MINOR: show Running on zlib version
8263 - MEDIUM: make SO_REUSEPORT configurable
8264 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
8265 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
8266 - BUG/MINOR: stats: report the correct conn_time in backend's html output
8267 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
8268 - MINOR: Add fe_req_rate sample fetch
8269 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
8270 - MEDIUM: cli: register CLI keywords with cli_register_kw()
8271 - BUILD: Make use of accept4() on OpenBSD.
8272 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
8273 - DOC: fix missed entry for "set-{src,dst}{,-port}"
8274 - BUG/MINOR: vars: use sess and not s->sess in action_store()
8275 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
8276 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
8277 - MINOR: stats: output dcon
8278 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
8279 - MINOR: counters: add new fields for denied_sess
8280 - MEDIUM: tcp: add registration and processing of TCP L5 rules
8281 - MINOR: stats: emit dses
8282 - DOC: document tcp-request session
8283 - MINOR: ssl: add debug traces
8284 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
8285 - BUG/MINOR: ssl: Check malloc return code
8286 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
8287 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
8288 - BUG/MINOR: systemd: always restore signals before execve()
8289 - BUG/MINOR: systemd: check return value of calloc()
8290 - MINOR: systemd: report it when execve() fails
8291 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
8292 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
8293 - MINOR: backend: add hash-balance-factor option for hash-type consistent
8294 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
8295 - MEDIUM: server: Implement bounded-load hash algorithm
8296 - SCRIPTS: make git-show-backports also dump a "git show" command
8297 - MINOR: build: Allow linking to device-atlas library file
8298 - MINOR: stats: Escape equals sign on socket dump
8299
Willy Tarreau41d5e3a2016-08-14 12:25:21 +020083002016/08/14 : 1.7-dev4
8301 - MINOR: add list_append_word function
8302 - MEDIUM: init: use list_append_word in haproxy.c
8303 - MEDIUM: init: allow directory as argument of -f
8304 - CLEANUP: config: detect double registration of a config section
8305 - MINOR: log: add the %Td log-format specifier
8306 - MEDIUM: filters: Move HTTP headers filtering in its own callback
8307 - MINOR: filters: Simplify calls to analyzers using 2 new macros
8308 - MEDIUM: filters: Add pre and post analyzer callbacks
8309 - DOC: filters: Update the filters documentation accordingly to recent changes
8310 - BUG/MEDIUM: init: don't use environment locale
8311 - SCRIPTS: teach git-show-backports how to report upstream commits
8312 - SCRIPTS: make git-show-backports capable of limiting its history
8313 - BUG/MAJOR: fix listening IP address storage for frontends
8314 - BUG/MINOR: fix listening IP address storage for frontends (cont)
8315 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
8316 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
8317 - BUG/MEDIUM: stick-tables: fix breakage in table converters
8318 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
8319 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
8320 - BUILD: fix build on Solaris 11
8321 - BUG/MEDIUM: config: fix multiple declaration of section parsers
8322 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
8323 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
8324 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
8325 - DOC: update doc about tls-tickets-keys dump
8326 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
8327 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
8328 - MEDIUM: tcp/http: add 'set-src-port' action
8329 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
8330 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
8331 - BUILD/MEDIUM: rebuild everything when an include file is changed
8332 - BUILD/MEDIUM: force a full rebuild if some build options change
8333 - BUG/MEDIUM: lua: converters doesn't work
8334 - BUG/MINOR: http: add-header: header name copied twice
8335 - BUG/MEDIUM: http: add-header: buffer overwritten
8336 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
8337 - MINOR: stream: export the function 'smp_create_src_stkctr'
8338 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
8339 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
8340 - BUG/MINOR: http: url32+src should use the big endian version of url32
8341 - BUG/MINOR: http: url32+src should check cli_conn before using it
8342 - DOC: http: add documentation for url32 and url32+src
8343 - BUG/MINOR: fix http-response set-log-level parsing error
8344 - MINOR: systemd: Use variable for config and pidfile paths
8345 - MINOR: systemd: Perform sanity check on config before reload
8346 - MEDIUM: ssl: support SNI filters with multicerts
8347 - MINOR: ssl: crt-list parsing factor
8348 - BUILD: ssl: fix typo causing a build failure in the multicert patch
8349 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
8350 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
8351 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
8352 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
8353 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
8354 - BUG/MAJOR: external-checks: use asynchronous signal delivery
8355 - BUG/MINOR: external-checks: do not unblock undesired signals
8356 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
8357 - BUG/MEDIUM: filters: Fix data filtering when data are modified
8358 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
8359 - BUG/MINOR: srv-state: fix incorrect output of state file
8360 - BUG/MINOR: ssl: close ssl key file on error
8361 - BUG/MINOR: http: fix misleading error message for response captures
8362 - BUG/BUILD: don't automatically run "make" on "make install"
8363 - DOC: add missing doc for http-request deny [deny_status <status>]
8364 - CLEANUP: dumpstats: u64 field is an unsigned type.
8365 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
8366 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
8367 - MINOR: new function my_realloc2 = realloc + free upon failure
8368 - CLEANUP: fixed some usages of realloc leading to memory leak
8369 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
8370 - CLEANUP: connection: using internal struct to hold source and dest port.
8371 - DOC: spelling fixes
8372 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
8373 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
8374 - BUG/MINOR: Fix endiness issue in DNS header creation code
8375 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
8376 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
8377 - MEDIUM: http: implement http-response track-sc* directive
8378 - BUG/MINOR: peers: Fix peers data decoding issue
8379 - BUG/MINOR: peers: don't count track-sc multiple times on errors
8380 - MINOR: standard: add function "escape_string"
8381 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
8382 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
8383 - DOC: lua: remove old functions
8384 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
8385 - DOC: fix json converter example and error message
8386 - BUG/MEDIUM: stream-int: completely detach connection on connect error
8387 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
8388 - BUILD: make proto_tcp.c compatible with musl library
8389 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
8390 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
8391 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
8392 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
8393 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
8394 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
8395 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
8396 - MINOR: sample: use smp_make_rw() in upper/lower converters
8397 - MINOR: tcp: add dst_is_local and src_is_local
8398 - BUG/MINOR: peers: some updates are pushed twice after a resync.
8399 - BUILD: protocol: fix some build errors on OpenBSD
8400 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
8401 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
8402 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
8403 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
8404 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
8405 - BUILD: compression: remove a warning when no compression lib is used
8406 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
8407 - MINOR: tcp: add further tcp info fetchers
8408 - BUG/MINOR: peers: empty chunks after a resync.
8409 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
8410 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
8411 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
8412 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
8413
Willy Tarreau7d1b48f2016-05-10 15:36:58 +020084142016/05/10 : 1.7-dev3
8415 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
8416 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
8417 - BUILD: namespaces: fix a potential build warning in namespaces.c
8418 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
8419 - DOC: add encoding to json converter example
8420 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
8421 - DOC: Clarify tunes.vars.xxx-max-size settings
8422 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
8423 - CLEANUP: connection: fix double negation on memcmp()
8424 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
8425 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
8426 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
8427 - BUG/MINOR: lua: can't load external libraries
8428 - BUG/MINOR: prevent the dump of uninitialized vars
8429 - CLEANUP: map: it seems that the map were planed to be chained
8430 - MINOR: lua: move class registration facilities
8431 - MINOR: lua: remove some useless checks
8432 - CLEANUP: lua: Remove two same functions
8433 - MINOR: lua: refactor the Lua object registration
8434 - MINOR: lua: precise message when a critical error is catched
8435 - MINOR: lua: post initialization
8436 - MINOR: lua: Add internal function which strip spaces
8437 - MINOR: lua: convert field to lua type
8438 - DOC: "addr" parameter applies to both health and agent checks
8439 - DOC: timeout client: pointers to timeout http-request
8440 - DOC: typo on stick-store response
8441 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
8442 - DOC: typo: ACL subdir match
8443 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
8444 - DOC: regsub: parser limitation about the inability to use closing square brackets
8445 - DOC: typo: req.uri is now replaced by capture.req.uri
8446 - DOC: name set-gpt0 mismatch with the expected keyword
8447 - MINOR: http: sample fetch which returns unique-id
8448 - MINOR: dumpstats: extract stats fields enum and names
8449 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
8450 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
8451 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
8452 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
8453 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
8454 - MINOR: lua: dump general info
8455 - MINOR: lua: add class proxy
8456 - MINOR: lua: add class server
8457 - MINOR: lua: add class listener
8458 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
8459 - MEDIUM: proxy: use dynamic allocation for error dumps
8460 - CLEANUP: remove unneeded casts
8461 - CLEANUP: uniformize last argument of malloc/calloc
8462 - DOC: fix "needed" typo
8463 - BUG/MINOR: dumpstats: fix write to global chunk
8464 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
8465 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
8466 - CLEANUP: proto_http: few corrections for gcc warnings.
8467 - BUG/MINOR: DNS: resolution structure change
8468 - BUG/MINOR : allow to log cookie for tarpit and denied request
8469 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
8470 - OPTIM/MINOR: session: abort if possible before connecting to the backend
8471 - DOC: http: rename the unique-id sample and add the documentation
8472 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
8473 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
8474 - BUG/MINOR: server: risk of over reading the pref_net array.
8475 - BUG/MINOR: cfgparse: couple of small memory leaks.
8476 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
8477 - DOC: fix discrepancy in the example for http-request redirect
8478 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
8479 - CLEANUP: .gitignore cleanup
8480 - DOC: Clarify IPv4 address / mask notation rules
8481 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
8482 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
8483 - BUG/MINOR: listener: stop unbound listeners on startup
8484 - BUG/MINOR: fix maxaccept computation according to the frontend process range
8485 - TESTS: add blocksig.c to run tests with all signals blocked
8486 - MEDIUM: unblock signals on startup.
8487 - MINOR: filters: Print the list of existing filters during HA startup
8488 - MINOR: filters: Typo in an error message
8489 - MINOR: filters: Filters must define the callbacks struct during config parsing
8490 - DOC: filters: Add filters documentation
8491 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
8492 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
8493 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
8494 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
8495 - MINOR: Add ability for agent-check to set server maxconn
8496 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
8497 - MINOR: filters: add opaque data
8498 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
8499 - MINOR: lua: migrate the argument mask to 64 bits type.
8500 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
8501 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
8502 - BUG/MEDIUM: http: fix incorrect reporting of server errors
8503 - MINOR: channel: add new function channel_congested()
8504 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
8505 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
8506 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
8507 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
8508 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
8509 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
8510 - MINOR: stats: fix typo in help messages
8511 - MINOR: stats: show stat resolvers missing in the help message
8512 - BUG/MINOR: dns: fix DNS header definition
8513 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
8514 - CLEANUP: don't ignore scripts in .gitignore
8515 - BUILD: add a few release and backport scripts in scripts/
8516
Willy Tarreau8234f6d2016-03-14 00:10:05 +010085172016/03/14 : 1.7-dev2
8518 - DOC: lua: fix lua API
8519 - DOC: mailers: typo in 'hostname' description
8520 - DOC: compression: missing mention of libslz for compression algorithm
8521 - BUILD/MINOR: regex: missing header
8522 - BUG/MINOR: stream: bad return code
8523 - DOC: lua: fix somme errors and add implicit types
8524 - MINOR: lua: add set/get priv for applets
8525 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
8526 - BUG/MINOR: http: Be sure to process all the data received from a server
8527 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
8528 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
8529 - DOC: ssl: fixed some formatting errors in crt tag
8530 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
8531 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
8532 - MINOR: chunk: make chunk_initstr() take a const string
8533 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
8534 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
8535 - MINOR: lru: new function to delete <nb> least recently used keys
8536 - DOC: add Ben Shillito as the maintainer of 51d
8537 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
8538 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
8539 - BUG/MINOR: 51d: Releases workset back to pool.
8540 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
8541 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
8542 - MINOR: rename master process name in -Ds (systemd mode)
8543 - DOC: fix a few spelling mistakes
8544 - DOC: fix "workaround" spelling
8545 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
8546 - MINOR: fix the return type for dns_response_get_query_id() function
8547 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
8548 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
8549 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
8550 - BUG/MEDIUM: servers state: server port is used uninitialized
8551 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
8552 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
8553 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
8554 - MEDIUM: pools: add a new flag to avoid rounding pool size up
8555 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
8556 - BUG/MINOR: stream: don't force retries if the server is DOWN
8557 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
8558 - MINOR: unix: don't mention free ports on EAGAIN
8559 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
8560 - MINOR: stats: send content-length with the redirect to allow keep-alive
8561 - BUG: stream_interface: Reuse connection even if the output channel is empty
8562 - DOC: remove old tunnel mode assumptions
8563 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
8564 - BUG/MEDIUM: http-reuse: do not share private connections across backends
8565 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
8566 - BUG/MINOR: stats: fix missing comma in stats on agent drain
8567 - MAJOR: filters: Add filters support
8568 - MINOR: filters: Do not reset stream analyzers if the client is gone
8569 - REORG: filters: Prepare creation of the HTTP compression filter
8570 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
8571 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
8572 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
8573 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
8574 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
8575 - MINOR: filters: Add stream_filters structure to hide filters info
8576 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
8577 - MINOR: filters: Remove unused or useless stuff and do small optimizations
8578 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
8579 - MINOR: filters/http: Slightly update the parsing of chunks
8580 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
8581 - MINOR: filters: Add an filter example
8582 - MINOR: filters: Extract proxy stuff from the struct filter
8583 - MINOR: map: Add regex matching replacement
8584 - BUG/MINOR: lua: unsafe initialization
8585 - DOC: lua: fix somme errors
8586 - MINOR: lua: file dedicated to unsafe functions
8587 - MINOR: lua: add "now" time function
8588 - MINOR: standard: add RFC HTTP date parser
8589 - MINOR: lua: Add date functions
8590 - MINOR: lua: move common function
8591 - MINOR: lua: merge function
8592 - MINOR: lua: Add concat class
8593 - MINOR: standard: add function "escape_chunk"
8594 - MEDIUM: log: add a new log format flag "E"
8595 - DOC: add server name at rate-limit sessions example
8596 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
8597 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
8598 - DOC: LUA: fix some typos and syntax errors
8599 - MINOR: cli: add a new "show env" command
8600 - MEDIUM: config: allow to manipulate environment variables in the global section
8601 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
8602 - MINOR: mailers: increase default timeout to 10 seconds
8603 - MINOR: mailers: use <CRLF> for all line endings
8604 - BUG/MAJOR: lua: segfault using Concat object
8605 - DOC: lua: copyrights
8606 - MINOR: common: mask conversion
8607 - MEDIUM: dns: extract options
8608 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
8609 - MINOR: mailers: make it possible to configure the connection timeout
8610 - BUG/MAJOR: lua: applets can't sleep.
8611 - BUG/MINOR: server: some prototypes are renamed
8612 - BUG/MINOR: lua: Useless copy
8613 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
8614 - BUG/MINOR: server: fix the format of the warning on address change
8615 - CLEANUP: server: add "const" to some message strings
8616 - MINOR: server: generalize the "updater" source
8617 - BUG/MEDIUM: chunks: always reject negative-length chunks
8618 - BUG/MINOR: systemd: ensure we don't miss signals
8619 - BUG/MINOR: systemd: report the correct signal in debug message output
8620 - BUG/MINOR: systemd: propagate the correct signal to haproxy
8621 - MINOR: systemd: ensure a reload doesn't mask a stop
8622 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
8623 - CLEANUP: stats: Avoid computation with uninitialized bits.
8624 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
8625 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
8626 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
8627 - BUG/MAJOR: samples: check smp->strm before using it
8628 - MINOR: sample: add a new helper to initialize the owner of a sample
8629 - MINOR: sample: always set a new sample's owner before evaluating it
8630 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
8631 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
8632 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
8633 - MINOR: stats: create fields types suitable for all CSV output data
8634 - MINOR: stats: add all the "show info" fields in a table
8635 - MEDIUM: stats: fill all the show info elements prior to displaying them
8636 - MINOR: stats: add a function to emit fields into a chunk
8637 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
8638 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
8639 - MINOR: stats: add a declaration of all stats fields
8640 - MINOR: stats: don't hard-code the CSV fields list anymore
8641 - MINOR: stats: create stats fields storage and CSV dump function
8642 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
8643 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
8644 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
8645 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
8646 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
8647 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
8648 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
8649 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
8650 - MEDIUM: stats: move the server state coloring logic to the server dump function
8651 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
8652 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
8653 - MINOR: stats: make CSV report server check status only when enabled
8654 - MINOR: stats: only report backend's down time if it has servers
8655 - MINOR: stats: prepend '*' in front of the check status when in progress
8656 - MINOR: stats: make HTML stats dump rely on the table for the check status
8657 - MINOR: stats: add agent_status, agent_code, agent_duration to output
8658 - MINOR: stats: add check_desc and agent_desc to the output fields
8659 - MINOR: stats: add check and agent's health values in the output
8660 - MEDIUM: stats: make the HTML server state dump use the CSV states
8661 - MEDIUM: stats: only report observe errors when observe is set
8662 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
8663 - MEDIUM: stats: report server's address in the CSV output
8664 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
8665 - MEDIUM: stats: compute the color code only in the HTML form
8666 - MEDIUM: stats: report the listeners' address in the CSV output
8667 - MEDIUM: stats: make it possible to report the WAITING state for listeners
8668 - REORG: stats: dump the frontend's HTML stats via a generic function
8669 - REORG: stats: dump the socket stats via the generic function
8670 - REORG: stats: dump the server stats via the generic function
8671 - REORG: stats: dump the backend stats via the generic function
8672 - MEDIUM: stats: add a new "mode" column to report the proxy mode
8673 - MINOR: stats: report the load balancing algorithm in CSV output
8674 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
8675 - MINOR: stats: report number of intercepted requests for frontend and backends
8676 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
8677 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
8678 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
8679 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
8680 - MINOR: stats: add functions to emit typed fields into a chunk
8681 - MEDIUM: stats: support "show info typed" on the CLI
8682 - MEDIUM: stats: implement a typed output format for stats
8683 - DOC: document the "show info typed" and "show stat typed" output formats
8684 - MINOR: cfgparse: warn when uid parameter is not a number
8685 - MINOR: cfgparse: warn when gid parameter is not a number
8686 - BUG/MINOR: standard: Avoid free of non-allocated pointer
8687 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
8688 - CLEANUP: http: fix a build warning introduced by a recent fix
8689 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
8690
Willy Tarreaucb928252015-12-20 23:33:18 +010086912015/12/20 : 1.7-dev1
8692 - DOC: specify that stats socket doc (section 9.2) is in management
8693 - BUILD: install only relevant and existing documentation
8694 - CLEANUP: don't ignore debian/ directory if present
8695 - BUG/MINOR: dns: parsing error of some DNS response
8696 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
8697 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
8698 - MEDIUM: dns: Don't use the ANY query type
8699 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
8700 - DOC: fix a typo for a "deviceatlas" keyword
8701 - FIX: small typo in an example using the "Referer" header
8702 - MINOR: cli: ability to set per-server maxconn
8703 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
8704 - DEBUG/MEDIUM: memory: optionally protect free data in pools
8705 - DEBUG/MEDIUM: memory: add optional control pool memory operations
8706 - MEDIUM: memory: add accounting for failed allocations
8707 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
8708 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
8709 - BUG/MINOR: dns: unable to parse CNAMEs response
8710 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
8711 - DOC: deviceatlas: more example use cases.
8712 - MINOR: config: allow IPv6 bracketed literals
8713 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
8714 - BUILD: add Haiku as supported target.
8715 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
8716 - DOC: typo on capture.res.hdr and capture.req.hdr
8717 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
8718 - CLEANUP: use direction names in place of numeric values
8719 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
8720 - MINOR: check: add agent-send server parameter
8721 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
8722 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
8723 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
8724 - BUILD: freebsd: double declaration
8725 - BUG/MEDIUM: lua: clean output buffer
8726 - BUILD: check for libressl to be able to build against it
8727 - DOC: lua-api/index.rst small example fixes, spelling correction.
8728 - DOC: lua: architecture and first steps
8729 - DOC: relation between timeout http-request and option http-buffer-request
8730 - BUILD: Make deviceatlas require PCRE
8731 - BUG: http: do not abort keep-alive connections on server timeout
8732 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
8733 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
8734 - BUILD/MINOR: http: proto_http.h needs sample.h
8735 - BUG/MEDIUM: http: don't enable auto-close on the response side
8736 - BUG/MEDIUM: stream: fix half-closed timeout handling
8737 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
8738 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
8739 - BUG/MEDIUM: sample: urlp can't match an empty value
8740 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
8741 - CLEANUP: proxy: calloc call inverted arguments
8742 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
8743 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
8744 - DOC: Edited 51Degrees section of README/
8745 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
8746 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
8747 - BUG/MINOR: checks: typo in an email-alert error message
8748 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
8749 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
8750 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
8751 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
8752 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
8753 - MINOR: ssl: Added cert_key_and_chain struct
8754 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
8755 - MINOR: ssl: Added multi cert support for crt-list config keyword
8756 - MEDIUM: ssl: Added multi cert support for loading crt directories
8757 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
8758 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
8759 - MINOR: config: make tune.recv_enough configurable
8760 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
8761 - DOC: ssl: Adding docs for Multi-Cert bundling
8762 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
8763 - BUG/MEDIUM: peers: old stick table updates could be repushed.
8764 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
8765 - REORG/MINOR: lua: convert boolean "int" to bitfield
8766 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
8767 - BUG/MINOR: lua: Lua applets must not use http_txn
8768 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
8769 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
8770 - CLEANUP: lua: bad error messages
8771 - CONTRIB: initiate a debugging suite to make debugging easier
8772
Willy Tarreau991b4782015-10-13 21:48:10 +020087732015/10/13 : 1.7-dev0
8774 - exact copy of 1.6.0
8775
Willy Tarreau844028b2015-10-13 18:52:22 +020087762015/10/13 : 1.6.0
8777 - BUG/MINOR: Handle interactive mode in cli handler
8778 - DOC: global section missing parameters
8779 - DOC: backend section missing parameters
8780 - DOC: stats paramaters available in frontend
8781 - MINOR: lru: do not allocate useless memory in lru64_lookup
8782 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
8783 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
8784 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
8785 - MINOR: ssl: Read the file used to generate certificates in any order
8786 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
8787 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
8788 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
8789 - BUILD: Fix the build on OSX (htonll/ntohll)
8790 - BUILD: enable build on Linux/s390x
8791 - BUG/MEDIUM: lua: direction test failed
8792 - MINOR: lua: fix a spelling error in some error messages
8793 - CLEANUP: cli: ensure we can never double-free error messages
8794 - BUG/MEDIUM: lua: force server-close mode on Lua services
8795 - MEDIUM: init: support more command line arguments after pid list
8796 - MEDIUM: init: support a list of files on the command line
8797 - MINOR: debug: enable memory poisonning to use byte 0
8798 - BUILD: ssl: fix build error introduced by recent commit
8799 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
8800 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
8801 - DOC: mention the "namespace" options for bind and server lines
8802 - DOC: add the "management" documentation
8803 - DOC: move the stats socket documentation from config to management
8804 - MINOR: examples: update haproxy.spec to mention new docs
8805 - DOC: mention management.txt in README
8806 - DOC: remove haproxy-{en,fr}.txt
8807 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
8808 - MINOR: init: report use of libslz instead of "no compression"
8809 - CLEANUP: examples: remove some obsolete and confusing files
8810 - CLEANUP: examples: remove obsolete configuration file samples
8811 - CLEANUP: examples: fix the example file content-sw-sample.cfg
8812 - CLEANUP: examples: update sample file option-http_proxy.cfg
8813 - CLEANUP: examples: update sample file ssl.cfg
8814 - CLEANUP: tests: move a test file from examples/ to tests/
8815 - CLEANUP: examples: shut up warnings in transparent proxy example
8816 - CLEANUP: tests: removed completely obsolete test files
8817 - DOC: update ROADMAP to remove what was done in 1.6
8818 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
8819
Willy Tarreau8c1ad712015-10-06 12:13:56 +020088202015/10/06 : 1.6-dev7
8821 - MINOR: cli: Dump all resolvers stats if no resolver section is given
8822 - BUG: config: external-check command validation is checking for incorrect arguments.
8823 - DOC: documentation format cleanups
8824 - DOC: lua: few typos.
8825 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
8826 - BUG/MEDIUM: logs: segfault writing to log from Lua
8827 - DOC: fix lua use-service example
8828 - MINOR: payload: add support for tls session ticket ext
8829 - MINOR: lua: remove the run flag
8830 - MEDIUM: lua: change the timeout execution
8831 - MINOR: lua: rename the tune.lua.applet-timeout
8832 - DOC: lua: update Lua doc
8833 - DOC: lua: update doc according with the last Lua changes
8834 - MINOR: http/tcp: fill the avalaible actions
8835 - DOC: reorder misplaced res.ssl_hello_type in the doc
8836 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
8837 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
8838 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
8839 - BUILD: server: fix build warnings introduced by load-server-state
8840 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
8841
Willy Tarreaue7ae6562015-09-28 23:46:27 +020088422015/09/28 : 1.6-dev6
8843 - BUG/MAJOR: can't enable a server through the stat socket
8844 - MINOR: server: Macro definition for server-state
8845 - MINOR: cli: new stats socket command: show servers state
8846 - DOC: stats socket command: show servers state
8847 - MINOR: config: new global directive server-state-base
8848 - DOC: global directive server-state-base
8849 - MINOR: config: new global section directive: server-state-file
8850 - DOC: new global directive: server-state-file
8851 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
8852 - DOC: load-server-state-from-file
8853 - MINOR: init: server state loaded from file
8854 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
8855 - MINOR: cli: new stats socket command: show backend
8856 - DOC: servers state seamless reload example
8857 - BUG: dns: can't connect UDP socket on FreeBSD
8858 - MINOR: cfgparse: New function cfg_unregister_sections()
8859 - MINOR: chunk: New function free_trash_buffers()
8860 - BUG/MEDIUM: main: Freeing a bunch of static pointers
8861 - MINOR: proto_http: Externalisation of previously internal functions
8862 - MINOR: global: Few new struct fields for da module
8863 - MAJOR: da: Update of the DeviceAtlas API module
8864 - DOC: DeviceAtlas new keywords
8865 - DOC: README: DeviceAtlas sample configuration updates
8866 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
8867 - MEDIUM: log: use a separate buffer for the header and for the message
8868 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
8869 - MEDIUM: logs: add support for RFC5424 header format per logger
8870 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
8871 - DOC: mention support for the RFC5424 syslog message format
8872 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
8873 - MEDIUM: logs: pass the trailing "\n" as an iovec
8874 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
8875 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
8876 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
8877 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
8878 - MINOR: global: Added new fields for 51Degrees device detection
8879 - DOC: Added more explanation for 51Degrees V3.2
8880 - BUILD: Changed 51Degrees option to support V3.2
8881 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
8882 - MINOR: 51d: Improved string handling for LRU cache
8883 - DOC: add references to rise/fall for the fastinter explanation
8884 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
8885 - BUG/MAJOR: lua: potential unexpected aborts()
8886 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
8887 - MINOR: action: add private configuration
8888 - MINOR: action: add reference to the original keywork matched for the called parser.
8889 - MINOR: lua: change actions registration
8890 - MEDIUM: proto_http: smp_prefetch_http initialize txn
8891 - MINOR: channel: rename function chn_sess to chn_strm
8892 - CLEANUP: lua: align defines
8893 - MINOR: http: export http_get_path() function
8894 - MINOR: http: export the get_reason() function
8895 - MINOR: http: export function http_msg_analyzer()
8896 - MINOR: http: split initialization
8897 - MINOR: lua: reset pointer after use
8898 - MINOR: lua: identify userdata objects
8899 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
8900 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
8901 - CLEANUP: lua: use calloc in place of malloc
8902 - BUG/MEDIUM: lua: longjmp function must be unregistered
8903 - BUG/MEDIUM: lua: forces a garbage collection
8904 - BUG/MEDIUM: lua: wakeup task on bad conditions
8905 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
8906 - MINOR: lua: extend socket address to support non-IP families
8907 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
8908 - BUG/MEDIUM: lua: socket destroy before reading pending data
8909 - MEDIUM: lua: change the GC policy
8910 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
8911 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
8912 - MINOR: applet: add init function
8913 - MINOR: applet: add an execution timeout
8914 - MINOR: stream/applet: add use-service action
8915 - MINOR: lua: add AppletTCP class and service
8916 - MINOR: lua: add AppletHTTP class and service
8917 - DOC: lua: some documentation update
8918 - DOC: add the documentation about internal circular lists
8919 - DOC: add a CONTRIBUTING file
8920 - DOC: add a MAINTAINERS file
8921 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
8922 - DOC: update coding-style to reference checkpatch.pl
8923 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
8924 - BUG/MINOR: args: add name for ARGT_VAR
8925 - DOC: add more entries to MAINTAINERS
8926 - DOC: add more entries to MAINTAINERS
8927 - CLEANUP: stream-int: remove obsolete function si_applet_call()
8928 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
8929 - BUG/MEDIUM: http: do not dereference strm_li(stream)
8930 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
8931 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
8932 - MINOR: stream-int: use si_release_endpoint() to close idle conns
8933 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
8934 - BUG/MEDIUM: acl: always accept match "found"
8935 - MINOR: applet: rename applet_runq to applet_active_queue
8936 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
8937 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
8938 - MINOR: stream-int: implement a new stream_int_update() function
8939 - MEDIUM: stream-int: factor out the stream update functions
8940 - MEDIUM: stream-int: call stream_int_update() from si_update()
8941 - MINOR: stream-int: export stream_int_update_*
8942 - MINOR: stream-int: move the applet_pause call out of the stream updates
8943 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
8944 - MINOR: stream-int: implement the stream_int_notify() function
8945 - MEDIUM: stream-int: use the same stream notification function for applets and conns
8946 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
8947 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
8948 - BUG/MEDIUM: applet: fix reporting of broken write situation
8949 - BUG/MINOR: stats: do not call cli_release_handler 3 times
8950 - BUG/MEDIUM: cli: properly handle closed output
8951 - MINOR: cli: do not call the release handler on internal error.
8952 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
8953 - DEBUG: add p_malloc() to return a poisonned memory area
8954 - CLEANUP: lua: remove unneeded memset(0) after calloc()
8955 - MINOR: lua: use the proper applet wakeup mechanism
8956 - BUG/MEDIUM: lua: better fix for the protocol check
8957 - BUG/MEDIUM: lua: properly set the target on the connection
8958 - MEDIUM: actions: pass a new "flags" argument to custom actions
8959 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
8960 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
8961 - MEDIUM: lua: only allow actions to yield if not in a final call
8962 - DOC: clarify how to make use of abstract sockets in socat
8963 - CLEANUP: config: make the errorloc/errorfile messages less confusing
8964 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
8965 - BUG/MINOR: config: check that tune.bufsize is always positive
8966 - MEDIUM: config: set tune.maxrewrite to 1024 by default
8967 - DOC: add David Carlier as maintainer of da.c
8968 - DOC: fix some broken unexpected unicode chars in the Lua doc.
8969 - BUG/MEDIUM: proxy: ignore stopped peers
8970 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
8971 - MEDIUM: init: completely deallocate unused peers
8972 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
8973 - DOC: remove outdated actions lists on tcp-request/response
8974 - MEDIUM: tcp: add new tcp action "silent-drop"
8975 - DOC: add URLs to optional libraries in the README
8976
Willy Tarreaua02e8a62015-09-14 12:23:10 +020089772015/09/14 : 1.6-dev5
8978 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
8979 - BUG/MEDIUM: dns: DNS resolution doesn't start
8980 - BUG/MAJOR: dns: dns client resolution infinite loop
8981 - MINOR: dns: coding style update
8982 - MINOR: dns: new bitmasks to use against DNS flags
8983 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
8984 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
8985 - MEDIUM: dns: handling of truncated response
8986 - MINOR: DNS client query type failover management
8987 - MINOR: dns: no expected DNS record type found
8988 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
8989 - BUG/MINOR: DNS request retry counter used for retry only
8990 - DOC: DNS documentation updated
8991 - MEDIUM: actions: remove ACTION_STOP
8992 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
8993 - BUG/MINOR: lua: last log character truncated.
8994 - CLEANUP: typo: bad indent
8995 - CLEANUP: actions: missplaced includes
8996 - MINOR: build: missing header
8997 - CLEANUP: lua: Merge log functions
8998 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
8999 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
9000 - BUG/MAJOR: http: don't call http_send_name_header() after an error
9001 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
9002 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
9003 - BUG/MEDIUM: dns: use the correct server hostname when resolving
9004
Willy Tarreau61d301f2015-08-30 00:17:17 +020090052015/08/30 : 1.6-dev4
9006 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
9007 - DOC: typo in 'redirect', 302 code meaning
9008 - DOC: typos in tcp-check expect examples
9009 - DOC: resolve-prefer default value and default-server update
9010 - MINOR: DNS counters: increment valid counter
9011 - BUG/MEDIUM: DNS resolution response parsing broken
9012 - MINOR: server: add new SRV_ADMF_CMAINT flag
9013 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
9014 - BUG/MEDIUM: dns: wrong first time DNS resolution
9015 - BUG/MEDIUM: lua: Lua tasks fail to start.
9016 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
9017 - DOC/MINOR: fix OpenBSD versions where haproxy works
9018 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
9019 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
9020 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
9021 - BUILD: ssl: Allow building against libssl without SSLv3.
9022 - DOC: clarify some points about SSL and the proxy protocol
9023 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
9024 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
9025 - DOC: match several lua configuration option names to those implemented in code
9026 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
9027 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
9028 - MINOR: stream: initialize the current_rule field to NULL on stream init
9029 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
9030 - CLEANUP: proto_http: remove useless initialisation
9031 - CLEANUP: http/tcp actions: remove the scope member
9032 - BUG/MINOR: proto_tcp: custom action continue is ignored
9033 - MINOR: proto_tcp: add session in the action prototype
9034 - MINOR: vars: reduce the code size of some wrappers
9035 - MINOR: Move http method enum from proto_http to sample
9036 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
9037 - MINOR: sample/proto_tcp: export "smp_fetch_src"
9038 - MEDIUM: cli: rely on the map's output type instead of the sample type
9039 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
9040 - BUG/MEDIUM: vars: segfault during the configuration parsing
9041 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
9042 - BUG/MEDIUM: lua: bad error processing
9043 - MINOR: samples: rename a struct from sample_storage to sample_data
9044 - MINOR: samples: rename some struct member from "smp" to "data"
9045 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
9046 - MINOR: samples: extract the anonymous union and create the union sample_value
9047 - MINOR: samples: rename union from "data" to "u"
9048 - MEDIUM: 51degrees: Adapt the 51Degrees library
9049 - MINOR: samples: data assignation simplification
9050 - MEDIUM: pattern/map: Maps can returns various types
9051 - MINOR: map: The map can return IPv4 and IPv6
9052 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
9053 - MINOR: actions: Remove the data opaque pointer
9054 - MINOR: lua: use the hlua_rule type in place of opaque type
9055 - MINOR: vars: use the vars types as argument in place of opaque type
9056 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
9057 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
9058 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
9059 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
9060 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
9061 - MEDIUM: capture: Move the capture configuration storage in the union
9062 - MINOR: actions: add "from" information
9063 - MINOR: actions: remove the mark indicating the last entry in enum
9064 - MINOR: actions: Declare all the embedded actions in the same header file
9065 - MINOR: actions: change actions names
9066 - MEDIUM: actions: Add standard return code for the action API
9067 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
9068 - MINOR: proto_tcp: proto_tcp.h is now useles
9069 - MINOR: actions: mutualise the action keyword lookup
9070 - MEDIUM: actions: Normalize the return code of the configuration parsers
9071 - MINOR: actions: Remove wrappers
9072 - MAJOR: stick-tables: use sample types in place of dedicated types
9073 - MEDIUM: stick-tables: use the sample type names
9074 - MAJOR: stick-tables: remove key storage from the key struct
9075 - MEDIUM: stick-tables: Add GPT0 in the stick tables
9076 - MINOR: stick-tables: Add GPT0 access
9077 - MINOR: stick-tables: Add GPC0 actions
9078 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
9079 - DOC: ssl: missing LF
9080 - MINOR: lua: add core.done() function
9081 - DOC: fix function name
9082 - BUG/MINOR: lua: in some case a sample may remain undefined
9083 - DOC: fix "http_action_set_req_line()" comments
9084 - MINOR: http: Action for manipulating the returned status code.
9085 - MEDIUM: lua: turns txn:close into txn:done
9086 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
9087 - BUILD: link with libdl if needed for Lua support
9088 - CLEANUP: backend: factor out objt_server() in connect_server()
9089 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
9090 - MEDIUM: stream-int: simplify si_alloc_conn()
9091 - MINOR: stream-int: add new function si_detach_endpoint()
9092 - MINOR: server: add a list of private idle connections
9093 - MINOR: connection: add a new list member in the connection struct
9094 - MEDIUM: stream-int: queue idle connections at the server
9095 - MINOR: stream-int: make si_idle_conn() only accept valid connections
9096 - MINOR: server: add a list of already used idle connections
9097 - MINOR: connection: add a new flag CO_FL_PRIVATE
9098 - MINOR: config: add new setting "http-reuse"
9099 - MAJOR: backend: initial work towards connection reuse
9100 - MAJOR: backend: improve the connection reuse mechanism
9101 - MEDIUM: backend: implement "http-reuse safe"
9102 - MINOR: server: add a list of safe, already reused idle connections
9103 - MEDIUM: backend: add the "http-reuse aggressive" strategy
9104 - DOC: document the new http-reuse directive
9105 - DOC: internals: document next steps for HTTP connection reuse
9106 - DOC: mention that %ms is left-padded with zeroes.
9107 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
9108 - MAJOR: http: remove references to appsession
9109 - CLEANUP: config: remove appsession initialization
9110 - CLEANUP: appsession: remove appsession.c and sessionhash.c
9111 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
9112 - CLEANUP: proxy: remove last references to appsession
9113 - CLEANUP: appsession: remove the last include files
9114 - DOC: remove documentation about appsession
9115 - CLEANUP: .gitignore: ignore more test files
9116 - CLEANUP: .gitignore: finally ignore everything but what is known.
9117 - MEDIUM: config: emit a warning on a frontend without listener
9118 - DOC: add doc/internals/entities-v2.txt
9119 - DOC: add doc/linux-syn-cookies.txt
9120 - DOC: add design thoughts on HTTP/2
9121 - DOC: add some thoughts on connection sharing for HTTP/2
9122 - DOC: add design thoughts on dynamic buffer allocation
9123 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
9124 - DOC: add new file intro.txt
9125 - MAJOR: tproxy: remove support for cttproxy
9126 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
9127 - DOC: lua: replace txn:close with txn:done in lua-api
9128 - DOC: intro: minor updates and fixes
9129 - DOC: intro: fix too long line.
9130 - DOC: fix example of http-request using ssl_fc_session_id
9131 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
9132 - CLEANUP: lua: fix some indent issues
9133 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
9134 - DOC: lua: mention than txn:close was renamed txn:done.
9135
Willy Tarreau50bdda62015-07-22 17:32:56 +020091362015/07/22 : 1.6-dev3
9137 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
9138 - MEDIUM: http: Add new 'set-src' option to http-request
9139 - DOC usesrc root privileges requirments
9140 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
9141 - MINOR: proxy: bit field for proxy_find_best_match diff status
9142 - MINOR: server: new server flag: SRV_F_FORCED_ID
9143 - MINOR: server: server_find functions: id, name, best_match
9144 - DOC: dns: fix chapters syntax
9145 - BUILD/MINOR: tools: rename popcount to my_popcountl
9146 - BUILD: add netbsd TARGET
9147 - MEDIUM: 51Degrees code refactoring and cleanup
9148 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
9149 - DOC: add notes about the "51degrees-cache-size" parameter
9150 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
9151 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
9152 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
9153 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
9154 - BUG/MINOR: lua: type error in the arguments wrapper
9155 - CLEANUP: vars: remove unused struct
9156 - BUG/MINOR: http/sample: gmtime/localtime can fail
9157 - MINOR: standard: add 64 bits conversion functions
9158 - MAJOR: sample: converts uint and sint in 64 bits signed integer
9159 - MAJOR: arg: converts uint and sint in sint
9160 - MEDIUM: sample: switch to saturated arithmetic
9161 - MINOR: vars: returns variable content
9162 - MEDIUM: vars/sample: operators can use variables as parameter
9163 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
9164 - BUILD/MINOR: lua: fix a harmless build warning
9165 - BUILD/MINOR: stats: fix build warning due to condition always true
9166 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
9167 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
9168 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
9169 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
9170 - MINOR: vars: make the accounting not depend on the stream
9171 - MEDIUM: vars: move the session variables to the session, not the stream
9172 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
9173 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
9174 - BUG/MAJOR: tcp: tcp rulesets were still broken
9175 - MINOR: stats: improve compression stats reporting
9176 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
9177 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
9178 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
9179 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
9180 - MINOR: args: add new context for servers
9181 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
9182 - MINOR: ssl: provide ia function to set the SNI extension on a connection
9183 - MEDIUM: ssl: add sni support on the server lines
9184 - CLEANUP: stream: remove a useless call to si_detach()
9185 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
9186 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
9187 - MINOR: stream-int: only use si_release_endpoint() to release a connection
9188 - MINOR: standard: provide htonll() and ntohll()
9189 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
9190 - BUG/MAJOR: dns: fix the length of the string to be copied
9191
Willy Tarreauad90f0d2015-06-17 15:53:25 +020091922015/06/17 : 1.6-dev2
9193 - BUG/MINOR: ssl: Display correct filename in error message
9194 - MEDIUM: logs: Add HTTP request-line log format directives
9195 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
9196 - BUG/MINOR: check: fix tcpcheck error message
9197 - MINOR: use an int instead of calling tcpcheck_get_step_id
9198 - MINOR: tcpcheck_rule structure update
9199 - MINOR: include comment in tcpcheck error log
9200 - DOC: tcpcheck comment documentation
9201 - MEDIUM: server: add support for changing a server's address
9202 - MEDIUM: server: change server ip address from stats socket
9203 - MEDIUM: protocol: add minimalist UDP protocol client
9204 - MEDIUM: dns: implement a DNS resolver
9205 - MAJOR: server: add DNS-based server name resolution
9206 - DOC: server name resolution + proto DNS
9207 - MINOR: dns: add DNS statistics
9208 - MEDIUM: http: configurable http result codes for http-request deny
9209 - BUILD: Compile clean when debug options defined
9210 - MINOR: lru: Add the possibility to free data when an item is removed
9211 - MINOR: lru: Add lru64_lookup function
9212 - MEDIUM: ssl: Add options to forge SSL certificates
9213 - MINOR: ssl: Export functions to manipulate generated certificates
9214 - MEDIUM: config: add DeviceAtlas global keywords
9215 - MEDIUM: global: add the DeviceAtlas required elements to struct global
9216 - MEDIUM: sample: add the da-csv converter
9217 - MEDIUM: init: DeviceAtlas initialization
9218 - BUILD: Makefile: add options to build with DeviceAtlas
9219 - DOC: README: explain how to build with DeviceAtlas
9220 - BUG/MEDIUM: http: fix the url_param fetch
9221 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
9222 - MAJOR: peers: peers protocol version 2.0
9223 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
9224 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
9225 - MEDIUM: peers: support of any stick-table data-types for sync
9226 - BUG/MAJOR: sample: regression on sample cast to stick table types.
9227 - CLEANUP: deinit: remove codes for cleaning p->block_rules
9228 - DOC: Fix L4TOUT typo in documentation
9229 - DOC: set-log-level in Logging section preamble
9230 - BUG/MEDIUM: compat: fix segfault on FreeBSD
9231 - MEDIUM: check: include server address and port in the send-state header
9232 - MEDIUM: backend: Allow redispatch on retry intervals
9233 - MINOR: Add TLS ticket keys reference and use it in the listener struct
9234 - MEDIUM: Add support for updating TLS ticket keys via socket
9235 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
9236 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
9237 - DOC: Update doc about weight, act and bck fields in the statistics
9238 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
9239 - MINOR: ssl: add a destructor to free allocated SSL ressources
9240 - MEDIUM: ssl: add the possibility to use a global DH parameters file
9241 - MEDIUM: ssl: replace standards DH groups with custom ones
9242 - MEDIUM: stats: Add enum srv_stats_state
9243 - MEDIUM: stats: Separate server state and colour in stats
9244 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
9245 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
9246 - MEDIUM: Lower priority of email alerts for log-health-checks messages
9247 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
9248 - MEDIUM: Document when email-alerts are sent
9249 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
9250 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
9251 - BUG/MINOR: utf8: remove compilator warning
9252 - MEDIUM: map: uses HAProxy facilities to store default value
9253 - BUG/MINOR: lua: error in detection of mandatory arguments
9254 - BUG/MINOR: lua: set current proxy as default value if it is possible
9255 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
9256 - BUG/MEDIUM: lua: undetected infinite loop
9257 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
9258 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
9259 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
9260 - BUILD: lua: it miss the '-ldl' directive
9261 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
9262 - MINOR: http: split the function http_action_set_req_line() in two parts
9263 - MINOR: http: split http_transform_header() function in two parts.
9264 - MINOR: http: export function inet_set_tos()
9265 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
9266 - MINOR: lua: create and register HTTP class
9267 - DOC: lua: fix some typos
9268 - MINOR: lua: add log functions
9269 - BUG/MINOR: lua: Fix SSL initialisation
9270 - DOC: lua: some fixes
9271 - MINOR: lua: (req|res)_get_headers return more than one header value
9272 - MINOR: lua: map system integration in Lua
9273 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
9274 - MINOR: sample: add url_dec converter
9275 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
9276 - MEDIUM: sample change the prototype of sample-fetches and converters functions
9277 - MINOR: sample: fill the struct sample with the options.
9278 - MEDIUM: sample: change the prototype of sample-fetches functions
9279 - MINOR: http: split the url_param in two parts
9280 - CLEANUP: http: bad indentation
9281 - MINOR: http: add body_param fetch
9282 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
9283 - DOC: http: req.body_param documentation
9284 - MINOR: proxy: custom capture declaration
9285 - MINOR: capture: add two "capture" converters
9286 - MEDIUM: capture: Allow capture with slot identifier
9287 - MINOR: http: add array of generic pointers in http_res_rules
9288 - MEDIUM: capture: adds http-response capture
9289 - MINOR: common: escape CSV strings
9290 - MEDIUM: stats: escape some strings in the CSV dump
9291 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
9292 - MINOR: lua: Lua tcp action are not final action
9293 - DOC: lua: schematics about lua socket organization
9294 - BUG/MINOR: debug: display (null) in place of "meth"
9295 - DOC: mention the "lua action" in documentation
9296 - MINOR: standard: add function that converts signed int to a string
9297 - BUG/MINOR: sample: wrong conversion of signed values
9298 - MEDIUM: sample: Add type any
9299 - MINOR: debug: add a special converter which display its input sample content.
9300 - MINOR: tcp: increase the opaque data array
9301 - MINOR: tcp/http/conf: extends the keyword registration options
9302 - MINOR: build: fix build dependency
9303 - MEDIUM: vars: adds support of variables
9304 - MINOR: vars: adds get and set functions
9305 - MINOR: lua: Variable access
9306 - MINOR: samples: add samples which returns constants
9307 - BUG/MINOR: vars/compil: fix some warnings
9308 - BUILD: add 51degrees options to makefile.
9309 - MINOR: global: add several 51Degrees members to global
9310 - MINOR: config: add 51Degrees config parsing.
9311 - MINOR: init: add 51Degrees initialisation code
9312 - MEDIUM: sample: add fiftyone_degrees converter.
9313 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
9314 - MEDIUM: sample: add trie support to 51Degrees
9315 - DOC: add 51Degrees notes to configuration.txt.
9316 - DOC: add build indications for 51Degrees to README.
9317 - MEDIUM: cfgparse: introduce weak and strong quoting
9318 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
9319 - MINOR: cfgparse: remove line size limitation
9320 - MEDIUM: cfgparse: expand environment variables
9321 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
9322 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
9323 - CLEANUP: cfgparse: remove reference to 'ruleset' section
9324 - MEDIUM: cfgparse: check section maximum number of arguments
9325 - MEDIUM: cfgparse: max arguments check in the global section
9326 - MEDIUM: cfgparse: check max arguments in the proxies sections
9327 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
9328 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
9329 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
9330 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
9331 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
9332 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
9333 - MINOR: connection: implement conn_sock_send()
9334 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
9335 - MEDIUM: connection: make conn_drain() perform more controls
9336 - REORG: connection: move conn_drain() to connection.c and rename it
9337 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
9338 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
9339 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
9340 - BUG/MEDIUM: peers: correctly configure the client timeout
9341 - MINOR: peers: centralize configuration of the peers frontend
9342 - MINOR: proxy: store the default target into the frontend's configuration
9343 - MEDIUM: stats: use frontend_accept() as the accept function
9344 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
9345 - CLEANUP: listeners: remove unused timeout
9346 - MEDIUM: listener: store the default target per listener
9347 - BUILD: fix automatic inclusion of libdl.
9348 - MEDIUM: lua: implement a simple memory allocator
9349 - MEDIUM: compression: postpone buffer adjustments after compression
9350 - MEDIUM: compression: don't send leading zeroes with chunk size
9351 - BUG/MINOR: compression: consider the expansion factor in init
9352 - MINOR: http: check the algo name "identity" instead of the function pointer
9353 - CLEANUP: compression: statify all algo-specific functions
9354 - MEDIUM: compression: add a distinction between UA- and config- algorithms
9355 - MEDIUM: compression: add new "raw-deflate" compression algorithm
9356 - MEDIUM: compression: split deflate_flush() into flush and finish
9357 - CLEANUP: compression: remove unused reset functions
9358 - MAJOR: compression: integrate support for libslz
9359 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
9360 - BUG/MAJOR: http: null-terminate the http actions keywords list
9361 - CLEANUP: lua: remove the unused hlua_sleep memory pool
9362 - BUG/MAJOR: lua: use correct object size when initializing a new converter
9363 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
9364 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
9365 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
9366 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
9367 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
9368 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
9369 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
9370 - REORG/MAJOR: session: rename the "session" entity to "stream"
9371 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
9372 - MINOR: session: start to reintroduce struct session
9373 - MEDIUM: stream: allocate the session when a stream is created
9374 - MEDIUM: stream: move the listener's pointer to the session
9375 - MEDIUM: stream: move the frontend's pointer to the session
9376 - MINOR: session: add a pointer to the session's origin
9377 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
9378 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
9379 - MEDIUM: http: move header captures from http_txn to struct stream
9380 - MINOR: http: create a dedicated pool for http_txn
9381 - MAJOR: http: move http_txn out of struct stream
9382 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
9383 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
9384 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
9385 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
9386 - MAJOR: sample: pass a pointer to the session to each sample fetch function
9387 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
9388 - CLEANUP: stream: don't set ->target to the incoming connection anymore
9389 - MINOR: stream: move session initialization before the stream's
9390 - MINOR: session: store the session's accept date
9391 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
9392 - MINOR: session: implement session_free() and use it everywhere
9393 - MINOR: session: add stick counters to the struct session
9394 - REORG: stktable: move the stkctr_* functions from stream to sticktable
9395 - MEDIUM: streams: support looking up stkctr in the session
9396 - MEDIUM: session: update the session's stick counters upon session_free()
9397 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
9398 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
9399 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
9400 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
9401 - MAJOR: stream: don't initialize the stream anymore in stream_accept
9402 - MEDIUM: session: remove the task pointer from the session
9403 - REORG: session: move the session parts out of stream.c
9404 - MINOR: stream-int: make appctx_new() take the applet in argument
9405 - MEDIUM: peers: move the appctx initialization earlier
9406 - MINOR: session: introduce session_new()
9407 - MINOR: session: make use of session_new() when creating a new session
9408 - MINOR: peers: make use of session_new() when creating a new session
9409 - MEDIUM: peers: initialize the task before the stream
9410 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
9411 - CLEANUP: stream.c: do not re-attach the connection to the stream
9412 - MEDIUM: stream: isolate connection-specific initialization code
9413 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
9414 - MEDIUM: peers: make use of stream_accept_session()
9415 - MEDIUM: frontend: make ->accept only return +/-1
9416 - MEDIUM: stream: return the stream upon accept()
9417 - MEDIUM: frontend: move some stream initialisation to stream_new()
9418 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
9419 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
9420 - MEDIUM: frontend: move some remaining stream settings to stream_new()
9421 - CLEANUP: frontend: remove one useless local variable
9422 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
9423 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
9424 - MINOR: lua: minor cleanup in hlua_socket_new()
9425 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
9426 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
9427 - CLEANUP: stream-int: swap stream-int and appctx declarations
9428 - CLEANUP: namespaces: fix protection against multiple inclusions
9429 - MINOR: session: maintain the session count stats in the session, not the stream
9430 - MEDIUM: session: adjust the connection flags before stream_new()
9431 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
9432 - CLEANUP: poll: move the conditions for waiting out of the poll functions
9433 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
9434 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
9435 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
9436 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
9437 - DOC: update the entities diagrams
9438 - BUG/MEDIUM: http: properly retrieve the front connection
9439 - MINOR: applet: add a new "owner" pointer in the appctx
9440 - MEDIUM: applet: make the applet not depend on a stream interface anymore
9441 - REORG: applet: move the applet definitions out of stream_interface
9442 - CLEANUP: applet: rename struct si_applet to applet
9443 - REORG: stream-int: create si_applet_ops dedicated to applets
9444 - MEDIUM: applet: add basic support for an applet run queue
9445 - MEDIUM: applet: implement a run queue for active appctx
9446 - MEDIUM: stream-int: add a new function si_applet_done()
9447 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
9448 - MAJOR: stream: use a regular ->update for all stream interfaces
9449 - MEDIUM: dumpstats: don't unregister the applet anymore
9450 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
9451 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
9452 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
9453 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
9454 - MEDIUM: stream-int: pause the appctx if the task is woken up
9455 - BUG/MAJOR: tcp: only call registered actions when they're registered
9456 - BUG/MEDIUM: peers: fix applet scheduling
9457 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
9458 - MINOR: tools: provide an rdtsc() function for time comparisons
9459 - IMPORT: lru: import simple ebtree-based LRU functions
9460 - IMPORT: hash: import xxhash-r39
9461 - MEDIUM: pattern: add a revision to all pattern expressions
9462 - MAJOR: pattern: add LRU-based cache on pattern matching
9463 - BUG/MEDIUM: http: remove content-length from chunked messages
9464 - DOC: http: update the comments about the rules for determining transfer-length
9465 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
9466 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
9467 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
9468 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
9469 - MEDIUM: http: disable support for HTTP/0.9 by default
9470 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
9471 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
9472 - MEDIUM: init: don't stop proxies in parent process when exiting
9473 - MINOR: stick-table: don't attach to peers in stopped state
9474 - MEDIUM: config: initialize stick-tables after peers, not before
9475 - MEDIUM: peers: add the ability to disable a peers section
9476 - MINOR: peers: store the pointer to the signal handler
9477 - MEDIUM: peers: unregister peers that were never started
9478 - MEDIUM: config: propagate the table's process list to the peers sections
9479 - MEDIUM: init: stop any peers section not bound to the correct process
9480 - MEDIUM: config: validate that peers sections are bound to exactly one process
9481 - MAJOR: peers: allow peers section to be used with nbproc > 1
9482 - DOC: relax the peers restriction to single-process
9483 - DOC: document option http-ignore-probes
9484 - DOC: fix the comments about the meaning of msg->sol in HTTP
9485 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
9486 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
9487 - MEDIUM: stream: move HTTP request body analyser before process_common
9488 - MEDIUM: http: add a new option http-buffer-request
9489 - MEDIUM: http: provide 3 fetches for the body
9490 - DOC: update the doc on the proxy protocol
9491 - BUILD: pattern: fix build warnings introduced in the LRU cache
9492 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
9493 - CLEANUP: config: fix misleading information in error message.
9494 - MINOR: config: report the number of processes using a peers section in the error case
9495 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
9496 - MEDIUM: http: add new "capture" action for http-request
9497 - BUG/MEDIUM: http: fix the http-request capture parser
9498 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
9499 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
9500 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
9501 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
9502 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
9503 - CLEANUP: checks: simplify the loop processing of tcp-checks
9504 - BUG/MAJOR: checks: always check for end of list before proceeding
9505 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
9506 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
9507 - MEDIUM: http: make url_param iterate over multiple occurrences
9508 - BUG/MEDIUM: peers: apply a random reconnection timeout
9509 - MEDIUM: config: reject invalid config with name duplicates
9510 - MEDIUM: config: reject conflicts in table names
9511 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
9512 - MINOR: proxy: simply ignore duplicates in proxy name lookups
9513 - MINOR: config: don't open-code proxy name lookups
9514 - MEDIUM: config: clarify the conflicting modes detection for backend rules
9515 - CLEANUP: proxy: remove now unused function findproxy_mode()
9516 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
9517 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
9518 - MINOR: proxy: add a new function proxy_find_by_id()
9519 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
9520 - MEDIUM: proxy: add a new proxy_find_best_match() function
9521 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
9522 - MINOR: http: prepare support for parsing redirect actions on responses
9523 - MEDIUM: http: implement http-response redirect rules
9524 - MEDIUM: http: no need to close the request on redirect if data was parsed
9525 - BUG/MEDIUM: http: fix body processing for the stats applet
9526 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
9527 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
9528 - CLEANUP: da: move the converter registration to da.c
9529 - CLEANUP: da: register the config keywords in da.c
9530 - CLEANUP: adjust the envelope name in da.h to reflect the file name
9531 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
9532 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
9533 - BUILD: fix build warning when not using 51degrees
9534 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
9535 - BUILD: ssl: fix recent build breakage on older SSL libs
9536
Willy Tarreau8747b6d2015-03-11 23:57:23 +010095372015/03/11 : 1.6-dev1
9538 - CLEANUP: extract temporary $CFG to eliminate duplication
9539 - CLEANUP: extract temporary $BIN to eliminate duplication
9540 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
9541 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
9542 - CLEANUP: extract quiet_check() to avoid duplication
9543 - BUG/MINOR: don't start haproxy on reload
9544 - DOC: Address issue where documentation is excluded due to a gitignore rule.
9545 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
9546 - BUILD: fix "make install" to support spaces in the install dirs
9547 - BUG/MINOR: config: http-request replace-header arg typo
9548 - BUG: config: error in http-response replace-header number of arguments
9549 - DOC: missing track-sc* in http-request rules
9550 - BUILD: lua: missing ifdef related to SSL when enabling LUA
9551 - BUG/MEDIUM: regex: fix pcre_study error handling
9552 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
9553 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
9554 - MEDIUM: Improve signal handling in systemd wrapper.
9555 - DOC: fix typo in Unix Socket commands
9556 - BUG/MEDIUM: checks: external checks can't change server status to UP
9557 - BUG/MEDIUM: checks: segfault with external checks in a backend section
9558 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
9559 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
9560 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
9561 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
9562 - BUG/MINOR: log: fix request flags when keep-alive is enabled
9563 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
9564 - MINOR: checks: allow external checks in backend sections
9565 - MEDIUM: checks: provide environment variables to the external checks
9566 - MINOR: checks: update dynamic environment variables in external checks
9567 - DOC: checks: environment variables used by "external-check command"
9568 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
9569 - MINOR: ssl: load certificates in alphabetical order
9570 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
9571 - MINOR: lua: typo in an error message
9572 - MINOR: report the Lua version in -vv
9573 - MINOR: lua: add a compilation error message when compiled with an incompatible version
9574 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
9575 - BUILD: try to automatically detect the Lua library name
9576 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
9577 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
9578 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
9579 - MEDIUM: connection: add new bit in Proxy Protocol V2
9580 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
9581 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
9582 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
9583 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
9584 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
9585 - MINOR: ssl: add statement to force some ssl options in global.
9586 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
9587 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
9588 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
9589 - MINOR: samples: adds the bytes converter.
9590 - MINOR: samples: adds the field converter.
9591 - MINOR: samples: add the word converter.
9592 - BUG/MINOR: server: move the directive #endif to the end of file
9593 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
9594 - DOC: fix a few typos
9595 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
9596 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
9597 - BUG/MINOR: parse: refer curproxy instead of proxy
9598 - BUG/MINOR: parse: check the validity of size string in a more strict way
9599 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
9600 - DOC: expand the docs for the provided stats.
9601 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
9602 - MEDIUM: ssl: Certificate Transparency support
9603 - MEDIUM: stats: proxied stats admin forms fix
9604 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
9605 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
9606 - MAJOR: namespace: add Linux network namespace support
9607 - MINOR: systemd: Check configuration before start
9608 - BUILD: ssl: handle boringssl in openssl version detection
9609 - BUILD: ssl: disable OCSP when using boringssl
9610 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
9611 - MINOR: ssl: don't use boringssl's cipher_list
9612 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
9613 - MINOR: stats: fix minor typo in HTML page
9614 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
9615 - MEDIUM: Add support for configurable TLS ticket keys
9616 - DOC: Document the new tls-ticket-keys bind keyword
9617 - DOC: clearly state that the "show sess" output format is not fixed
9618 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
9619 - DOC: httplog does not support 'no'
9620 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
9621 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
9622 - BUG/MEDIUM: Consistently use 'check' in process_chk
9623 - MEDIUM: Add external check
9624 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
9625 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
9626 - MEDIUM: Remove connect_chk
9627 - MEDIUM: Refactor init_check and move to checks.c
9628 - MEDIUM: Add free_check() helper
9629 - MEDIUM: Move proto and addr fields struct check
9630 - MEDIUM: Attach tcpcheck_rules to check
9631 - MEDIUM: Add parsing of mailers section
9632 - MEDIUM: Allow configuration of email alerts
9633 - MEDIUM: Support sending email alerts
9634 - DOC: Document email alerts
9635 - MINOR: Remove trailing '.' from email alert messages
9636 - MEDIUM: Allow suppression of email alerts by log level
9637 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
9638 - MINOR: deinit: fix memory leak
9639 - MINOR: http: export the function 'smp_fetch_base32'
9640 - BUG/MEDIUM: http: tarpit timeout is reset
9641 - MINOR: sample: add "json" converter
9642 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
9643 - MINOR: map/acl/dumpstats: remove the "Done." message
9644 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
9645 - BUG/MINOR: pattern: error message missing
9646 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
9647 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
9648 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
9649 - MEDIUM: task: call session analyzers if the task is woken by a message.
9650 - MEDIUM: protocol: automatically pick the proto associated to the connection.
9651 - MEDIUM: channel: wake up any request analyzer on response activity
9652 - MINOR: converters: add a "void *private" argument to converters
9653 - MINOR: converters: give the session pointer as converter argument
9654 - MINOR: sample: add private argument to the struct sample_fetch
9655 - MINOR: global: export function and permits to not resolve DNS names
9656 - MINOR: sample: add function for browsing samples.
9657 - MINOR: global: export many symbols.
9658 - MINOR: includes: fix a lot of missing or useless includes
9659 - MEDIUM: tcp: add register keyword system.
9660 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
9661 - MEDIUM: http: change the code returned by the response processing rule functions
9662 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
9663 - MINOR: channel: functions to get data from a buffer without copy
9664 - MEDIUM: lua: lua integration in the build and init system.
9665 - MINOR: lua: add ease functions
9666 - MINOR: lua: add runtime execution context
9667 - MEDIUM: lua: "com" signals
9668 - MINOR: lua: add the configuration directive "lua-load"
9669 - MINOR: lua: core: create "core" class and object
9670 - MINOR: lua: post initialisation bindings
9671 - MEDIUM: lua: add coroutine as tasks.
9672 - MINOR: lua: add sample and args type converters
9673 - MINOR: lua: txn: create class TXN associated with the transaction.
9674 - MINOR: lua: add shared context in the lua stack
9675 - MINOR: lua: txn: import existing sample-fetches in the class TXN
9676 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
9677 - MINOR: lua: register and execute sample-fetches in LUA
9678 - MINOR: lua: register and execute converters in LUA
9679 - MINOR: lua: add bindings for tcp and http actions
9680 - MINOR: lua: core: add sleep functions
9681 - MEDIUM: lua: socket: add "socket" class for TCP I/O
9682 - MINOR: lua: core: pattern and acl manipulation
9683 - MINOR: lua: channel: add "channel" class
9684 - MINOR: lua: txn: object "txn" provides two objects "channel"
9685 - MINOR: lua: core: can set the nice of the current task
9686 - MINOR: lua: core: can yield an execution stack
9687 - MINOR: lua: txn: add binding for closing the client connection.
9688 - MEDIUM: lua: Lua initialisation "on demand"
9689 - BUG/MAJOR: lua: send function fails and return bad bytes
9690 - MINOR: remove unused declaration.
9691 - MINOR: lua: remove some #define
9692 - MINOR: lua: use bitfield and macro in place of integer and enum
9693 - MINOR: lua: set skeleton for Lua execution expiration
9694 - MEDIUM: lua: each yielding function returns a wake up time.
9695 - MINOR: lua: adds "forced yield" flag
9696 - MEDIUM: lua: interrupt the Lua execution for running other process
9697 - MEDIUM: lua: change the sleep function core
9698 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
9699 - DOC: lua: Lua configuration documentation
9700 - MINOR: lua: add the struct session in the lua channel struct
9701 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
9702 - BUG/MEDIUM: lua: reset flags before resuming execution
9703 - BUG/MEDIUM: lua: fix infinite loop about channel
9704 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
9705 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
9706 - MEDIUM: lua: use the Lua-5.3 version of the library
9707 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
9708 - BUG/MEDIUM: lua: can't handle the response bytes
9709 - BUG/MEDIUM: lua: segfault with buffer_replace2
9710 - BUG/MINOR: lua: check buffers before initializing socket
9711 - BUG/MINOR: log: segfault if there are no proxy reference
9712 - BUG/MEDIUM: lua: sockets don't have buffer to write data
9713 - BUG/MEDIUM: lua: cannot connect socket
9714 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
9715 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
9716 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
9717 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
9718 - MINOR: replace the Core object by a simple model.
9719 - MEDIUM: lua: change the objects configuration
9720 - MEDIUM: lua: create a namespace for the fetches
9721 - MINOR: converters: add function to browse converters
9722 - MINOR: lua: wrapper for converters
9723 - MINOR: lua: replace function (req|get)_channel by a variable
9724 - MINOR: lua: fetches and converters can return an empty string in place of nil
9725 - DOC: lua api
9726 - BUG/MEDIUM: sample: fix random number upper-bound
9727 - BUG/MINOR: stats:Fix incorrect printf type.
9728 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
9729 - BUG/MINOR: logs: properly initialize and count log sockets
9730 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
9731 - BUG/MINOR: counters: do not untrack counters before logging
9732 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
9733 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
9734 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
9735 - BUILD: remove TODO from the spec file and add README
9736 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
9737 - MEDIUM: log: support a user-configurable max log line length
9738 - DOC: provide an example of how to use ssl_c_sha1
9739 - BUILD: checks: external checker needs signal.h
9740 - BUILD: checks: kill a minor warning on Solaris in external checks
9741 - BUILD: http: fix isdigit & isspace warnings on Solaris
9742 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
9743 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
9744 - MEDIUM: listener: implement a per-protocol pause() function
9745 - MEDIUM: listener: support rebinding during resume()
9746 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
9747 - DOC: explicitly mention the limits of abstract namespace sockets
9748 - DOC: minor fix on {sc,src}_kbytes_{in,out}
9749 - DOC: fix alphabetical sort of converters
9750 - MEDIUM: stick-table: implement lookup from a sample fetch
9751 - MEDIUM: stick-table: add new converters to fetch table data
9752 - MINOR: samples: add two converters for the date format
9753 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
9754 - DOC: remove references to CPU=native in the README
9755 - DOC: mention that "compression offload" is ignored in defaults section
9756 - DOC: mention that Squid correctly responds 400 to PPv2 header
9757 - BUILD: fix dependencies between config and compat.h
9758 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
9759 - MEDIUM: stick-table: make it easier to register extra data types
9760 - BUG/MINOR: http: base32+src should use the big endian version of base32
9761 - MINOR: sample: allow IP address to cast to binary
9762 - MINOR: sample: add new converters to hash input
9763 - MINOR: sample: allow integers to cast to binary
9764 - BUILD: report commit ID in git versions as well
9765 - CLEANUP: session: move the stick counters declarations to stick_table.h
9766 - MEDIUM: http: add the track-sc* actions to http-request rules
9767 - BUG/MEDIUM: connection: fix proxy v2 header again!
9768 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
9769 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
9770 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
9771 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
9772 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
9773 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
9774 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
9775 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
9776 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
9777 - MEDIUM: http: enable header manipulation for 101 responses
9778 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
9779 - MEDIUM: config: properly propagate process binding between proxies
9780 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
9781 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
9782 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
9783 - MEDIUM: config: report it when tcp-request rules are misplaced
9784 - DOC: indicate in the doc that track-sc* can wait if data are missing
9785 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
9786 - MEDIUM: systemd-wrapper: support multiple executable versions and names
9787 - BUG/MEDIUM: remove debugging code from systemd-wrapper
9788 - BUG/MEDIUM: http: adjust close mode when switching to backend
9789 - BUG/MINOR: config: don't propagate process binding on fatal errors.
9790 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
9791 - BUG/MINOR: tcp-check: report the correct failed step in the status
9792 - DOC: indicate that weight zero is reported as DRAIN
9793 - BUG/MEDIUM: config: avoid skipping disabled proxies
9794 - BUG/MINOR: config: do not accept more track-sc than configured
9795 - BUG/MEDIUM: backend: fix URI hash when a query string is present
9796 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
9797 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
9798 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
9799 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
9800 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
9801 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
9802 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
9803 - MEDIUM: ssl: add support for smaller SSL records
9804 - MINOR: session: release a few other pools when stopping
9805 - MINOR: task: release the task pool when stopping
9806 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
9807 - BUG/MAJOR: frontend: initialize capture pointers earlier
9808 - BUG/MINOR: stats: correctly set the request/response analysers
9809 - MAJOR: polling: centralize calls to I/O callbacks
9810 - DOC: fix typo in the body parser documentation for msg.sov
9811 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
9812 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
9813 - DEBUG: pools: apply poisonning on every allocated pool
9814 - BUG/MAJOR: sessions: unlink session from list on out of memory
9815 - BUG/MEDIUM: patterns: previous fix was incomplete
9816 - BUG/MEDIUM: payload: ensure that a request channel is available
9817 - BUG/MINOR: tcp-check: don't condition data polling on check type
9818 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
9819 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
9820 - BUG/MINOR: config: fix typo in condition when propagating process binding
9821 - BUG/MEDIUM: config: do not propagate processes between stopped processes
9822 - BUG/MAJOR: stream-int: properly check the memory allocation return
9823 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
9824 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
9825 - BUG/MEDIUM: compression: correctly report zlib_mem
9826 - CLEANUP: lists: remove dead code
9827 - CLEANUP: memory: remove dead code
9828 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
9829 - MINOR: memory: cut pool allocator in 3 layers
9830 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
9831 - MINOR: stream-int: retrieve session pointer from stream-int
9832 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
9833 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
9834 - MINOR: buffer: move buffer initialization after channel initialization
9835 - MINOR: buffer: only use b_free to release buffers
9836 - MEDIUM: buffer: always assign a dummy empty buffer to channels
9837 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
9838 - MEDIUM: channel: do not report full when buf_empty is present on a channel
9839 - MINOR: session: group buffer allocations together
9840 - MINOR: buffer: implement b_alloc_fast()
9841 - MEDIUM: buffer: implement b_alloc_margin()
9842 - MEDIUM: session: implement a basic atomic buffer allocator
9843 - MAJOR: session: implement a wait-queue for sessions who need a buffer
9844 - MAJOR: session: only allocate buffers when needed
9845 - MINOR: stats: report a "waiting" flags for sessions
9846 - MAJOR: session: only wake up as many sessions as available buffers permit
9847 - MINOR: config: implement global setting tune.buffers.reserve
9848 - MINOR: config: implement global setting tune.buffers.limit
9849 - MEDIUM: channel: implement a zero-copy buffer transfer
9850 - MEDIUM: stream-int: support splicing from applets
9851 - OPTIM: stream-int: try to send pending spliced data
9852 - CLEANUP: session: remove session_from_task()
9853 - DOC: add missing entry for log-format and clarify the text
9854 - MINOR: logs: add a new per-proxy "log-tag" directive
9855 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
9856 - MINOR: config: extend the default max hostname length to 64 and beyond
9857 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
9858 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
9859 - MINOR: channel: add channel_in_transit()
9860 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
9861 - MEDIUM: channel: make bi_avail() use channel_in_transit()
9862 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
9863 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
9864 - MINOR: channel: rename channel_full() to !channel_may_recv()
9865 - MINOR: channel: rename buffer_reserved() to channel_reserved()
9866 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
9867 - MINOR: channel: rename bi_avail() to channel_recv_max()
9868 - MINOR: channel: rename bi_erase() to channel_truncate()
9869 - BUG/MAJOR: log: don't try to emit a log if no logger is set
9870 - MINOR: tools: add new round_2dig() function to round integers
9871 - MINOR: global: always export some SSL-specific metrics
9872 - MINOR: global: report information about the cost of SSL connections
9873 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
9874 - MINOR: http: add a new fetch "query" to extract the request's query string
9875 - MINOR: hash: add new function hash_crc32
9876 - MINOR: samples: provide a "crc32" converter
9877 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
9878 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
9879 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
9880 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
9881 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
9882 - MINOR: args: add type-specific flags for each arg in a list
9883 - MINOR: args: implement a new arg type for regex : ARGT_REG
9884 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
9885 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
9886 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
9887 - MEDIUM: http: implement http-request set-{method,path,query,uri}
9888 - DOC: fix missing closing brackend on regsub
9889 - MEDIUM: samples: provide basic arithmetic and bitwise operators
9890 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
9891 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
9892 - BUG/MINOR: http: abort request processing on filter failure
9893 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
9894 - MINOR: ssl/server: add the "no-ssl-reuse" server option
9895 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
9896 - MINOR: http: add a new function to iterate over each header line
9897 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
9898 - MEDIUM: task: always ensure that the run queue is consistent
9899 - BUILD: Makefile: add -Wdeclaration-after-statement
9900 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
9901 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
9902 - MEDIUM: protocol: use a family array to index the protocol handlers
9903 - BUILD: lua: cleanup many mixed occurrences declarations & code
9904 - BUG/MEDIUM: task: fix recently introduced scheduler skew
9905 - BUG/MINOR: lua: report the correct function name in an error message
9906 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
9907 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
9908 - MINOR: lua: convert IP addresses to type string
9909 - CLEANUP: lua: use the same function names in C and Lua
9910 - REORG/MAJOR: move session's req and resp channels back into the session
9911 - CLEANUP: remove now unused channel pool
9912 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
9913 - MEDIUM: stream-int: add a flag indicating which side the SI is on
9914 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
9915 - MEDIUM: stream-interface: remove now unused pointers to channels
9916 - MEDIUM: stream-int: make si_sess() use the stream int's side
9917 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
9918 - MEDIUM: stream-int: remove any reference to the owner
9919 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
9920 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
9921 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
9922 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
9923 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
9924 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
9925 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
9926 - CLEANUP: session: use local variables to access channels / stream ints
9927 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
9928 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
9929 - CLEANUP: stream-int: limit usage of si_ic/si_oc
9930 - CLEANUP: lua: limit usage of si_ic/si_oc
9931 - MINOR: channel: add chn_sess() helper to retrieve session from channel
9932 - MEDIUM: session: simplify receive buffer allocator to only use the channel
9933 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
9934 - CLEANUP: lua: remove the session pointer from hlua_channel
9935 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
9936 - MEDIUM: lua: remove struct hlua_channel
9937 - MEDIUM: lua: remove hlua_sample_fetch
9938
Willy Tarreau15480d72014-06-19 21:10:58 +020099392014/06/19 : 1.6-dev0
9940 - exact copy of 1.5.0
9941
Willy Tarreau9229f122014-06-19 21:01:06 +020099422014/06/19 : 1.5.0
9943 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
9944 - MEDIUM: ssl: basic OCSP stapling support.
9945 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
9946 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
9947 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
9948 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
9949 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
9950 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
9951 - MEDIUM: Break out check establishment into connect_chk()
9952 - MEDIUM: Add port_to_str helper
9953 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
9954 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
9955 - MINOR: regex: fix a little configuration memory leak.
9956 - MINOR: regex: Create JIT compatible function that return match strings
9957 - MEDIUM: regex: replace all standard regex function by own functions
9958 - MEDIUM: regex: Remove null terminated strings.
9959 - MINOR: regex: Use native PCRE API.
9960 - MINOR: missing regex.h include
9961 - DOC: Add Exim as Proxy Protocol implementer.
9962 - BUILD: don't use type "uint" which is not portable
9963 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
9964 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
9965 - CLEANUP: http: don't clear CF_READ_NOEXP twice
9966 - DOC: fix proxy protocol v2 decoder example
9967 - DOC: fix remaining occurrences of "pattern extraction"
9968 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
9969 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
9970 - MINOR: sample: improve sample_fetch_string() to report partial contents
9971 - MINOR: capture: extend the captures to support non-header keys
9972 - MINOR: tcp: prepare support for the "capture" action
9973 - MEDIUM: tcp: add a new tcp-request capture directive
9974 - MEDIUM: session: allow shorter retry delay if timeout connect is small
9975 - MEDIUM: session: don't apply the retry delay when redispatching
9976 - MEDIUM: session: redispatch earlier when possible
9977 - MINOR: config: warn when tcp-check rules are used without option tcp-check
9978 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
9979 - DOC: proxy protocol example parser was still wrong
9980 - DOC: minor updates to the proxy protocol doc
9981 - CLEANUP: connection: merge proxy proto v2 header and address block
9982 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
9983 - MINOR: tools: add new functions to quote-encode strings
9984 - DOC: clarify the CSV format
9985 - MEDIUM: stats: report the last check and last agent's output on the CSV status
9986 - MINOR: freq_ctr: introduce a new averaging method
9987 - MEDIUM: session: maintain per-backend and per-server time statistics
9988 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
9989 - BUG/MINOR: http: fix typos in previous patch
9990 - DOC: remove the ultra-obsolete TODO file
9991 - DOC: update roadmap
9992 - DOC: minor updates to the README
9993 - DOC: mention the maxconn limitations with the select poller
9994 - DOC: commit a few old design thoughts files
9995
Willy Tarreau2e858402014-05-28 17:50:53 +020099962014/05/28 : 1.5-dev26
9997 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
9998 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
9999 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
10000 - MINOR: fix a few memory usage errors
10001 - CONTRIB: halog: Filter input lines by date and time through timestamp
10002 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
10003 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
10004 - MINOR: acl: set "str" as default match for strings
10005 - DOC: Add some precisions about acl default matching method
10006 - MEDIUM: acl: strenghten the option parser to report invalid options
10007 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
10008 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
10009 - MINOR: stats: improve alignment of color codes to save one line of header
10010 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
10011 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
10012 - MINOR: server: use functions to detect state changes and to update them
10013 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
10014 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
10015 - BUG/MAJOR: config: don't free valid regex memory
10016 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
10017 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
10018 - MEDIUM: proxy: make timeout parser a bit stricter
10019 - REORG/MEDIUM: server: split server state and flags in two different variables
10020 - REORG/MEDIUM: server: move the maintenance bits out of the server state
10021 - MAJOR: server: use states instead of flags to store the server state
10022 - REORG: checks: put the functions in the appropriate files !
10023 - MEDIUM: server: properly support and propagate the maintenance status
10024 - MEDIUM: server: allow multi-level server tracking
10025 - CLEANUP: checks: rename the server_status_printf function
10026 - MEDIUM: checks: simplify server up/down/nolb transitions
10027 - MAJOR: checks: move health checks changes to set_server_check_status()
10028 - MINOR: server: make the status reporting function support a reason
10029 - MINOR: checks: simplify health check reporting functions
10030 - MINOR: server: implement srv_set_stopped()
10031 - MINOR: server: implement srv_set_running()
10032 - MINOR: server: implement srv_set_stopping()
10033 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
10034 - MEDIUM: checks: simplify success notification using srv_set_running()
10035 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
10036 - MEDIUM: stats: report a server's own state instead of the tracked one's
10037 - MINOR: server: make use of srv_is_usable() instead of checking eweight
10038 - MAJOR: checks: add support for a new "drain" administrative mode
10039 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
10040 - MEDIUM: stats: introduce new actions to simplify admin status management
10041 - MINOR: cli: introduce a new "set server" command
10042 - MINOR: stats: report a distinct output for DOWN caused by agent
10043 - MINOR: checks: support specific check reporting for the agent
10044 - MINOR: checks: support a neutral check result
10045 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
10046 - MEDIUM: cli: add support for enabling/disabling health checks.
10047 - MEDIUM: stats: report down caused by agent prior to reporting up
10048 - MAJOR: agent: rework the response processing and support additional actions
10049 - MINOR: stats: improve the stats web page to support more actions
10050 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
10051 - DOC: document the workarouds for Google Chrome's bogus pre-connect
10052 - MINOR: stats: report SSL key computations per second
10053 - MINOR: stats: add counters for SSL cache lookups and misses
10054
Willy Tarreaua3393952014-05-10 15:16:43 +0200100552014/05/10 : 1.5-dev25
10056 - MEDIUM: connection: Implement and extented PROXY Protocol V2
10057 - MINOR: ssl: clean unused ACLs declarations
10058 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
10059 - MINOR: ssl: merge client's and frontend's certificate functions.
10060 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
10061 - MINOR: ssl: adds sample converter base64 for binary type.
10062 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
10063 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
10064 - MAJOR: ssl: Change default locks on ssl session cache.
10065 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
10066 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
10067 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
10068 - BUG/MEDIUM: patterns: last fix was still not enough
10069 - MINOR: http: export the smp_fetch_cookie function
10070 - MINOR: http: generic pointer to rule argument
10071 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
10072 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
10073 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
10074 - BUG/MINOR: http: log 407 in case of proxy auth
10075 - MINOR: http: rely on the message body parser to send 100-continue
10076 - MEDIUM: http: move reqadd after execution of http_request redirect
10077 - MEDIUM: http: jump to dedicated labels after http-request processing
10078 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
10079 - BUG/MINOR: http: block rules forgot to increment the session's request counter
10080 - MEDIUM: http: move Connection header processing earlier
10081 - MEDIUM: http: remove even more of the spaghetti in the request path
10082 - MINOR: http: silently support the "block" action for http-request
10083 - CLEANUP: proxy: rename "block_cond" to "block_rules"
10084 - MEDIUM: http: emulate "block" rules using "http-request" rules
10085 - MINOR: http: remove the now unused loop over "block" rules
10086 - MEDIUM: http: factorize the "auth" action of http-request and stats
10087 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
10088 - MINOR: config: add minimum support for emitting warnings only once
10089 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
10090 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
10091 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
10092 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
10093 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
10094 - BUILD: config: remove a warning with clang
10095 - BUG/MAJOR: http: connection setup may stall on balance url_param
10096 - BUG/MEDIUM: http/session: disable client-side expiration only after body
10097 - BUG/MEDIUM: http: correctly report request body timeouts
10098 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
10099 - MEDIUM: listener: make the accept function more robust against pauses
10100 - BUILD: syscalls: remove improper inline statement in front of syscalls
10101 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
10102 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
10103 - DOC: add some explanation on the shared cache build options in the readme.
10104 - MEDIUM: proxy: only adjust the backend's bind-process when already set
10105 - MEDIUM: config: limit nbproc to the machine's word size
10106 - MEDIUM: config: check the bind-process settings according to nbproc
10107 - MEDIUM: listener: parse the new "process" bind keyword
10108 - MEDIUM: listener: inherit the process mask from the proxy
10109 - MAJOR: listener: only start listeners bound to the same processes
10110 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
10111 - CLEANUP: config: set the maxaccept value for peers listeners earlier
10112 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
10113 - BUG/MINOR: checks: correctly configure the address family and protocol
10114 - MINOR: tools: split is_addr() and is_inet_addr()
10115 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
10116 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
10117 - MEDIUM: checks: only complain about the missing port when the check uses TCP
10118 - MEDIUM: unix: implement support for Linux abstract namespace sockets
10119 - DOC: map_beg was missing from the table of map_* converters
10120 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
10121 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
10122 - BUILD: remove the obsolete BSD and OSX makefiles
10123 - MEDIUM: unix: avoid a double connect probe when no data are sent
10124 - DOC: stop referencing the slow git repository in the README
10125 - BUILD: only build the systemd wrapper on Linux 2.6 and above
10126 - DOC: update roadmap with completed tasks
10127 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
10128
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200101292014/04/26 : 1.5-dev24
10130 - MINOR: pattern: find element in a reference
10131 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
10132 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
10133 - DOC: Full section dedicated to the converters
10134 - MEDIUM: http: register http-request and http-response keywords
10135 - BUG/MINOR: compression: correctly report incoming byte count
10136 - BUG/MINOR: http: don't report server aborts as client aborts
10137 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
10138 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
10139 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
10140 - BUG/MAJOR: http: fix timeouts during data forwarding
10141 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
10142 - MEDIUM: http: move skipping of 100-continue earlier
10143 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
10144 - CLEANUP: general: get rid of all old occurrences of "session *t"
10145 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
10146 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
10147 - MEDIUM: http: enable analysers to have keep-alive on stats
10148 - REORG: http: move HTTP Connection response header parsing earlier
10149 - MINOR: stats: always emit HTTP/1.1 in responses
10150 - MINOR: http: add capture.req.ver and capture.res.ver
10151 - MINOR: checks: add a new global max-spread-checks directive
10152 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
10153 - MINOR: http: implement the max-keep-alive-queue setting
10154 - DOC: fix alphabetic order of tcp-check
10155 - MINOR: connection: add a new error code for SSL with heartbeat
10156 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
10157 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
10158 - BUILD: http: remove a warning on strndup
10159 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
10160 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
10161 - MINOR: ssl: finally catch the heartbeats missing the padding
10162
Willy Tarreau8317b282014-04-23 01:49:41 +0200101632014/04/23 : 1.5-dev23
10164 - BUG/MINOR: reject malformed HTTP/0.9 requests
10165 - MINOR: systemd wrapper: re-execute on SIGUSR2
10166 - MINOR: systemd wrapper: improve logging
10167 - MINOR: systemd wrapper: propagate exit status
10168 - BUG/MINOR: tcpcheck connect wrong behavior
10169 - MEDIUM: proxy: support use_backend with dynamic names
10170 - MINOR: stats: Enhancement to stats page to provide information of last session time.
10171 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
10172 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
10173 - DOC: fix fetching samples syntax
10174 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
10175 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
10176 - DOC: fix typo
10177 - CLEANUP: code style: use tabs to indent codes instead of spaces
10178 - DOC: fix a few config typos.
10179 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
10180 - DOC: lowercase format string in unique-id
10181 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
10182 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
10183 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
10184 - BUG/MINOR: build: handle whitespaces in wc -l output
10185 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
10186 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
10187 - BUG/MEDIUM: map: The map parser includes blank lines.
10188 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
10189 - MINOR: standard: add function "encode_chunk"
10190 - BUG/MINOR: http: fix encoding of samples used in http headers
10191 - MINOR: sample: add hex converter
10192 - MEDIUM: sample: change the behavior of the bin2str cast
10193 - MAJOR: auth: Change the internal authentication system.
10194 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
10195 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
10196 - MEDIUM: pattern: Change the prototype of the function pattern_register().
10197 - CONTRIB: ip6range: add a network IPv6 range to mask converter
10198 - MINOR: pattern: separe list element from the data part.
10199 - MEDIUM: pattern: add indexation function.
10200 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
10201 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
10202 - MINOR: sample: dont call the sample cast function "c_none"
10203 - MINOR: standard: Add function for converting cidr to network mask.
10204 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
10205 - MEDIUM: sample/http_proto: Add new type called method
10206 - MINOR: dumpstats: Group map inline help
10207 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
10208 - MINOR: dumpstats: change map inline sentences
10209 - MINOR: dumpstats: change the "get map" display management
10210 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
10211 - MEDIUM: pattern: The match function browse itself the list or the tree.
10212 - MEDIUM: pattern: Index IPv6 addresses in a tree.
10213 - MEDIUM: pattern: add delete functions
10214 - MEDIUM: pattern: add prune function
10215 - MEDIUM: pattern: add sample lookup function.
10216 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
10217 - MINOR: map/pattern: The sample parser is stored in the pattern
10218 - MAJOR: pattern/map: Extends the map edition system in the patterns
10219 - MEDIUM: pattern: merge same pattern
10220 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
10221 - MINOR: pattern: Each pattern is identified by unique id.
10222 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
10223 - MINOR: pattern: The function "pattern_register()" is no longer used.
10224 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
10225 - MINOR: pattern: store configuration reference for each acl or map pattern.
10226 - MINOR: pattern: Each pattern expression element store the reference struct.
10227 - MINOR: dumpstats: display the reference for th key/pattern and value.
10228 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
10229 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
10230 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
10231 - MINOR: pattern/map/acl: Centralization of the file parsers
10232 - MINOR: pattern: Check if the file reference is not used with acl and map
10233 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
10234 - MEDIUM: dumpstats: Display error message during add of values.
10235 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
10236 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
10237 - MINOR: cli: Block the usage of the command "acl add" in many cases.
10238 - MINOR: doc: Update the documentation about the map and acl
10239 - MINOR: pattern: index duplicates
10240 - MINOR: configuration: File and line propagation
10241 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
10242 - MINOR: standard: Disable ip resolution during the runtime
10243 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
10244 - MINOR: pattern: forbid dns resolutions
10245 - DOC: document "get map" / "get acl" on the CLI
10246 - MEDIUM: acl: Change the acl register struct
10247 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
10248 - DOC: pattern: pattern organisation schematics
10249 - MINOR: pattern/cli: Update used terms in documentation and cli
10250 - MINOR: cli: remove information about acl or map owner.
10251 - MINOR: session: don't always assume there's a listener
10252 - MINOR: pattern: Add function to prune and reload pattern list.
10253 - MINOR: standard: Add ipv6 support in the function url2sa().
10254 - MEDIUM: config: Dynamic sections.
10255 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
10256 - MINOR: http: Add the "language" converter to for use with accept-language
10257 - BUG/MINOR: log: Don't dump empty unique-id
10258 - BUG/MAJOR: session: fix a possible crash with src_tracked
10259 - DOC: Update "language" documentation
10260 - MINOR: http: add the function "del-header" to the directives http-request and http-response
10261 - DOC: add some information on capture.(req|res).hdr
10262 - MINOR: http: capture.req.method and capture.req.uri
10263 - MINOR: http: optimize capture.req.method and capture.req.uri
10264 - MINOR: session: clean up the connection free code
10265 - BUG/MEDIUM: checks: immediately report a connection success
10266 - MEDIUM: connection: don't use real send() flags in snd_buf()
10267 - OPTIM: ssl: implement dynamic record size adjustment
10268 - MINOR: stats: report exact last session time in backend too
10269 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
10270 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
10271 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
10272 - MINOR: channel: add the date of last read in the channel
10273 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
10274 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
10275 - MINOR: config: make the stream interface idle timer user-configurable
10276 - MINOR: config: add global directives to set default SSL ciphers
10277 - MINOR: sample: add a rand() sample fetch to return a sample.
10278 - BUG/MEDIUM: config: immediately abort if peers section has no name
10279 - BUG/MINOR: ssl: fix syntax in config error message
10280 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
10281 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
10282 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
10283 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
10284 - MEDIUM: acl: fix pattern type for payload / payload_lv
10285 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
10286 - BUG/MEDIUM: compression: fix the output type of the compressor name
10287 - BUG/MEDIUM: http: don't start to forward request data before the connect
10288 - MINOR: http: release compression context only in http_end_txn()
10289 - MINOR: protect ebimtree/ebistree against multiple inclusions
10290 - MEDIUM: proxy: create a tree to store proxies by name
10291 - MEDIUM: proxy: make findproxy() use trees to look up proxies
10292 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
10293 - MEDIUM: stick-table: lookup table names using trees.
10294 - MEDIUM: config: faster lookup for duplicated proxy name
10295 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
10296 - MINOR: sample: move smp_to_type to sample.c
10297 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
10298 - REORG: cfgparse: move server keyword parsing to server.c
10299 - BUILD: adjust makefile for AIX 5.1
10300 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
10301 - CLEANUP: pattern: move array definitions to proto/ and not types/
10302 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
10303 - BUILD: ssl: previous patch failed
10304 - BUILD/MEDIUM: standard: get rid of the last strcpy()
10305 - BUILD/MEDIUM: standard: get rid of sprintf()
10306 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
10307 - BUILD/MEDIUM: checks: get rid of sprintf()
10308 - BUILD/MEDIUM: http: remove calls to sprintf()
10309 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
10310 - BUILD/MINOR: ssl: remove one call to sprintf()
10311 - MEDIUM: http: don't reject anymore message bodies not containing the url param
10312 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
10313 - CLEANUP: http: rename http_process_request_body()
10314 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
10315 - MINOR: http: make msg->eol carry the last CRLF length
10316 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
10317 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
10318 - MAJOR: http: don't update msg->sov anymore while processing the body
10319 - MINOR: http: add a small helper to compute the amount of body bytes present
10320 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
10321 - MINOR: http: add a small helper to compute how far to rewind to find URI
10322 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
10323 - MAJOR: http: reset msg->sov after headers are forwarded
10324 - MEDIUM: http: forward headers again while waiting for connection to complete
10325 - BUG/MINOR: http: deinitialize compression after a parsing error
10326 - BUG/MINOR: http: deinitialize compression after a compression error
10327 - MEDIUM: http: headers must be forwarded even if data was already inspected
10328 - MAJOR: http: re-enable compression on chunked encoding
10329 - MAJOR: http/compression: fix chunked-encoded response processing
10330 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
10331 - MEDIUM: http: start to centralize the forwarding code
10332 - MINOR: http: further cleanups of response forwarding function
10333 - MEDIUM: http: only allocate the temporary compression buffer when needed
10334 - MAJOR: http: centralize data forwarding in the request path
10335 - CLEANUP: http: document the response forwarding states
10336 - CLEANUP: http: remove all calls to http_silent_debug()
10337 - DOC: internal: add some reminders about HTTP parsing and pointer states
10338 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
10339 - BUG/MINOR: stats: last session was not always set
10340 - DOC: add pointer to the Cyril's HTML doc in the README
10341 - MEDIUM: config: relax use_backend check to make the condition optional
10342 - MEDIUM: config: report misplaced http-request rules
10343 - MEDIUM: config: report misplaced use-server rules
10344 - DOC: update roadmap with what was done.
10345
Willy Tarreau1a34d572014-02-03 00:41:29 +0100103462014/02/03 : 1.5-dev22
10347 - MEDIUM: tcp-check new feature: connect
10348 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
10349 - MINOR: ssl: handshake optim for long certificate chains.
10350 - BUG/MINOR: pattern: pattern comparison executed twice
10351 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
10352 - BUG/MEDIUM: pattern: Segfault in binary parser
10353 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
10354 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
10355 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
10356 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
10357 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
10358 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
10359 - MINOR: doc: Bad cli function name.
10360 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
10361 - BUILD: last release inadvertently prepended a "+" in front of the date
10362 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
10363 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
10364 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
10365 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
10366 - MINOR: http: try to stick to same server after status 401/407
10367 - BUG/MINOR: http: always disable compression on HTTP/1.0
10368 - OPTIM: poll: restore polling after a poll/stop/want sequence
10369 - OPTIM: http: don't stop polling for read on the client side after a request
10370 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
10371 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
10372 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
10373 - BUG/MINOR: stream-int: do not clear the owner upon unregister
10374 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
10375 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
10376 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
10377 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
10378 - OPTIM: session: set the READ_DONTWAIT flag when connecting
10379 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
10380 - MINOR: session: factor out the connect time measurement
10381 - MEDIUM: session: prepare to support earlier transitions to the established state
10382 - MEDIUM: stream-int: make si_connect() return an established state when possible
10383 - MINOR: checks: use an inline function for health_adjust()
10384 - OPTIM: session: put unlikely() around the freewheeling code
10385 - MEDIUM: config: report a warning when multiple servers have the same name
10386 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
10387 - BUILD/MINOR: listener: remove a glibc warning on accept4()
10388 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
10389 - BUILD: listener: fix recent accept4() again
10390 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
10391 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
10392 - MEDIUM: listener: fix polling management in the accept loop
10393 - MINOR: protocol: improve the proto->drain() API
10394 - MINOR: connection: add a new conn_drain() function
10395 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
10396 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
10397 - MINOR: connection: add more error codes to report connection errors
10398 - MEDIUM: tcp: report connection error at the connection level
10399 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
10400 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
10401 - DOC: fix misleading information about SIGQUIT
10402 - BUG/MAJOR: fix freezes during compression
10403 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
10404 - BUILD: fix VERDATE exclusion regex
10405 - CLEANUP: polling: rename "spec_e" to "state"
10406 - DOC: add a diagram showing polling state transitions
10407 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
10408 - REORG: polling: rename "fd_spec" to "fd_cache"
10409 - REORG: polling: rename the cache allocation functions
10410 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
10411 - MAJOR: polling: rework the whole polling system
10412 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
10413 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
10414 - MEDIUM: connection: add check for readiness in I/O handlers
10415 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
10416 - MINOR: stream-interface: no need to call fd_stop_both() on error
10417 - MEDIUM: connection: no need to recheck FD state
10418 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
10419 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
10420 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
10421 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
10422 - MEDIUM: polling: centralize polled events processing
10423 - MINOR: polling: create function fd_compute_new_polled_status()
10424 - MINOR: cli: add more information to the "show info" output
10425 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
10426 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
10427 - REORG: stats: move the stats socket states to dumpstats.c
10428 - MINOR: cli: add the new "show pools" command
10429 - BUG/MEDIUM: counters: flush content counters after each request
10430 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
10431 - MINOR: tools: add very basic support for composite pointers
10432 - MEDIUM: counters: stop relying on session flags at all
10433 - BUG/MINOR: cli: fix missing break in command line parser
10434 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
10435 - MAJOR: http: update connection mode configuration
10436 - MEDIUM: http: make keep-alive + httpclose be passive mode
10437 - MAJOR: http: switch to keep-alive mode by default
10438 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
10439 - BUG/MEDIUM: listener: improve detection of non-working accept4()
10440 - BUILD: listener: add fcntl.h and unistd.h
10441 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
10442
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100104432013/12/17 : 1.5-dev21
10444 - MINOR: stats: don't use a monospace font to report numbers
10445 - MINOR: session: remove debugging code
10446 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
10447 - MEDIUM: http: make option http_proxy automatically rewrite the URL
10448 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
10449 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
10450 - BUG/MEDIUM: checks: servers must not start in slowstart mode
10451 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
10452 - MEDIUM: stream-int: implement a very simplistic idle connection manager
10453 - DOC: update the ROADMAP file
10454
Willy Tarreau11f64d62013-12-16 02:32:37 +0100104552013/12/16 : 1.5-dev20
10456 - DOC: add missing options to the manpage
10457 - DOC: add manpage references to all system calls
10458 - DOC: update manpage reference to haproxy-en.txt
10459 - DOC: remove -s and -l options from the manpage
10460 - DOC: missing information for the "description" keyword
10461 - DOC: missing http-send-name-header keyword in keyword table
10462 - MINOR: tools: function my_memmem() to lookup binary contents
10463 - MEDIUM: checks: add send/expect tcp based check
10464 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
10465 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
10466 - DOC: Documentation for hashing function, with test results.
10467 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
10468 - BUILD: ssl: compilation issue with openssl v0.9.6.
10469 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
10470 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
10471 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
10472 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
10473 - CLEANUP: session: remove event_accept() which was not used anymore
10474 - BUG/MINOR: deinit: free fdinfo while doing cleanup
10475 - DOC: minor typo fix in documentation
10476 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
10477 - BUG/MINOR: use the same check condition for server as other algorithms
10478 - DOC: fix typo in comments
10479 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
10480 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
10481 - MINOR: buffer: align the last output line of buffer_dump()
10482 - MINOR: buffer: align the last output line if there are less than 8 characters left
10483 - DOC: stick-table: modify the description
10484 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
10485 - CLEANUP: code style: use tabs to indent codes
10486 - DOC: checkcache: block responses with cacheable cookies
10487 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
10488 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
10489 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
10490 - LOW: systemd-wrapper: Write debug information to stdout
10491 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
10492 - MEDIUM: http: add IPv6 support for "set-tos"
10493 - DOC: ssl: update build instructions to use new SSL_* variables
10494 - BUILD/MINOR: systemd: fix compiler warning about unused result
10495 - url32+src - like base32+src but whole url including parameters
10496 - BUG/MINOR: fix forcing fastinter in "on-error"
10497 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
10498 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
10499 - MEDIUM: Split up struct server's check element
10500 - MEDIUM: Move result element to struct check
10501 - MEDIUM: Paramatise functions over the check of a server
10502 - MEDIUM: cfgparse: Factor out check initialisation
10503 - MEDIUM: Add state to struct check
10504 - MEDIUM: Move health element to struct check
10505 - MEDIUM: Add helper for task creation for checks
10506 - MEDIUM: Add helper function for failed checks
10507 - MEDIUM: Log agent fail, stopped or down as info
10508 - MEDIUM: Remove option lb-agent-chk
10509 - MEDIUM: checks: Add supplementary agent checks
10510 - MEDIUM: Do not mark a server as down if the agent is unavailable
10511 - MEDIUM: Set rise and fall of agent checks to 1
10512 - MEDIUM: Add enable and disable agent unix socket commands
10513 - MEDIUM: Add DRAIN state and report it on the stats page
10514 - BUILD/MINOR: missing header file
10515 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
10516 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
10517 - MINOR: http: some exported functions were not in the header file
10518 - MINOR: http: change url_decode to return the size of the decoded string.
10519 - BUILD/MINOR: missing header file
10520 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
10521 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
10522 - MINOR: sample: export the generic sample conversion parser
10523 - MINOR: sample: export sample_casts
10524 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
10525 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
10526 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
10527 - MINOR: tools: Add a function to convert buffer to an ipv6 address
10528 - MINOR: acl: export acl arrays
10529 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
10530 - MINOR: acl: Extract the pattern matching function
10531 - MINOR: sample: Define new struct sample_storage
10532 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
10533 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
10534 - MEDIUM: pattern: create pattern expression
10535 - MEDIUM: pattern: rename "acl" prefix to "pat"
10536 - MEDIUM: sample: let the cast functions set their output type
10537 - MINOR: sample: add a private field to the struct sample_conv
10538 - MINOR: map: Define map types
10539 - MEDIUM: sample: add the "map" converter
10540 - MEDIUM: http: The redirect strings follows the log format rules.
10541 - BUG/MINOR: acl: acl parser does not recognize empty converter list
10542 - BUG/MINOR: map: The map list was declared in the map.h file
10543 - MINOR: map: Cleanup the initialisation of map descriptors.
10544 - MEDIUM: map: merge identical maps
10545 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
10546 - BUG/MEDIUM: map: Bad map file parser
10547 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
10548 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
10549 - MINOR: map: export map_get_reference() function
10550 - MINOR: pattern: Each pattern sets the expected input type
10551 - MEDIUM: acl: Last patch change the output type
10552 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
10553 - MINOR: standard: The function parse_binary() can use preallocated buffer
10554 - MINOR: regex: Change the struct containing regex
10555 - MINOR: regex: Copy the original regex expression into string.
10556 - MINOR: pattern: add support for compiling patterns for lookups
10557 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
10558 - MINOR: map: export parse output sample functions
10559 - MINOR: pattern: add function to lookup a specific entry in pattern list
10560 - MINOR: pattern/map: Each pattern must free the associated sample
10561 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
10562 - MEDIUM: map: dynamic manipulation of maps
10563 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
10564 - BUG/MINOR: log: junk at the end of syslog packet
10565 - MINOR: Makefile: provide cscope rule
10566 - DOC: compression: chunk are not compressed anymore
10567 - MEDIUM: session: disable lingering on the server when the client aborts
10568 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
10569 - DOC: remove the comment saying that SSL certs are not checked on the server side
10570 - BUG: counters: third counter was not stored if others unset
10571 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
10572 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
10573 - BUG/MAJOR: http: sample prefetch code was not properly migrated
10574 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
10575 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
10576 - OPTIM: splicing: use splice() for the last block when relevant
10577 - MEDIUM: sample: handle comma-delimited converter list
10578 - MINOR: sample: fix sample_process handling of unstable data
10579 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
10580 - MINOR: sample: add a new "date" fetch to return the current date
10581 - MINOR: samples: add the http_date([<offset>]) sample converter.
10582 - DOC: minor improvements to the part on the stats socket.
10583 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
10584 - MINOR: payload: split smp_fetch_rdp_cookie()
10585 - MINOR: counters: factor out smp_fetch_sc*_tracked
10586 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
10587 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
10588 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
10589 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
10590 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
10591 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
10592 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
10593 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
10594 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
10595 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
10596 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
10597 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
10598 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
10599 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
10600 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
10601 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
10602 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
10603 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
10604 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
10605 - MINOR: session: make the number of stick counter entries more configurable
10606 - MEDIUM: counters: support passing the counter number as a fetch argument
10607 - MEDIUM: counters: support looking up a key in an alternate table
10608 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
10609 - MINOR: cli: make it possible to enter multiple values at once with "set table"
10610 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
10611 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
10612 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
10613 - MINOR: config: warn when a server with no specific port uses rdp-cookie
10614 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
10615 - DOC: add a mention about the limited chunk size
10616 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
10617 - MEDIUM: stick-tables: flush old entries upon soft-stop
10618 - MINOR: tcp: add new "close" action for tcp-response
10619 - MINOR: payload: provide the "res.len" fetch method
10620 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
10621 - MINOR: http: compute response time before processing headers
10622 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
10623 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
10624 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
10625 - BUG/MEDIUM: session: risk of crash on out of memory conditions
10626 - BUG/MINOR: peers: set the accept date in outgoing connections
10627 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
10628 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
10629 - MINOR: acl: add a warning when an ACL keyword is used without any value
10630 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
10631 - BUG/MINOR: acl: remove patterns from the tree before freeing them
10632 - MEDIUM: backend: add support for the wt6 hash
10633 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
10634 - OPTIM/MINOR: mark the source address as already known on accept()
10635 - BUG/MINOR: stats: don't count tarpitted connections twice
10636 - CLEANUP: http: homogenize processing of denied req counter
10637 - CLEANUP: http: merge error handling for req* and http-request *
10638 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
10639 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
10640 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
10641 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
10642 - MINOR: stats: report correct throttling percentage for servers in slowstart
10643 - OPTIM: connection: fold the error handling with handshake handling
10644 - MINOR: peers: accept to learn strings of different lengths
10645 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
10646 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
10647 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
10648 - BUG/MINOR: connection: fix typo in error message report
10649 - BUG/MINOR: backend: fix target address retrieval in transparent mode
10650 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
10651 - BUG/MINOR: log: fix log-format parsing errors
10652 - DOC: add some information about how to apply converters to samples
10653 - MINOR: acl/pattern: use types different from int to clarify who does what.
10654 - MINOR: pattern: import acl_find_match_name() into pattern.h
10655 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
10656 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
10657 - BUG/MINOR: http: usual deinit stuff in last commit
10658 - BUILD: log: silent a warning about isblank() with latest patches
10659 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
10660 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
10661 - BUG/MINOR: checks: don't consider errno and use conn->err_code
10662 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
10663 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
10664 - BUG/MINOR: tcp: check that no error is pending during a connect probe
10665 - BUG/MINOR: connection: check EINTR when sending a PROXY header
10666 - MEDIUM: connection: set the socket shutdown flags on socket errors
10667 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
10668 - MINOR: connection: clear errno prior to checking for errors
10669 - BUG/MINOR: checks: do not trust errno in write event before any syscall
10670 - MEDIUM: checks: centralize error reporting
10671 - OPTIM: checks: don't poll on recv when using plain TCP connects
10672 - OPTIM: checks: avoid setting SO_LINGER twice
10673 - MINOR: tools: add a generic binary hex string parser
10674 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
10675 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
10676 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
10677 - BUG/MINOR: acl: fix sample expression error reporting
10678 - BUG/MINOR: checks: tcp-check actions are enums, not flags
10679 - MEDIUM: checks: make tcp-check perform multiple send() at once
10680 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
10681 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
10682 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
10683 - CLEANUP: stream_interface: remove unused field err_loc
10684 - MEDIUM: stats: don't use conn->xprt_st anymore
10685 - MINOR: session: add a simple function to retrieve a session from a task
10686 - MEDIUM: stats: don't use conn->xprt_ctx anymore
10687 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
10688 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
10689 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
10690 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
10691 - MAJOR: stats: move the HTTP stats handling to its applet
10692 - MEDIUM: stats: move request argument processing to the final step
10693 - MEDIUM: session: detect applets from the session by using s->target
10694 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
10695 - MAJOR: session: pass applet return traffic through the response analysers
10696 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
10697 - MINOR: stream-int: make the shutr/shutw functions void
10698 - MINOR: obj: provide a safe and an unsafe access to pointed objects
10699 - MINOR: connection: add a field to store an object type
10700 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
10701 - MEDIUM: stream interface: move the peers' ptr into the applet context
10702 - MINOR: stream-interface: move the applet context to its own struct
10703 - MINOR: obj: introduce a new type appctx
10704 - MINOR: stream-int: rename ->applet to ->appctx
10705 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
10706 - MINOR: stream-int: add a new pointer to the end point
10707 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
10708 - MAJOR: stream interface: remove the ->release function pointer
10709 - MEDIUM: stream-int: make ->end point to the connection or the appctx
10710 - CLEANUP: stream-int: remove obsolete si_ctrl function
10711 - MAJOR: stream-int: stop using si->conn and use si->end instead
10712 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
10713 - MEDIUM: session: attach incoming connection to target on embryonic sessions
10714 - MINOR: connection: add conn_init() to (re)initialize a connection
10715 - MINOR: checks: call conn_init() to properly initialize the connection.
10716 - MINOR: peers: make use of conn_init() to initialize the connection
10717 - MINOR: session: use conn_init() to initialize the connections
10718 - MINOR: http: use conn_init() to reinitialize the server connection
10719 - MEDIUM: connection: replace conn_prepare with conn_assign
10720 - MINOR: get rid of si_takeover_conn()
10721 - MINOR: connection: add conn_new() / conn_free()
10722 - MAJOR: connection: add two new flags to indicate readiness of control/transport
10723 - MINOR: stream-interface: introduce si_reset() and si_set_state()
10724 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
10725 - MINOR: connection: replace conn_assign with conn_attach
10726 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
10727 - MAJOR: stream interface: dynamically allocate the outgoing connection
10728 - MEDIUM: connection: move the send_proxy offset to the connection
10729 - MINOR: connection: check for send_proxy during the connect(), not the SI
10730 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
10731 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
10732 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
10733 - MAJOR: stream-interface: dynamically allocate the applet context
10734 - MEDIUM: session: automatically register the applet designated by the target
10735 - MEDIUM: stats: delay appctx initialization
10736 - CLEANUP: peers: use less confusing state/status code names
10737 - MEDIUM: peers: delay appctx initialization
10738 - MINOR: stats: provide some appctx information in "show sess all"
10739 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
10740 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
10741 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
10742 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
10743 - DIET/MINOR: session: reduce the struct session size by 8 bytes
10744 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
10745 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
10746 - MINOR: http: switch the http state to an enum
10747 - MINOR: http: use an enum for the auth method in http_auth_data
10748 - DIET/MINOR: task: reduce struct task size by 8 bytes
10749 - MINOR: stream_interface: add reporting of ressouce allocation errors
10750 - MINOR: session: report lack of resources using the new stream-interface's error code
10751 - BUILD: simplify the date and version retrieval in the makefile
10752 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
10753 - BUILD: use format tags in VERDATE and SUBVERS files
10754 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
10755 - CLEANUP: check: server port is unsigned
10756 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
10757 - MINOR: tools: buf2ip6 must not modify output on failure
10758 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
10759 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
10760 - MINOR: arg: improve wording on error reporting
10761 - BUG/MEDIUM: sample: simplify and fix the argument parsing
10762 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
10763 - MEDIUM: acl: fix the initialization order of the ACL expression
10764 - CLEANUP: acl: remove useless blind copy-paste from sample converters
10765 - TESTS: add regression tests for ACL and sample expression parsers
10766 - BUILD: time: adapt the type of TV_ETERNITY to the local system
10767 - MINOR: chunks: allocate the trash chunks before parsing the config
10768 - BUILD: definitely silence some stupid GCC warnings
10769 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
10770 - MINOR: checks: improve handling of the servers tracking chain
10771 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
10772 - MINOR: checks: use an enum instead of flags to report a check result
10773 - MINOR: checks: rename the state flags
10774 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
10775 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
10776 - MINOR: checks: fix agent check interval computation
10777 - MINOR: checks: add a PAUSED state for the checks
10778 - MINOR: checks: create the agent tasks even when no check is configured
10779 - MINOR: checks: add a flag to indicate what check is an agent
10780 - MEDIUM: checks: enable agent checks even if health checks are disabled
10781 - BUG/MEDIUM: checks: ensure we can enable a server after boot
10782 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
10783 - BUG/MAJOR: session: repair tcp-request connection rules
10784 - BUILD: fix SUBVERS extraction in the Makefile
10785 - BUILD: pattern: silence a warning about uninitialized value
10786 - BUILD: log: fix build warning on Solaris
10787 - BUILD: dumpstats: fix build error on Solaris
10788 - DOC: move option pgsql-check to the correct place
10789 - DOC: move option tcp-check to the proper place
10790 - MINOR: connection: add simple functions to report connection readiness
10791 - MEDIUM: connection: centralize handling of nolinger in fd management
10792 - OPTIM: http: set CF_READ_DONTWAIT on response message
10793 - OPTIM: http: do not re-enable reading on client side while closing the server side
10794 - MINOR: config: add option http-keep-alive
10795 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
10796 - MAJOR: stream-int: handle the connection reuse in si_connect()
10797 - MAJOR: http: add the keep-alive transition on the server side
10798 - MAJOR: backend: enable connection reuse
10799 - MINOR: http: add option prefer-last-server
10800 - MEDIUM: http: do not report connection errors for second and further requests
10801
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200108022013/06/17 : 1.5-dev19
10803 - MINOR: stats: remove the autofocus on the scope input field
10804 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
10805 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
10806 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
10807 - MEDIUM: ssl: improve crt-list format to support negation
10808 - BUG: ssl: fix crt-list for clients not supporting SNI
10809 - MINOR: stats: show soft-stopped servers in different color
10810 - BUG/MINOR: config: "source" does not work in defaults section
10811 - BUG: regex: fix pcre compile error when using JIT
10812 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
10813 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
10814 - MINOR: show PCRE version and JIT status in -vv
10815 - BUG/MINOR: jit: don't rely on USE flag to detect support
10816 - DOC: readme: add suggestion to link against static openssl
10817 - DOC: examples: provide simplified ssl configuration
10818 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
10819 - MINOR: tproxy: add support for FreeBSD
10820 - MINOR: tproxy: add support for OpenBSD
10821 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
10822 - CLEANUP: fix minor typo in error message.
10823 - CLEANUP: fix missing include <string.h> in proto/listener.h
10824 - CLEANUP: protect checks.h from multiple inclusions
10825 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
10826 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
10827 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
10828 - BUG/MEDIUM: splicing is broken since 1.5-dev12
10829 - BUG/MAJOR: acl: add implicit arguments to the resolve list
10830 - BUG/MINOR: tcp: fix error reporting for TCP rules
10831 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
10832 - MINOR: stick-table: allow to allocate an entry without filling it
10833 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
10834 - MINOR: session: only call http_send_name_header() when changing the server
10835 - MINOR: tcp: report the erroneous word in tcp-request track*
10836 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
10837 - BUG/MEDIUM: log: fix regression on log-format handling
10838 - MEDIUM: log: report file name, line number, and directive name with log-format errors
10839 - BUG/MINOR: cli: "clear table" did not work anymore without a key
10840 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
10841 - BUG/MAJOR: http: compression still has defects on chunked responses
10842 - BUG/MINOR: stats: fix confirmation links on the stats interface
10843 - BUG/MINOR: stats: the status bar does not appear anymore after a change
10844 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
10845 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
10846 - BUG/MINOR: fix unterminated ACL array in compression
10847 - BUILD: last fix broke non-linux platforms
10848 - MINOR: init: indicate the SSL runtime version on -vv.
10849 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
10850 - BUILD: stdbool is not portable (again)
10851 - DOC: readme: add a small reminder about restrictions to respect in the code
10852 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
10853 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
10854 - DOC: fix wrong copy-paste in the rspdel example
10855 - MINOR: counters: make it easier to extend the amount of tracked counters
10856 - MEDIUM: counters: add support for tracking a third counter
10857 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
10858 - BUG/MAJOR: http: always ensure response buffer has some room for a response
10859 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
10860 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
10861 - MINOR: log: add a new flag 'L' for locally processed requests
10862 - MINOR: http: add full-length header fetch methods
10863 - MEDIUM: protocol: implement a "drain" function in protocol layers
10864 - MEDIUM: http: add a new "http-response" ruleset
10865 - MEDIUM: http: add the "set-nice" action to http-request and http-response
10866 - MEDIUM: log: add a log level override value in struct session
10867 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
10868 - MEDIUM: http: add support for "set-tos" in http-request/http-response
10869 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
10870 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
10871 - MEDIUM: acl: automatically detect the type of certain fetches
10872 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
10873 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
10874 - DOC: major reorg of ACL + sample fetch
10875 - CLEANUP: http: remove the bogus urlp_ip ACL match
10876 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
10877 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
10878 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
10879 - DOC: update ROADMAP file
10880 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
10881 - MEDIUM: stats: add proxy name filtering on the statistic page
10882
Willy Tarreau289dd922013-04-03 02:26:31 +0200108832013/04/03 : 1.5-dev18
10884 - DOCS: Add explanation of intermediate certs to crt paramater
10885 - DOC: typo and minor fixes in compression paragraph
10886 - MINOR: config: http-request configuration error message misses new keywords
10887 - DOC: minor typo fix in documentation
10888 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
10889 - MEDIUM: ssl: add bind-option "strict-sni"
10890 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
10891 - MEDIUM: regex: Use PCRE JIT in acl
10892 - DOC: simplify bind option "interface" explanation
10893 - DOC: tfo: bump required kernel to linux-3.7
10894 - BUILD: add explicit support for TFO with USE_TFO
10895 - MEDIUM: New cli option -Ds for systemd compatibility
10896 - MEDIUM: add haproxy-systemd-wrapper
10897 - MEDIUM: add systemd service
10898 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
10899 - BUG/MEDIUM: remove supplementary groups when changing gid
10900 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
10901 - BUG/MINOR: Correct logic in cut_crlf()
10902 - CLEANUP: checks: Make desc argument to set_server_check_status const
10903 - CLEANUP: dumpstats: Make cli_release_handler() static
10904 - MEDIUM: server: Break out set weight processing code
10905 - MEDIUM: server: Allow relative weights greater than 100%
10906 - MEDIUM: server: Tighten up parsing of weight string
10907 - MEDIUM: checks: Add agent health check
10908 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
10909 - BUG/MINOR: time: frequency counters are not totally accurate
10910 - BUG/MINOR: http: don't process abortonclose when request was sent
10911 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
10912 - BUG/MEDIUM: checks: ignore late resets after valid responses
10913 - DOC: fix bogus recommendation on usage of gpc0 counter
10914 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
10915 - MINOR: signal: don't block SIGPROF by default
10916 - OPTIM: epoll: make use of EPOLLRDHUP
10917 - OPTIM: splice: detect shutdowns and avoid splice() == 0
10918 - OPTIM: splice: assume by default that splice is working correctly
10919 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
10920 - BUG/MEDIUM: peers: only the last peers section was used by tables
10921 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
10922 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
10923 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
10924 - BUG/MINOR: config: free peer's address when exiting upon parsing error
10925 - BUG/MINOR: config: check the proper variable when parsing log minlvl
10926 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
10927 - BUG/MINOR: cli: show sess should always validate s->listener
10928 - BUG/MINOR: log: improper NULL return check on utoa_pad()
10929 - CLEANUP: http: remove a useless null check
10930 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
10931 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
10932 - BUG/MEDIUM: tools: off-by-one in quote_arg()
10933 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
10934 - BUG/MINOR: unix: remove the 'level' field from the ux struct
10935 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
10936 - CLEANUP: config: slowstart is never negative
10937 - CLEANUP: config: maxcompcpuusage is never negative
10938 - BUG/MEDIUM: log: emit '-' for empty fields again
10939 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
10940 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
10941 - BUILD: improve the makefile's support for libpcre
10942 - MEDIUM: halog: add support for counting per source address (-ic)
10943 - MEDIUM: tools: make str2sa_range support all address syntaxes
10944 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
10945 - MEDIUM: config: use str2sa_range() to parse server addresses
10946 - MEDIUM: config: use str2sa_range() to parse peers addresses
10947 - MINOR: tests: add a config file to ease address parsing tests.
10948 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
10949 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
10950 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
10951 - MINOR: config: report missing peers section name
10952 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
10953 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
10954 - MINOR: tools: prepare str2sa_range() to return an error message
10955 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
10956 - MINOR: tools: prepare str2sa_range() to accept a prefix
10957 - MEDIUM: tools: make str2sa_range() parse unix addresses too
10958 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
10959 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
10960 - MEDIUM: config: use str2sa_range() to parse log addresses
10961 - CLEANUP: tools: remove str2sun() which is not used anymore.
10962 - MEDIUM: config: add complete support for str2sa_range() in dispatch
10963 - MEDIUM: config: add complete support for str2sa_range() in server addr
10964 - MEDIUM: config: add complete support for str2sa_range() in 'server'
10965 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
10966 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
10967 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
10968 - CLEANUP: config: do not use multiple errmsg at once
10969 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
10970 - MAJOR: listener: support inheriting a listening fd from the parent
10971 - MAJOR: tools: support environment variables in addresses
10972 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
10973 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
10974 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
10975 - DOC: mention the new HTTP 307 and 308 redirect statues
10976 - MEDIUM: poll: do not use FD_* macros anymore
10977 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
10978 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
10979 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
10980 - BUILD: fix usual isdigit() warning on solaris
10981 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
10982 - OPTIM: buffer: remove one jump in buffer_count()
10983 - OPTIM: http: improve branching in chunk size parser
10984 - OPTIM: http: optimize the response forward state machine
10985 - BUILD: enable poll() by default in the makefile
10986 - BUILD: add explicit support for Mac OS/X
10987 - BUG/MAJOR: http: use a static storage for sample fetch context
10988 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
10989 - BUG/MAJOR: http: fix regression introduced by commit a890d072
10990 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
10991 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
10992 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
10993 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
10994 - MINOR: log: indicate it when some unreliable sample fetches are logged
10995 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
10996 - MINOR: backend: rename sample fetch functions and declare the sample keywords
10997 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
10998 - MINOR: listener: rename sample fetch functions and declare the sample keywords
10999 - MEDIUM: http: unify acl and sample fetch functions
11000 - MINOR: session: rename sample fetch functions and declare the sample keywords
11001 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
11002 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
11003 - MAJOR: acl: remove fetch argument validation from the ACL struct
11004 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
11005 - MINOR: payload: add new direction-explicit sample fetches
11006 - CLEANUP: acl: remove ACL hooks which were never used
11007 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
11008 - MINOR: sample: provide a function to report the name of a sample check point
11009 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
11010 - CLEANUP: acl: remove unused references to ACL_USE_*
11011 - MINOR: http: replace acl_parse_ver with acl_parse_str
11012 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
11013 - MAJOR: acl: add option -m to change the pattern matching method
11014 - MINOR: acl: remove the use_count in acl keywords
11015 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
11016 - MEDIUM: acl: support using sample fetches directly in ACLs
11017 - MEDIUM: http: remove val_usr() to validate user_lists
11018 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
11019 - MINOR: ssl: add support for the "alpn" bind keyword
11020 - MINOR: http: status code 303 is HTTP/1.1 only
11021 - MEDIUM: http: implement redirect 307 and 308
11022 - MINOR: http: status 301 should not be marked non-cacheable
11023
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100110242012/12/28 : 1.5-dev17
11025 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
11026 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
11027 - BUG/MINOR: stats: last fix was still wrong
11028 - BUG/MINOR: stats: http-request rules still don't cope with stats
11029 - BUG/MINOR: http: http-request add-header emits a corrupted header
11030 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
11031 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
11032 - BUILD: log: unused variable svid
11033 - CLEANUP: http: rename the misleading http_check_access_rule
11034 - MINOR: http: move redirect rule processing to its own function
11035 - REORG: config: move the http redirect rule parser to proto_http.c
11036 - MEDIUM: http: add support for "http-request redirect" rules
11037 - MEDIUM: http: add support for "http-request tarpit" rule
11038
Willy Tarreau69eda352012-12-24 16:48:14 +0100110392012/12/24 : 1.5-dev16
11040 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
11041 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
11042 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
11043 - MINOR: contrib: make the iprange tool grep for addresses
11044 - CLEANUP: polling: gcc doesn't always optimize constants away
11045 - OPTIM: poll: optimize fd management functions for low register count CPUs
11046 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
11047 - OPTIM: epoll: use a temp variable for intermediary flag computations
11048 - OPTIM: epoll: current fd does not count as a new one
11049 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
11050 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
11051 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
11052 - BUG/MINOR: stream_interface: don't return when the fd is already set
11053 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
11054 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
11055 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
11056 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
11057 - BUG/MINOR: http: don't abort client connection on premature responses
11058 - BUILD: no need to clean up when making git-tar
11059 - MINOR: log: add a tag for amount of bytes uploaded from client to server
11060 - BUG/MEDIUM: log: fix possible segfault during config parsing
11061 - MEDIUM: log: change a few log tokens to make them easier to remember
11062 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
11063 - MEDIUM: log-format: make the format parser more robust and more extensible
11064 - MINOR: sample: support cast from bool to string
11065 - MINOR: samples: add a function to fetch and convert any sample to a string
11066 - MINOR: log: add lf_text_len
11067 - MEDIUM: log: add the ability to include samples in logs
11068 - REORG: stats: massive code reorg and cleanup
11069 - REORG: stats: move the HTTP header injection to proto_http
11070 - REORG: stats: functions are now HTTP/CLI agnostic
11071 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
11072 - MINOR: chunks: centralize the trash chunk allocation
11073 - MEDIUM: stats: use hover boxes instead of title to report details
11074 - MEDIUM: stats: use multi-line tips to display detailed counters
11075 - MINOR: tools: simplify the use of the int to ascii macros
11076 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
11077 - MINOR: http: prepare to support more http-request actions
11078 - MINOR: log: make parse_logformat_string() take a const char *
11079 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
11080
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100110812012/12/12 : 1.5-dev15
11082 - DOC: add a few precisions on compression
11083 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
11084 - BUG/MINOR: ssl: One free session in cache remains unused.
11085 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
11086 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
11087 - MINOR: acl: add fetch for server session rate
11088 - BUG/MINOR: compression: Content-Type is case insensitive
11089 - MINOR: compression: disable on multipart or status != 200
11090 - BUG/MINOR: http: don't report client aborts as server errors
11091 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
11092 - MINOR: http: factor out the content-type checks
11093 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
11094 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
11095 - BUG/MINOR: http: disable compression when message has no body
11096 - MINOR: compression: make the stats a bit more robust
11097 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
11098 - MINOR: connection: don't remove failed handshake flags
11099 - MEDIUM: connection: add an error code in connections
11100 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
11101 - MEDIUM: connection: add error reporting for the PROXY protocol header
11102 - MEDIUM: connection: add error reporting for the SSL
11103 - DOC: document the connection error format in logs
11104 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
11105 - BUILD: stdbool is not portable
11106 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
11107 - BUG/MAJOR: raw_sock: must check error code on hangup
11108 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
11109 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
11110 - MINOR: stats: add a few more information on session dump
11111 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
11112 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
11113 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
11114 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
11115 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
11116 - CLEANUP: proto_tcp: use the same code to bind servers and backends
11117 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
11118 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
11119 - MEDIUM: proto_tcp: add support for tracking L7 information
11120 - MEDIUM: counters: add sc1_trackers/sc2_trackers
11121 - MINOR: http: add the "base32" pattern fetch function
11122 - MINOR: http: add the "base32+src" fetch method.
11123 - CLEANUP: session: use an array for the stick counters
11124 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
11125 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
11126 - BUG/MAJOR: connection: always recompute polling status upon I/O
11127 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
11128 - MINOR: config: improve error checking on TCP stick-table tracking
11129 - DOC: add some clarifications to the readme
11130
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100111312012/11/26 : 1.5-dev14
11132 - DOC: fix minor typos
11133 - BUG/MEDIUM: compression: does not forward trailers
11134 - MINOR: buffer_dump with ASCII
11135 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
11136 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
11137 - BUG/MINOR: checks: don't mark the FD as closed before transport close
11138 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
11139 - MINOR: cli: report the msg state in full text in "show sess $PTR"
11140 - CLEANUP: checks: rename some server check flags
11141 - MAJOR: checks: rework completely bogus state machine
11142 - BUG/MINOR: checks: slightly clean the state machine up
11143 - MEDIUM: checks: avoid waking the application up for pure TCP checks
11144 - MEDIUM: checks: close the socket as soon as we have a response
11145 - BUG/MAJOR: checks: close FD on all timeouts
11146 - MINOR: checks: fix recv polling after connect()
11147 - MEDIUM: connection: provide a common conn_full_close() function
11148 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
11149 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
11150 - MINOR: listeners: make the accept loop more robust when maxaccept==0
11151 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
11152 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
11153 - BUG/MINOR: stats: fix inversion of the report of a check in progress
11154 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
11155 - BUG/MEDIUM: connection: always disable polling upon error
11156 - MINOR: connection: abort earlier when errors are detected
11157 - BUG/MEDIUM: checks: report handshake failures
11158 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
11159 - MINOR: tcp: add support for the "v6only" bind option
11160 - MINOR: stats: also report the computed compression savings in html stats
11161 - MINOR: stats: report the total number of compressed responses per front/back
11162 - MINOR: tcp: add support for the "v4v6" bind option
11163 - DOC: stats: document the comp_rsp stats column
11164 - BUILD: buffer: fix another isprint() warning on solaris
11165 - MINOR: cli: add support for the "show sess all" command
11166 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
11167 - MINOR: cli: improve output format for show sess $ptr
11168
Willy Tarreauad15d122012-11-22 01:11:33 +0100111692012/11/22 : 1.5-dev13
11170 - BUILD: fix build issue without USE_OPENSSL
11171 - BUILD: fix compilation error with DEBUG_FULL
11172 - DOC: ssl: remove prefer-server-ciphers documentation
11173 - DOC: ssl: surround keywords with quotes
11174 - DOC: fix minor typo on http-send-name-header
11175 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
11176 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
11177 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
11178 - BUILD: report zlib support in haproxy -vv
11179 - DOC: compression: add some details and clean up the formatting
11180 - DOC: Change is_ssl acl to ssl_fc acl in example
11181 - DOC: make it clear what the HTTP request size is
11182 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
11183 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
11184 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
11185 - DOC: ssl: add 'ecdhe' statement on 'bind'
11186 - MEDIUM: ssl: add client certificate authentication support
11187 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
11188 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
11189 - DOC: ssl: add fetch and ACL 'client_cert'
11190 - MINOR: ssl: add ignore verify errors options
11191 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
11192 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
11193 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
11194 - MINOR: ssl: add fetches and ACLs to return verify errors
11195 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
11196 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
11197 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
11198 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
11199 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
11200 - MEDIUM: config: authorize frontend and listen without bind.
11201 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
11202 - DOC: ssl: add 'no-tls-tickets' statement documentation.
11203 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
11204 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
11205 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
11206 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
11207 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
11208 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
11209 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
11210 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
11211 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
11212 - MINOR: ssl: use bit fields to store ssl options instead of one int each
11213 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
11214 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
11215 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
11216 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
11217 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
11218 - MEDIUM: ssl: reject ssl server keywords in default-server statement
11219 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
11220 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
11221 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
11222 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
11223 - MINOR: acl: add parse and match primitives to use binary type on ACLs
11224 - MINOR: sample: export 'sample_get_trash_chunk(void)'
11225 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
11226 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
11227 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
11228 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
11229 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
11230 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
11231 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
11232 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
11233 - MINOR: ssl: add 'crt' statement on server.
11234 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
11235 - BUG/MEDIUM: ssl: review polling on reneg.
11236 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
11237 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
11238 - MINOR: build: allow packagers to specify the ssl cache size
11239 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
11240 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
11241 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
11242 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
11243 - DOC: duplicate ssl_sni section
11244 - MEDIUM: HTTP compression (zlib library support)
11245 - CLEANUP: use struct comp_ctx instead of union
11246 - BUILD: remove dependency to zlib.h
11247 - MINOR: compression: memlevel and windowsize
11248 - MEDIUM: use pool for zlib
11249 - MINOR: compression: try init in cfgparse.c
11250 - MINOR: compression: init before deleting headers
11251 - MEDIUM: compression: limit RAM usage
11252 - MINOR: compression: tune.comp.maxlevel
11253 - MINOR: compression: maximum compression rate limit
11254 - MINOR: log-format: check number of arguments in cfgparse.c
11255 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
11256 - BUG/MINOR: compression: deinit zlib only when required
11257 - MEDIUM: compression: don't compress when no data
11258 - MEDIUM: compression: use pool for comp_ctx
11259 - MINOR: compression: rate limit in 'show info'
11260 - MINOR: compression: report zlib memory usage
11261 - BUG/MINOR: compression: dynamic level increase
11262 - DOC: compression: unsupported cases.
11263 - MINOR: compression: CPU usage limit
11264 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
11265 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
11266 - MINOR: config: add a function to indent error messages
11267 - REORG: split "protocols" files into protocol and listener
11268 - MEDIUM: config: replace ssl_conf by bind_conf
11269 - CLEANUP: listener: remove unused conf->file and conf->line
11270 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
11271 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
11272 - MEDIUM: move bind SSL parsing to ssl_sock
11273 - MINOR: config: improve error reporting for "bind" lines
11274 - MEDIUM: config: move the common "bind" settings to listener.c
11275 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
11276 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
11277 - MINOR: listener: add a scope field in the bind keyword lists
11278 - MINOR: config: pass the file and line to config keyword parsers
11279 - MINOR: stats: fill the file and line numbers in the stats frontend
11280 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
11281 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
11282 - REORG: listener: move unix perms from the listener to the bind_conf
11283 - BUG: backend: balance hdr was broken since 1.5-dev11
11284 - MINOR: standard: make memprintf() support a NULL destination
11285 - MINOR: config: make str2listener() use memprintf() to report errors.
11286 - MEDIUM: stats: remove the stats_sock struct from the global struct
11287 - MINOR: ssl: set the listeners' data layer to ssl during parsing
11288 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
11289 - DOC: move bind options to their own section
11290 - DOC: stats: refer to "bind" section for "stats socket" settings
11291 - DOC: fix index to reference bind and server options
11292 - BUG: http: do not print garbage on invalid requests in debug mode
11293 - BUG/MINOR: config: check the proper pointer to report unknown protocol
11294 - CLEANUP: connection: offer conn_prepare() to set up a connection
11295 - CLEANUP: config: fix typo inteface => interface
11296 - BUG: stats: fix regression introduced by commit 4348fad1
11297 - MINOR: cli: allow to set frontend maxconn to zero
11298 - BUG/MAJOR: http: chunk parser was broken with buffer changes
11299 - MEDIUM: monitor: simplify handling of monitor-net and mode health
11300 - MINOR: connection: add a pointer to the connection owner
11301 - MEDIUM: connection: make use of the owner instead of container_of
11302 - BUG/MINOR: ssl: report the L4 connection as established when possible
11303 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
11304 - BUG/MINOR: config: use a copy of the file name in proxy configurations
11305 - BUG/MEDIUM: listener: don't pause protocols that do not support it
11306 - MEDIUM: proxy: add the global frontend to the list of normal proxies
11307 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
11308 - MINOR: signal: really ignore signals configured with no handler
11309 - MINOR: buffers: add a few functions to write chars, strings and blocks
11310 - MINOR: raw_sock: always report asynchronous connection errors
11311 - MEDIUM: raw_sock: improve connection error reporting
11312 - REORG: connection: rename the data layer the "transport layer"
11313 - REORG: connection: rename app_cb "data"
11314 - MINOR: connection: provide a generic data layer wakeup callback
11315 - MINOR: connection: split conn_prepare() in two functions
11316 - MINOR: connection: add an init callback to the data_cb struct
11317 - MEDIUM: session: use a specific data_cb for embryonic sessions
11318 - MEDIUM: connection: use a generic data-layer init() callback
11319 - MEDIUM: connection: reorganize connection flags
11320 - MEDIUM: connection: only call the data->wake callback on activity
11321 - MEDIUM: connection: make it possible for data->wake to return an error
11322 - MEDIUM: session: register a data->wake callback to process errors
11323 - MEDIUM: connection: don't call the data->init callback upon error
11324 - MEDIUM: connection: it's not the data layer's role to validate the connection
11325 - MEDIUM: connection: automatically disable polling on error
11326 - REORG: connection: move the PROXY protocol management to connection.c
11327 - MEDIUM: connection: add a new local send-proxy transport callback
11328 - MAJOR: checks: make use of the connection layer to send checks
11329 - REORG: server: move the check-specific parts into a check subsection
11330 - MEDIUM: checks: use real buffers to store requests and responses
11331 - MEDIUM: check: add the ctrl and transport layers in the server check structure
11332 - MAJOR: checks: completely use the connection transport layer
11333 - MEDIUM: checks: add the "check-ssl" server option
11334 - MEDIUM: checks: enable the PROXY protocol with health checks
11335 - CLEANUP: checks: remove minor warnings for assigned but not used variables
11336 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
11337 - BUG: connection: fix regression from commit 9e272bf9
11338 - CLEANUP: cttproxy: remove a warning on undeclared close()
11339 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
11340 - MEDIUM: listener: add support for linux's accept4() syscall
11341 - MINOR: halog: sort output by cookie code
11342 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
11343 - BUG/MINOR: halog: fix help message for -ut/-uto
11344 - MINOR: halog: add a parameter to limit output line count
11345 - BUILD: accept4: move the socketcall declaration outside of accept4()
11346 - MINOR: server: add minimal infrastructure to parse keywords
11347 - MINOR: standard: make indent_msg() support empty messages
11348 - MEDIUM: server: check for registered keywords when parsing unknown keywords
11349 - MEDIUM: server: move parsing of keyword "id" to server.c
11350 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
11351 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
11352 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
11353 - MEDIUM: connection: always unset the transport layer upon close
11354 - BUG/MINOR: session: fix some leftover from debug code
11355 - BUG/MEDIUM: session: enable the conn_session_update() callback
11356 - MEDIUM: connection: add a flag to hold the transport layer
11357 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
11358 - MINOR: log: make lf_text use a const char *
11359 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
11360 - REORG: http: rename msg->buf to msg->chn since it's a channel
11361 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
11362 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
11363 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
11364 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
11365 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
11366 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
11367 - OPTIM: channel: reorganize struct members to improve cache efficiency
11368 - CLEANUP: session: remove term_trace which is not used anymore
11369 - OPTIM: session: reorder struct session fields
11370 - OPTIM: connection: pack the struct target
11371 - DOC: document relations between internal entities
11372 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
11373 - BUILD: ssl: fix shctx build on older compilers
11374 - MEDIUM: ssl: add support for the "npn" bind keyword
11375 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
11376 - MINOR: chunk: provide string compare functions
11377 - MINOR: sample: accept fetch keywords without parenthesis
11378 - MEDIUM: sample: pass an empty list instead of a null for fetch args
11379 - MINOR: ssl: improve socket behaviour upon handshake abort.
11380 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
11381 - MEDIUM: listener: provide a fallback for accept4() when not supported
11382 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
11383 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
11384 - OPTIM: channel: inline channel_forward's fast path
11385 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
11386 - OPTIM: tools: inline hex2i()
11387 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
11388 - MINOR: compression: automatically disable compression for older browsers
11389 - MINOR: compression: optimize memLevel to improve byte rate
11390 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
11391 - BUILD: fix coexistence of openssl and zlib
11392 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
11393 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
11394 - MINOR: tools: add a clear_addr() function to unset an address
11395 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
11396 - CLEANUP: remove trashlen
11397 - MAJOR: session: detach the connections from the stream interfaces
11398 - DOC: update document describing relations between internal entities
11399 - BUILD: make it possible to specify ZLIB path
11400 - MINOR: compression: add an offload option to remove the Accept-Encoding header
11401 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
11402 - CLEANUP: completely remove trashlen
11403 - MINOR: chunk: add a function to reset a chunk
11404 - CLEANUP: replace chunk_printf() with chunk_appendf()
11405 - MEDIUM: make the trash be a chunk instead of a char *
11406 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
11407 - MEDIUM: stick-table: allocate the table key of size buffer size
11408 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
11409 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
11410 - OPTIM: session: don't process the whole session when only timers need a refresh
11411 - BUG/MINOR: session: mark the handshake as complete earlier
11412 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
11413 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
11414 - MAJOR: sepoll: make the poller totally event-driven
11415 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
11416 - BUILD: compression: remove a build warning
11417 - MEDIUM: fd: don't unset fdtab[].updated upon delete
11418 - REORG: fd: move the speculative I/O management from ev_sepoll
11419 - REORG: fd: move the fd state management from ev_sepoll
11420 - REORG: fd: centralize the processing of speculative events
11421 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
11422 - BUILD: stream_interface: remove si_fd() and its references
11423 - BUILD: compression: enable build in BSD and OSX Makefiles
11424 - MAJOR: ev_select: make the poller support speculative events
11425 - MAJOR: ev_poll: make the poller support speculative events
11426 - MAJOR: ev_kqueue: make the poller support speculative events
11427 - MAJOR: polling: replace epoll with sepoll and remove sepoll
11428 - MAJOR: polling: remove unused callbacks from the poller struct
11429 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
11430 - CLEANUP: channel: remove any reference of the hijackers
11431 - CLEANUP: stream_interface: remove the external task type target
11432 - MAJOR: connection: replace struct target with a pointer to an enum
11433 - BUG: connection: fix typo in previous commit
11434 - BUG: polling: don't skip polled events in the spec list
11435 - MINOR: splice: disable it when the system returns EBADF
11436 - MINOR: build: allow packagers to specify the default maxzlibmem
11437 - BUG: halog: fix broken output limitation
11438 - BUG: proxy: fix server name lookup in get_backend_server()
11439 - BUG: compression: do not always increment the round counter on allocation failure
11440 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
11441 - MINOR: global: don't prevent nbproc from being redefined
11442 - MINOR: config: support process ranges for "bind-process"
11443 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
11444 - MINOR: ssl: rename and document the tune.ssl.cachesize option
11445 - DOC: update the PROXY protocol spec to support v2
11446 - MINOR: standard: add a simple popcount function
11447 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
11448 - BUG: compression: properly disable compression when content-type does not match
11449 - MINOR: cli: report connection status in "show sess xxx"
11450 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
11451 - BUILD: cli: fix build when SSL is enabled
11452 - MINOR: cli: report the fd state in "show sess xxx"
11453 - MINOR: cli: report an error message on missing argument to compression rate
11454 - MINOR: http: add some debugging functions to pretty-print msg state names
11455 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
11456 - DOC: documentation on http header capture is wrong
11457 - MINOR: http: allow the cookie capture size to be changed
11458 - DOC: http header capture has not been limited in size for a long time
11459 - DOC: update readme with build methods for BSD
11460 - BUILD: silence a warning on Solaris about usage of isdigit()
11461 - MINOR: stats: report HTTP compression stats per frontend and per backend
11462 - MINOR: log: add '%Tl' to log-format
11463 - MINOR: samples: update the url_param fetch to match parameters in the path
11464
Willy Tarreau16216822012-09-10 09:46:55 +0200114652012/09/10 : 1.5-dev12
11466 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
11467 - MEDIUM: ssl: add support for prefer-server-ciphers option
11468 - MINOR: IPv6 support for transparent proxy
11469 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
11470 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
11471 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
11472 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
11473 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
11474 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
11475 - MEDIUM: ssl: protect against client-initiated renegociation
11476 - BUILD: add optional support for SSL via the USE_OPENSSL flag
11477 - MEDIUM: ssl: add shared memory session cache implementation.
11478 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
11479 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
11480 - MEDIUM: ssl: add support for SNI and wildcard certificates
11481 - DOC: Typos cleanup
11482 - DOC: fix name for "option independant-streams"
11483 - DOC: specify the default value for maxconn in the context of a proxy
11484 - BUG/MINOR: to_log erased with unique-id-format
11485 - LICENSE: add licence exception for OpenSSL
11486 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
11487 - BUILD: add an AIX 5.2 (and later) target.
11488 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
11489 - MINOR: halog: use the more recent dual-mode fgets2 implementation
11490 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
11491 - CLEANUP: halog: make clean should also remove .o files
11492 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
11493 - OPTIM: halog: improve cold-cache behaviour when loading a file
11494 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
11495 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
11496 - MEDIUM: pattern: add the "base" sample fetch method
11497 - OPTIM: i386: make use of kernel-mode-linux when available
11498 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
11499 - BUG/MINOR: polling: some events were not set in various pollers
11500 - MINOR: http: add the urlp_val ACL match
11501 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
11502 - MINOR: stats/cli: add plans to support more stick-table actions
11503 - MEDIUM: stats/cli: add support for "set table key" to enter values
11504 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
11505 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
11506 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
11507 - REORG/MINOR: connection: move declaration to its own include file
11508 - REORG/MINOR: checks: put a struct connection into the server
11509 - MINOR: connection: add flags to the connection struct
11510 - MAJOR: get rid of fdtab[].state and use connection->flags instead
11511 - MINOR: fd: add a new I/O handler to fdtab
11512 - MEDIUM: polling: prepare to call the iocb() function when defined.
11513 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
11514 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
11515 - MINOR: connection: add a handler for fd-based connections
11516 - MAJOR: connection: replace direct I/O callbacks with the connection callback
11517 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
11518 - MEDIUM: connection: remove the FD_POLL_* flags only once
11519 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
11520 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
11521 - CLEANUP: remove the now unused fdtab direct I/O callbacks
11522 - MAJOR: remove the stream interface and task management code from sock_*
11523 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
11524 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
11525 - MAJOR: connection: add a new CO_FL_CONNECTED flag
11526 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
11527 - MAJOR: connection: call data layer handshakes from the handler
11528 - MEDIUM: fd: remove the EV_FD_COND_* primitives
11529 - MINOR: sock_raw: move calls to si_data_close upper
11530 - REORG: connection: replace si_data_close() with conn_data_close()
11531 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
11532 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
11533 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
11534 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
11535 - MEDIUM: connection: add definitions for dual polling mechanisms
11536 - MEDIUM: connection: make use of the new polling functions
11537 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
11538 - MEDIUM: checks: don't use FD_WAIT_* anymore
11539 - MINOR: fd: get rid of FD_WAIT_*
11540 - MEDIUM: stream_interface: offer a generic function for connection updates
11541 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
11542 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
11543 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
11544 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
11545 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
11546 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
11547 - REORG/MAJOR: extract "struct buffer" from "struct channel"
11548 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
11549 - REORG: sock_raw: rename the files raw_sock*
11550 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
11551 - MAJOR: raw_sock: temporarily disable splicing
11552 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
11553 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
11554 - MAJOR: connection: split the send call into connection and stream interface
11555 - MAJOR: stream-interface: restore splicing mechanism
11556 - MAJOR: stream-interface: make conn_notify_si() more robust
11557 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
11558 - MAJOR: stream-interface: don't commit polling changes in every callback
11559 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
11560 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
11561 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
11562 - REORG: buffers: split buffers into chunk,buffer,channel
11563 - MAJOR: channel: remove the BF_OUT_EMPTY flag
11564 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
11565 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
11566 - MINOR: buffer: provide a new buffer_full() function
11567 - MAJOR: channel: stop relying on BF_FULL to take action
11568 - MAJOR: channel: remove the BF_FULL flag
11569 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
11570 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
11571 - CLEANUP: channel: use "channel" instead of "buffer" in function names
11572 - REORG: connection: move the target pointer from si to connection
11573 - MAJOR: connection: move the addr field from the stream_interface
11574 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
11575 - MEDIUM: proto_tcp: remove any dependence on stream_interface
11576 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
11577 - MEDIUM: connection: add an ->init function to data layer
11578 - MAJOR: session: introduce embryonic sessions
11579 - MAJOR: connection: make the PROXY decoder a handshake handler
11580 - CLEANUP: frontend: remove the old proxy protocol decoder
11581 - MAJOR: connection: rearrange the polling flags.
11582 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
11583 - MEDIUM: connection: complete the polling cleanups
11584 - MEDIUM: connection: avoid calling handshakes when polling is required
11585 - MAJOR: stream_interface: continue to update data polling flags during handshakes
11586 - CLEANUP: fd: remove fdtab->flags
11587 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
11588 - CLEANUP: includes: fix includes for a number of users of fd.h
11589 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
11590 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
11591 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
11592 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
11593 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
11594 - BUILD: ssl: fix shctx build on RHEL with futex
11595 - BUILD: include sys/socket.h to fix build failure on FreeBSD
11596 - BUILD: fix build error without SSL (ssl_cert)
11597 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
11598 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
11599 - MEDIUM: config: support per-listener backlog and maxconn
11600 - MINOR: session: do not send an HTTP/500 error on SSL sockets
11601 - MEDIUM: config: implement maxsslconn in the global section
11602 - BUG: tcp: close socket fd upon connect error
11603 - MEDIUM: connection: improve error handling around the data layer
11604 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
11605 - BUILD: shut a gcc warning introduced by commit 269ab31
11606 - MEDIUM: config: centralize handling of SSL config per bind line
11607 - BUILD: makefile: report USE_OPENSSL status in build options
11608 - BUILD: report openssl build settings in haproxy -vv
11609 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
11610 - DOC: add a special acknowledgement for the stud project
11611 - DOC: add missing SSL options for servers and listeners
11612 - BUILD: automatically add -lcrypto for SSL
11613 - DOC: add some info about openssl build in the README
11614
Willy Tarreau02c7c142012-06-04 00:43:45 +0200116152012/06/04 : 1.5-dev11
11616 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
11617 - BUG/MAJOR: trash must always be the size of a buffer
11618 - DOC: fix minor regex example issue and improve doc on stats
11619 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
11620 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
11621 - MINOR: checks: add on-marked-up option
11622 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
11623 - MEDIUM: stream_interface: remove the si->init
11624 - MINOR: buffers: add a rewind function
11625 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
11626 - MAJOR: http: stop using msg->sol outside the parsers
11627 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
11628 - MEDIUM: http: get rid of msg->som which is not used anymore
11629 - MEDIUM: http: msg->sov and msg->sol will never wrap
11630 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
11631 - BUG/MINOR: stop connect timeout when connect succeeds
11632 - REORG: move the send-proxy code to tcp_connect_write()
11633 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
11634 - MINOR: stream_interface: introduce a new "struct connection" type
11635 - REORG/MINOR: stream_interface: move si->fd to struct connection
11636 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
11637 - MINOR: stream_interface: add a data channel close function
11638 - MEDIUM: stream_interface: call si_data_close() before releasing the si
11639 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
11640 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
11641 - MINOR: add a new function call tracer for debugging purposes
11642 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
11643 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
11644 - BUG/MEDIUM: register peer sync handler in the proper order
11645 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
11646 - BUG/MINOR: fix option httplog validation with TCP frontends
11647 - BUG/MINOR: log: don't report logformat errors in backends
11648 - REORG/MINOR: use dedicated proxy flags for the cookie handling
11649 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
11650 - MINOR: http: add support for "httponly" and "secure" cookie attributes
11651 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
11652 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
11653 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
11654 - MEDIUM: stats: add the ability to kill sessions from the admin interface
11655 - BUILD: add support for linux kernels >= 2.6.28
11656
Willy Tarreauffb89472012-05-14 07:26:56 +0200116572012/05/14 : 1.5-dev10
11658 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
11659 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
11660 - CLEANUP: auth: make the code build again with DEBUG_AUTH
11661 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
11662 - REORG: use the name sock_raw instead of stream_sock
11663 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
11664 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
11665 - CLEANUP: sock_raw: remove last references to stream_sock
11666 - CLEANUP: stream_interface: stop exporting socket layer functions
11667 - MINOR: stream_interface: add an init callback to sock_ops
11668 - MEDIUM: stream_interface: derive the socket operations from the target
11669 - MAJOR: fd: remove the need for the socket layer to recheck the connection
11670 - MINOR: session: call the socket layer init function when a session establishes
11671 - MEDIUM: session: add support for tunnel timeouts
11672 - MINOR: standard: add a new debug macro : fddebug()
11673 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
11674 - OPTIM: proto_http: don't enable quick-ack on empty buffers
11675 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
11676 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
11677
Willy Tarreaua0564f32012-05-08 21:56:27 +0200116782012/05/08 : 1.5-dev9
11679 - MINOR: Add release callback to si_applet
11680 - CLEANUP: Fix some minor typos
11681 - MINOR: Add TO/FROM_SET flags to struct stream_interface
11682 - CLEANUP: Fix some minor whitespace issues
11683 - MINOR: stats admin: allow unordered parameters in POST requests
11684 - CLEANUP: fix typo in findserver() log message
11685 - MINOR: stats admin: use the backend id instead of its name in the form
11686 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
11687 - DOC: cleanup indentation, alignment, columns and chapters
11688 - DOC: fix some keywords arguments documentation
11689 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
11690 - BUG/MAJOR: log: possible segfault with logformat
11691 - MEDIUM: log: split of log_format generation
11692 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
11693 - MEDIUM: log: Unique ID
11694 - MINOR: log: log-format: usable without httplog and tcplog
11695 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
11696 - MINOR: contrib/iprange: add a network IP range to mask converter
11697 - MEDIUM: session: implement the "use-server" directive
11698 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
11699 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
11700 - MEDIUM: http: add cookie and scookie ACLs
11701 - CLEANUP: lb_first: add reference to a paper describing the original idea
11702 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
11703 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
11704 - BUILD: http: make extract_cookie_value() return an int not size_t
11705 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
11706 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
11707 - MINOR: standard: add a memprintf() function to build formatted error messages
11708 - CLEANUP: remove a few warning about unchecked return values in debug code
11709 - MEDIUM: move message-related flags from transaction to message
11710 - DOC: add a diagram to explain how circular buffers work
11711 - MAJOR: buffer rework: replace ->send_max with ->o
11712 - MAJOR: buffer: replace buf->l with buf->{o+i}
11713 - MINOR: buffers: provide simple pointer normalization functions
11714 - MINOR: buffers: remove unused function buffer_contig_data()
11715 - MAJOR: buffers: replace buf->w with buf->p - buf->o
11716 - MAJOR: buffers: replace buf->r with buf->p + buf->i
11717 - MAJOR: http: move buffer->lr to http_msg->next
11718 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
11719 - CLEANUP: http: remove unused http_msg->col
11720 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
11721 - MEDIUM: http: add a pointer to the buffer in http_msg
11722 - MAJOR: http: make http_msg->sol relative to buffer's origin
11723 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
11724 - MEDIUM: http: remove buffer arg in a few header manipulation functions
11725 - MEDIUM: http: remove buffer arg in http_capture_bad_message
11726 - MEDIUM: http: remove buffer arg in http_msg_analyzer
11727 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
11728 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
11729 - MEDIUM: http: remove buffer arg in chunk parsing functions
11730 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
11731 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
11732 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
11733 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
11734 - MEDIUM: buffers: rename a number of buffer management functions
11735 - MEDIUM: http: add a prefetch function for ACL pattern fetch
11736 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
11737 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
11738 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
11739 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
11740 - MEDIUM: add a new typed argument list parsing framework
11741 - MAJOR: acl: make use of the new argument parsing framework
11742 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
11743 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
11744 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
11745 - MAJOR: acl: ensure that implicit table and proxies are valid
11746 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
11747 - MEDIUM: pattern: replace type pattern_arg with type arg
11748 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
11749 - MEDIUM: pattern: use the standard arg parser
11750 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
11751 - MEDIUM: pattern: report the precise argument parsing error when known.
11752 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
11753 - MINOR: pattern: add a new 'sample' type to store fetched data
11754 - MEDIUM: pattern: add new sample types to replace pattern types
11755 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
11756 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
11757 - MEDIUM: acl: get rid of the SET_RES flags
11758 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
11759 - MINOR: pattern: replace struct pattern with struct sample
11760 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
11761 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
11762 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
11763 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
11764 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
11765 - MEDIUM: acl/pattern: use the same direction scheme
11766 - MEDIUM: acl/pattern: start merging common sample fetch functions
11767 - MEDIUM: pattern: ensure that sample types always cast into other types.
11768 - MEDIUM: acl/pattern: factor out the src/dst address fetches
11769 - MEDIUM: acl: implement payload and payload_lv
11770 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
11771 - MINOR: stick_table: centralize the handling of empty keys
11772 - MINOR: pattern: centralize handling of unstable data in pattern_process()
11773 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
11774 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
11775 - MINOR: acl: add a val_args field to keywords
11776 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
11777 - MEDIUM: http: merge acl and pattern header fetch functions
11778 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
11779 - MEDIUM: acl: report parsing errors to the caller
11780 - MINOR: arg: improve error reporting on invalid arguments
11781 - MINOR: acl: report errors encountered when loading patterns from files
11782 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
11783 - REORG: use the name "sample" instead of "pattern" to designate extracted data
11784 - REORG: rename "pattern" files
11785 - MINOR: acl: add types to ACL patterns
11786 - MINOR: standard: add an IPv6 parsing function (str62net)
11787 - MEDIUM: acl: support IPv6 address matching
11788 - REORG: stream_interface: create a struct sock_ops to hold socket operations
11789 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
11790 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
11791 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
11792 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
11793 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
11794 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
11795 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
11796 - MEDIUM: http: improve error capture reports
11797 - MINOR: acl: add the cook_val() match to match a cookie against an integer
11798 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
11799 - MEDIUM: memory: add the ability to poison memory at run time
11800 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
11801 - MINOR: cfgparse: use a common errmsg pointer for all parsers
11802 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
11803 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
11804 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
11805
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200118062012/03/26 : 1.5-dev8
11807 - MINOR: patch for minor typo (ressources/resources)
11808 - MEDIUM: http: add support for sending the server's name in the outgoing request
11809 - DOC: mention that default checks are TCP connections
11810 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
11811 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
11812 - CLEANUP: Fix HCHK spelling errors
11813 - BUG/MINOR: fix typo in processing of http-send-name-header
11814 - MEDIUM: log: Use linked lists for loggers
11815 - BUILD: fix declaration inside a scope block
11816 - REORG: log: split send_log function
11817 - MINOR: config: Parse the string of the log-format config keyword
11818 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
11819 - MINOR: Date and time fonctions that don't use snprintf
11820 - MEDIUM: log: make http_sess_log use log_format
11821 - DOC: log-format documentation
11822 - MEDIUM: log: use log_format for mode tcplog
11823 - MEDIUM: log-format: backend source address %Bi %Bp
11824 - BUG/MINOR: log-format: fix %o flag
11825 - BUG/MEDIUM: bad length in log_format and __send_log
11826 - MINOR: logformat %st is signed
11827 - BUILD/MINOR: fix the source URL in the spec file
11828 - DOC: acl is http_first_req, not http_req_first
11829 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
11830 - MINOR: acl: add new matches for header/path/url length
11831 - BUILD: halog: make halog build on solaris
11832 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
11833 - MINOR: remove the client/server side distinction in SI addresses
11834 - MINOR: halog: add support for matching queued requests
11835 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
11836 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
11837 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
11838 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
11839 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
11840 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
11841 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
11842 - CLEANUP: rename possibly confusing struct field "tracked"
11843 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
11844 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
11845 - MEDIUM: buffers: add some new primitives and rework existing ones
11846 - BUG: buffers: don't return a negative value on buffer_total_space_res()
11847 - MINOR: buffers: make buffer_pointer() support negative pointers too
11848 - CLEANUP: kill buffer_replace() and use an inline instead
11849 - BUG: tcp: option nolinger does not work on backends
11850 - CLEANUP: ebtree: remove a few annoying signedness warnings
11851 - CLEANUP: ebtree: clarify licence and update to 6.0.6
11852 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
11853 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
11854 - BUG: ebtree: ebst_lookup() could return the wrong entry
11855 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
11856 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
11857 - MINOR: acl: add support for TLS server name matching using SNI
11858 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
11859 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
11860 - MINOR: pattern: export the global temporary pattern
11861 - CLEANUP: patterns: get rid of pattern_data_setstring()
11862 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
11863 - MINOR: acl: include pattern.h to make pattern migration more transparent
11864 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
11865 - MEDIUM: acl: use temp_pattern to store any integer-type information
11866 - MEDIUM: acl: use temp_pattern to store any address-type information
11867 - CLEANUP: acl: integer part of acl_test is not used anymore
11868 - MEDIUM: acl: use temp_pattern to store any string-type information
11869 - CLEANUP: acl: remove last data fields from the acl_test struct
11870 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
11871 - MEDIUM: patterns: the hdr() pattern is now of type string
11872 - DOC: add minimal documentation on how ACLs work internally
11873 - DOC: add a coding-style file
11874 - OPTIM: halog: keep a fast path for the lines-count only
11875 - CLEANUP: silence a warning when building on sparc
11876 - BUG: http: tighten the list of allowed characters in a URI
11877 - MEDIUM: http: block non-ASCII characters in URIs by default
11878 - DOC: add some documentation from RFC3986 about URI format
11879 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
11880 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
11881 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
11882 - MINOR: halog: add some help on the command line
11883 - BUILD: fix build error on FreeBSD
11884 - BUG: fix double free in peers config error path
11885 - MEDIUM: improve config check return codes
11886 - BUILD: make it possible to look for pcre in the default system paths
11887 - MINOR: config: emit a warning when 'default_backend' masks servers
11888 - MINOR: backend: rework the LC definition to support other connection-based algos
11889 - MEDIUM: backend: add the 'first' balancing algorithm
11890 - BUG: fix httplog trailing LF
11891 - MEDIUM: increase chunk-size limit to 2GB-1
11892 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
11893 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
11894 - BUG: checks: fix server maintenance exit sequence
11895 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
11896 - DOC: enumerate valid status codes for "observe layer7"
11897 - MINOR: buffer: switch a number of buffer args to const
11898 - CLEANUP: silence signedness warning in acl.c
11899 - BUG: stream_sock: si->release was not called upon shutw()
11900 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
11901 - BUG/CRITICAL: log: fix risk of crash in development snapshot
11902 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
11903 - MINOR: config: disable header captures in TCP mode and complain
11904
Willy Tarreau60612eb2011-09-10 23:43:11 +0200119052011/09/10 : 1.5-dev7
11906 - [BUG] fix binary stick-tables
11907 - [MINOR] http: *_dom matching header functions now also split on ":"
11908 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
11909 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
11910 - [MINOR] check: add redis check support
11911 - [DOC] small fixes to clearly distinguish between keyword and variables
11912 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
11913 - [DOC] Minor spelling fixes and grammatical enhancements
11914 - [CLEANUP] dumpstats: make symbols static where possible
11915 - [MINOR] Break out dumping table
11916 - [MINOR] Break out processing of clear table
11917 - [MINOR] Allow listing of stick table by key
11918 - [MINOR] Break out all stick table socat command parsing
11919 - [MINOR] More flexible clearing of stick table
11920 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
11921 - [MINOR] Allow showing and clearing by key of integer stick tables
11922 - [MINOR] Allow showing and clearing by key of string stick tables
11923 - [CLEANUP] Remove assigned but unused variables
11924 - [CLEANUP] peers.h: fix declarations
11925 - [CLEANUP] session.c: Make functions static where possible
11926 - [MINOR] Add active connection list to server
11927 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
11928 - [MINOR] Add down termination condition
11929 - [MINOR] Make appsess{,ion}_refresh static
11930 - [MINOR] Add rdp_cookie pattern fetch function
11931 - [CLEANUP] Remove unnecessary casts
11932 - [MINOR] Add non-stick server option
11933 - [MINOR] Consistently use error in tcp_parse_tcp_req()
11934 - [MINOR] Consistently free expr on error in cfg_parse_listen()
11935 - [MINOR] Free rdp_cookie_name on denint()
11936 - [MINOR] Free tcp rules on denint()
11937 - [MINOR] Free stick table pool on denint()
11938 - [MINOR] Free stick rules on denint()
11939 - [MEDIUM] Fix stick-table replication on soft-restart
11940 - [MEDIUM] Correct ipmask() logic
11941 - [MINOR] Correct type in table dump examples
11942 - [MINOR] Fix build error in stream_int_register_handler()
11943 - [MINOR] Use DPRINTF in assign_server()
11944 - [BUG] checks: http-check expect could fail a check on multi-packet responses
11945 - [DOC] fix minor typo in the "dispatch" doc
11946 - [BUG] proto_tcp: fix address binding on remote source
11947 - [MINOR] http: don't report the "haproxy" word on the monitoring response
11948 - [REORG] http: move HTTP error codes back to proto_http.h
11949 - [MINOR] http: make the "HTTP 200" status code configurable.
11950 - [MINOR] http: partially revert the chunking optimization for now
11951 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
11952 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
11953 - [MEDIUM] http: add support for "http-no-delay"
11954 - [OPTIM] http: optimize chunking again in non-interactive mode
11955 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
11956 - [OPTIM] stream_sock: don't use splice on too small payloads
11957 - [MINOR] config: make it possible to specify a cookie even without a server
11958 - [BUG] stats: support url-encoded forms
11959 - [MINOR] config: automatically compute a default fullconn value
11960 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
11961 - [DOC] add missing entry or stick store-response
11962 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
11963 - [BUG] halog: correctly handle truncated last line
11964 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
11965 - [MINOR] halog: add support for HTTP log matching (-H)
11966 - [MINOR] halog: gain back performance before SKIP_CHAR fix
11967 - [OPTIM] halog: cache some common fields positions
11968 - [OPTIM] halog: check once for correct line format and reuse the pointer
11969 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
11970 - [OPTIM] halog: remove support for tab delimiters in input data
11971 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
11972 - [MINOR] session: try to emit a 500 response on memory allocation errors
11973 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
11974 - [BUG] stream_sock: disable listener when system resources are exhausted
11975 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
11976 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
11977 - [MINOR] listeners: add listen_full() to mark a listener full
11978 - [MINOR] listeners: add support for queueing resource limited listeners
11979 - [MEDIUM] listeners: put listeners in queue upon resource shortage
11980 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
11981 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
11982 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
11983 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
11984 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
11985 - [MINOR] proxy: make session rate-limit more accurate
11986 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
11987 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
11988 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
11989 - [MINOR] task: new function task_schedule() to schedule a wake up
11990 - [MAJOR] proxy: finally get rid of maintain_proxies()
11991 - [BUG] proxy: stats frontend and peers were missing many initializers
11992 - [MEDIUM] listeners: add a global listener management task
11993 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
11994 - [DOC] fix typos, "#" is a sharp, not a dash
11995 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
11996 - [MEDIUM] checks: group health checks methods by values and save option bits
11997 - [MINOR] session-counters: add the ability to clear the counters
11998 - [BUG] check: http-check expect + regex would crash in defaults section
11999 - [MEDIUM] http: make x-forwarded-for addition conditional
12000 - [REORG] build: move syscall redefinition to specific places
12001 - [CLEANUP] update the year in the copyright banner
12002 - [BUG] possible crash in 'show table' on stats socket
12003 - [BUG] checks: use the correct destination port for sending checks
12004 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
12005 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
12006 - [DOC] fixed a few "sensible" -> "sensitive" errors
12007 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
12008 - [BUG] http: trailing white spaces must also be trimmed after headers
12009 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
12010 - [MINOR] http: take a capture of too large requests and responses
12011 - [MINOR] http: take a capture of truncated responses
12012 - [MINOR] http: take a capture of bad content-lengths.
12013 - [DOC] add a few old and uncommitted docs
12014 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
12015 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
12016 - [MINOR] halog: support backslash-escaped quotes
12017 - [CLEANUP] remove dirty left-over of a debugging message
12018 - [MEDIUM] stats: disable complex socket reservation for stats socket
12019 - [CLEANUP] remove a useless test in manage_global_listener_queue()
12020 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
12021 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
12022 - [MINOR] stats: report the current and max global connection rates
12023 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
12024 - [BUG] peers: don't pre-allocate 65000 connections to each peer
12025 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
12026 - [BUG] peers: the peer frontend must not emit any log
12027 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
12028 - [BUG] peers: don't keep a peers section which has a NULL frontend
12029 - [BUG] peers: ensure the peers are resumed if they were paused
12030 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
12031 - [MEDIUM] session: make session_shutdown() an independant function
12032 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
12033 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
12034 - [MEDIUM] stats: offer the possibility to kill sessions by server
12035 - [MINOR] halog: do not consider byte 0x8A as end of line
12036 - [MINOR] frontend: ensure debug message length is always initialized
12037 - [OPTIM] halog: make fgets parse more bytes by blocks
12038 - [OPTIM] halog: add assembly version of the field lookup code
12039 - [MEDIUM] poll: add a measurement of idle vs work time
12040 - [CLEANUP] startup: report only the basename in the usage message
12041 - [MINOR] startup: add an option to change to a new directory
12042 - [OPTIM] task: don't scan the run queue if we know it's empty
12043 - [BUILD] stats: stdint is not present on solaris
12044 - [DOC] update the README file to reflect new naming rules for patches
12045 - [MINOR] stats: report the number of requests intercepted by the frontend
12046 - [DOC] update ROADMAP file
12047
Willy Tarreau04df1122011-04-08 00:56:41 +0200120482011/04/08 : 1.5-dev6
12049 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
12050 - [BUG] TCP source tracking was broken with IPv6 changes
12051 - [BUG] stick-tables did not work when converting IPv6 to IPv4
12052 - [CRITICAL] fix risk of crash when dealing with space in response cookies
12053
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200120542011/03/29 : 1.5-dev5
12055 - [BUG] standard: is_addr return value for IPv4 was inverted
12056 - [MINOR] update comment about IPv6 support for server
12057 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
12058 - [DOC] update IPv6 support for bind
12059 - [DOC] document IPv6 support for server
12060 - [DOC] fix a minor typo
12061 - [MEDIUM] IPv6 support for syslog
12062 - [DOC] document IPv6 support for syslog
12063 - [MEDIUM] IPv6 support for stick-tables
12064 - [DOC] document IPv6 support for stick-tables
12065 - [DOC] update ROADMAP file
12066 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
12067 - [MINOR] frontend: add a make_proxy_line function
12068 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
12069 - [MEDIUM] server: add support for the "send-proxy" option
12070 - [DOC] update the spec on the proxy protocol
12071 - [BUILD] proto_tcp: fix build issue with CTTPROXY
12072 - [DOC] update ROADMAP file
12073 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
12074 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
12075 - [BUILD] add the USE_GETADDRINFO build option
12076 - [TESTS] provide a test case for various address formats
12077 - [BUG] session: conn_retries was not always initialized
12078 - [BUG] log: retrieve the target from the session, not the SI
12079 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
12080 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
12081 - [BUG] http: fix content-length handling on 32-bit platforms
12082 - [OPTIM] buffers: uninline buffer_forward()
12083 - [BUG] stream_sock: fix handling for server side PROXY protocol
12084 - [MINOR] acl: add support for table_cnt and table_avl matches
12085 - [DOC] update ROADMAP file
12086
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100120872011/03/13 : 1.5-dev4
12088 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
12089 - [MINOR] unix sockets : inherits the backlog size from the listener
12090 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
12091 - [DOC] fix a minor typo
12092 - [DOC] fix ignore-persist documentation
12093 - [MINOR] add warnings on features not compatible with multi-process mode
12094 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
12095 - [MINOR] stats: add support for several packets in stats admin
12096 - [BUG] stats: admin commands must check the proxy state
12097 - [BUG] stats: admin web interface must check the proxy state
12098 - [MINOR] http: add pattern extraction method to stick on query string parameter
12099 - [MEDIUM] add internal support for IPv6 server addresses
12100 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
12101 - [MINOR] log: add support for passing the forwarded hostname
12102 - [MINOR] log: ability to override the syslog tag
12103 - [MINOR] checks: add PostgreSQL health check
12104 - [DOC] update ROADMAP file
12105 - [BUILD] pattern: use 'int' instead of 'int32_t'
12106 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
12107 - [BUG] debug: report the correct poller list in verbose mode
12108 - [BUG] capture: do not capture a cookie if there is no memory left
12109 - [BUG] appsession: fix possible double free in case of out of memory
12110 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
12111 - [BUG] http: correctly update the header list when removing two consecutive headers
12112 - [BUILD] add the CPU=native and ARCH=32/64 build options
12113 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
12114 - [CLEANUP] hash: move the avalanche hash code globally available
12115 - [MEDIUM] hash: add support for an 'avalanche' hash-type
12116 - [DOC] update roadmap file
12117 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
12118 - [OPTIM] http: don't send each chunk in a separate packet
12119 - [DOC] fix minor typos reported recently in the peers section
12120 - [DOC] fix another typo in the doc
12121 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
12122 - [BUG] http chunking: don't report a parsing error on connection errors
12123 - [BUG] stream_interface: truncate buffers when sending error messages
12124 - [MINOR] http: support wrapping messages in error captures
12125 - [MINOR] http: capture incorrectly chunked message bodies
12126 - [MINOR] stats: add global event ID and count
12127 - [BUG] http: analyser optimizations broke pipelining
12128 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
12129 - [BUG] http: fix incorrect error reporting during data transfers
12130 - [CRITICAL] session: correctly leave turn-around and queue states on abort
12131 - [BUG] session: release slot before processing pending connections
12132 - [MINOR] tcp: add support for dynamic MSS setting
12133 - [BUG] stick-table: correctly terminate string keys during lookups
12134 - [BUG] acl: fix handling of empty lines in pattern files
12135 - [BUG] stick-table: use the private buffer when padding strings
12136 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
12137 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
12138 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
12139 - [REVERT] undo the stick-table string key lookup fixes
12140 - [MINOR] http: improve url_param pattern extraction to ignore empty values
12141 - [BUILD] frontend: shut a warning with TCP_MAXSEG
12142 - [BUG] http: update the header list's tail when removing the last header
12143 - [DOC] fix minor typo in the proxy protocol doc
12144 - [DOC] fix typos (http-request instead of http-check)
12145 - [BUG] http: use correct ACL pointer when evaluating authentication
12146 - [BUG] cfgparse: correctly count one socket per port in ranges
12147 - [BUG] startup: set the rlimits before binding ports, not after.
12148 - [BUG] acl: srv_id must return no match when the server is NULL
12149 - [MINOR] acl: add ability to check for internal response-only parameters
12150 - [MINOR] acl: srv_id is only valid in responses
12151 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
12152 - [BUG] acl: fd leak when reading patterns from file
12153 - [DOC] fix minor typo in "usesrc"
12154 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
12155 - [BUG] http: fix computation of message body length after forwarding has started
12156 - [BUG] http: balance url_param did not work with first parameters on POST
12157 - [TESTS] update the url_param regression test to test check_post too
12158 - [DOC] update ROADMAP
12159 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
12160 - [BUG] config: don't crash on empty pattern files.
12161 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
12162 - [REORG] stream_interface: move the st0, st1 and private members to the applet
12163 - [REORG] stream_interface: split the struct members in 3 parts
12164 - [REORG] session: move client and server address to the stream interface
12165 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
12166 - [MEDIUM] stream_interface: store the target pointer and type
12167 - [CLEANUP] stream_interface: remove the applet.handler pointer
12168 - [MEDIUM] log: take the logged server name from the stream interface
12169 - [CLEANUP] session: remove data_source from struct session
12170 - [CLEANUP] stats: make all dump functions only rely on the stream interface
12171 - [REORG] session: move the data_ctx struct to the stream interface's applet
12172 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
12173 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
12174 - [MINOR] session: add a pointer to the new target into the session
12175 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
12176 - [CLEANUP] stream_interface: use inline functions to manipulate targets
12177 - [MAJOR] session: remove the ->srv pointer from struct session
12178 - [MEDIUM] stats: split frontend and backend stats
12179 - [MEDIUM] http: always evaluate http-request rules before stats http-request
12180 - [REORG] http: move the http-request rules to proto_http
12181 - [BUG] http: stats were not incremented on http-request deny
12182 - [MINOR] checks: report it if checks fail due to socket creation error
12183
Willy Tarreau442e8342010-11-11 23:29:35 +0100121842010/11/11 : 1.5-dev3
12185 - [DOC] fix http-request documentation
12186 - [MEDIUM] enable/disable servers from the stats web interface
12187 - [MEDIUM] stats: add an admin level
12188 - [DOC] stats: document the "stats admin" statement
12189 - [MINOR] startup: print the proxy socket which caused an error
12190 - [CLEANUP] Remove unneeded chars allocation
12191 - [MINOR] config: detect options not supported due to compilation options
12192 - [MINOR] Add pattern's fetchs payload and payload_lv
12193 - [MINOR] frontend: improve accept-proxy header parsing
12194 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
12195 - [MEDIUM] Enhance message errors management on binds
12196 - [MINOR] Manage unix socket source field on logs
12197 - [MINOR] Manage unix socket source field on session dump on sock stats
12198 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
12199 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
12200 - [MINOR] Manage socket type unix for some logs
12201 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
12202 - [MINOR] Support listener's sockets unix on http logs.
12203 - [MEDIUM] Add supports of bind on unix sockets.
12204 - [BUG] stick table purge failure if size less than 255
12205 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
12206 - [MEDIUM] Implement tcp inspect response rules
12207 - [DOC] tcp-response content and inspect
12208 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
12209 - [DOC] acls rep_ssl_hello and req_ssl_hello
12210 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
12211 - [DOC] new type binary in stick-table
12212 - [DOC] stick store-response and new patterns payload and payload_lv
12213 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
12214 - [MEDIUM] Create updates tree on stick table to manage sync.
12215 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
12216 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
12217 - [MEDIUM] Manage soft stop on peers proxy
12218 - [DOC] add documentation for peers section
12219 - [MINOR] checks: add support for LDAPv3 health checks
12220 - [MINOR] add better support to "mysql-check"
12221 - [BUG] Restore info about available active/backup servers
12222 - [CONTRIB] Update haproxy.pl
12223 - [CONTRIB] Update Cacti Tempates
12224 - [CONTRIB] add templates for Cacti.
12225 - [BUG] http: don't consider commas as a header delimitor within quotes
12226 - [MINOR] support a global jobs counter
12227 - [DOC] add a summary about cookie incompatibilities between specs and browsers
12228 - [DOC] fix description of cookie "insert" and "indirect" modes
12229 - [MEDIUM] http: fix space handling in the request cookie parser
12230 - [MEDIUM] http: fix space handling in the response cookie parser
12231 - [DOC] fix typo in the queue() definition (backend, not frontend)
12232 - [BUG] deinit: unbind listeners before freeing them
12233 - [BUG] stream_interface: only call si->release when both dirs are closed
12234 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
12235 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
12236 - [MINOR] halog: add '-tc' to sort by termination codes
12237 - [MINOR] halog: skip non-traffic logs for -st and -tc
12238 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
12239 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
12240 - [DOC] bind option is "defer-accept", not "defer_accept"
12241 - [DOC] missing index entry for http-check send-state
12242 - [DOC] tcp-request inspect-delay is for backends too
12243 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
12244 - [BUG] stream_sock: try to flush any extra pending request data after a POST
12245 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
12246 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
12247 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
12248 - [MEDIUM] checks: add support for HTTP contents lookup
12249 - [TESTS] add test-check-expect to test various http-check methods
12250 - [MINOR] global: add "tune.chksize" to change the default check buffer size
12251 - [MINOR] cookie: add options "maxidle" and "maxlife"
12252 - [MEDIUM] cookie: support client cookies with some contents appended to their value
12253 - [MINOR] http: make some room in the transaction flags to extend cookies
12254 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
12255 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
12256 - [MINOR] add encode/decode function for 30-bit integers from/to base64
12257 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
12258 - [MEDIUM] cookie: set the date in the cookie if needed
12259 - [DOC] document the cookie maxidle and maxlife parameters
12260 - [BUG] checks: don't log backend down for all zero-weight servers
12261 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
12262 - [BUG] config: report correct keywords for "observe"
12263 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
12264 - [MINOR] acl: add the http_req_first match
12265 - [DOC] fix typos about bind-process syntax
12266 - [BUG] cookie: correctly unset default cookie parameters
12267 - [MINOR] cookie: add support for the "preserve" option
12268 - [BUG] ebtree: fix duplicate strings insertion
12269 - [CONTRIB] halog: report per-url counts, errors and times
12270 - [CONTRIB] halog: minor speed improvement in timer parser
12271 - [MINOR] buffers: add a new request analyser flag for PROXY mode
12272 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
12273 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
12274 - [MINOR] standard: change arg type from const char* to char*
12275 - [MINOR] frontend: add a new analyser to parse a proxied connection
12276 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
12277 - [DOC] add the proxy protocol's specifications
12278 - [DOC] document the 'accept-proxy' bind option
12279 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
12280 - [DOC] add references to unix socket handling
12281 - [MINOR] move MAXPATHLEN definition to compat.h
12282 - [MEDIUM] unix sockets: cleanup the error reporting path
12283 - [BUG] session: don't stop forwarding of data upon last packet
12284 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
12285 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
12286 - [BUG] accept: don't close twice upon error
12287 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
12288 - [OPTIM] stream_sock: don't clear FDs that are already cleared
12289 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
12290
Willy Tarreau37242fa2010-08-28 19:21:00 +0200122912010/08/28 : 1.5-dev2
12292 - [MINOR] startup: release unused structs after forking
12293 - [MINOR] startup: don't wait for nothing when no old pid remains
12294 - [CLEANUP] reference product branch 1.5
12295 - [MEDIUM] signals: add support for registering functions and tasks
12296 - [MEDIUM] signals: support redistribution of signal zero when stopping
12297 - [BUG] http: don't set auto_close if more data are expected
12298
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200122992010/08/25 : 1.5-dev1
12300 - [BUG] stats: session rate limit gets garbaged in the stats
12301 - [DOC] mention 'option http-server-close' effect in Tq section
12302 - [DOC] summarize and highlight persistent connections behaviour
12303 - [DOC] add configuration samples
12304 - [BUG] http: dispatch and http_proxy modes were broken for a long time
12305 - [BUG] http: the transaction must be initialized even in TCP mode
12306 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
12307 - [BUG] consistent hash: balance on all servers, not only 2 !
12308 - [CONTRIB] halog: report per-server status codes, errors and response times
12309 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
12310 - [BUG] client: always ensure to zero rep->analysers
12311 - [BUG] session: clear BF_READ_ATTACHED before next I/O
12312 - [BUG] http: automatically close response if req is aborted
12313 - [BUG] proxy: connection rate limiting was eating lots of CPU
12314 - [BUG] http: report correct flags in case of client aborts during body
12315 - [TESTS] refine non-regression tests and add 4 new tests
12316 - [BUG] debug: wrong pointer was used to report a status line
12317 - [BUG] debug: correctly report truncated messages
12318 - [DOC] document the "dispatch" keyword
12319 - [BUG] stick_table: fix possible memory leak in case of connection error
12320 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
12321 - [MINOR] accept: count the incoming connection earlier
12322 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
12323 - [CLEANUP] client: move some ACLs away to their respective locations
12324 - [CLEANUP] rename client -> frontend
12325 - [MEDIUM] separate protocol-level accept() from the frontend's
12326 - [MINOR] proxy: add a list to hold future layer 4 rules
12327 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
12328 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
12329 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
12330 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
12331 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
12332 - [CLEANUP] buffer->cto is not used anymore
12333 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
12334 - [MEDIUM] session: initialize server-side timeouts after connect()
12335 - [MEDIUM] backend: initialize the server stream_interface upon connect()
12336 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
12337 - [MEDIUM] session: move the conn_retries attribute to the stream interface
12338 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
12339 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
12340 - [MAJOR] frontend: reorder the session initialization upon accept
12341 - [MINOR] proxy: add an accept() callback for the application layer
12342 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
12343 - [MEDIUM] stats: rely on the standard session_accept() function
12344 - [MINOR] buffer: refine the flags that may wake an analyser up.
12345 - [MINOR] stream_sock: don't dereference a non-existing frontend
12346 - [MINOR] session: differenciate between accepted connections and received connections
12347 - [MEDIUM] frontend: count the incoming connection earlier
12348 - [MINOR] frontend: count denied TCP requests separately
12349 - [CLEANUP] stick_table: add/clarify some comments
12350 - [BUILD] memory: add a few missing parenthesis to the pool management macros
12351 - [MINOR] stick_table: add support for variable-sized data
12352 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
12353 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
12354 - [MEDIUM] stick_table: add room for extra data types
12355 - [MINOR] stick_table: add support for "conn_cum" data type.
12356 - [MEDIUM] stick_table: don't overwrite data when storing an entry
12357 - [MINOR] config: initialize stick tables after all the parsing
12358 - [MINOR] stick_table: provide functions to return stksess data from a type
12359 - [MEDIUM] stick_table: move the server ID to a generic data type
12360 - [MINOR] stick_table: enable it for frontends too
12361 - [MINOR] stick_table: export the stick_table_key
12362 - [MINOR] tcp: add per-source connection rate limiting
12363 - [MEDIUM] stick_table: separate storage and update of session entries
12364 - [MEDIUM] stick-tables: add a reference counter to each entry
12365 - [MINOR] session: add a pointer to the tracked counters for the source
12366 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
12367 - [BUG] config: report the correct proxy type in tcp-request errors
12368 - [MINOR] config: provide a function to quote args in a more friendly way
12369 - [BUG] stick_table: the fix for the memory leak caused a regression
12370 - [MEDIUM] backend: support servers on 0.0.0.0
12371 - [BUG] stick-table: correctly refresh expiration timers
12372 - [MEDIUM] stream-interface: add a ->release callback
12373 - [MINOR] proxy: add a "parent" member to the structure
12374 - [MEDIUM] session: make it possible to call an I/O handler on both SI
12375 - [MINOR] tools: add a fast div64_32 function
12376 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
12377 - [MINOR] errors: provide new status codes for config parsing functions
12378 - [BUG] http: denied requests must not be counted as denied resps in listeners
12379 - [MINOR] tools: add a get_std_op() function to parse operators
12380 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
12381 - [MAJOR] stream_sock: better wakeup conditions on read()
12382 - [BUG] session: analysers must be checked when SI state changes
12383 - [MINOR] http: reset analysers to listener's, not frontend's
12384 - [MEDIUM] session: support "tcp-request content" rules in backends
12385 - [BUILD] always match official tags when doing git-tar
12386 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
12387 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
12388 - [MINOR] tcp: src_count acl does not have a permanent result
12389 - [MAJOR] session: add track-counters to track counters related to the session
12390 - [MINOR] stick-table: provide a table lookup function
12391 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
12392 - [MEDIUM] session: move counter ACL fetches from proto_tcp
12393 - [MEDIUM] session: add concurrent connections counter
12394 - [MEDIUM] session: add data in and out volume counters
12395 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
12396 - [MEDIUM] session-counters: automatically update tracked connection count
12397 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
12398 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
12399 - [MEDIUM] session: add a counter on the cumulated number of sessions
12400 - [MINOR] config: support a comma-separated list of store data types in stick-table
12401 - [MEDIUM] stick-tables: add support for arguments to data_types
12402 - [MEDIUM] stick-tables: add stored data argument type checking
12403 - [MEDIUM] session counters: add conn_rate and sess_rate counters
12404 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
12405 - [MINOR] stktable: add a stktable_update_key() function
12406 - [MINOR] session-counters: add a general purpose counter (gpc0)
12407 - [MEDIUM] session-counters: add HTTP req/err tracking
12408 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
12409 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
12410 - [CLEANUP] stick-table: declare stktable_data_types as extern
12411 - [MEDIUM] stick-table: make use of generic types for stored data
12412 - [MINOR] stats: correctly report errors on "show table" and "clear table"
12413 - [MEDIUM] stats: add the ability to dump table entries matching criteria
12414 - [DOC] configuration: document all the new tracked counters
12415 - [DOC] stats: document "show table" and "clear table"
12416 - [MAJOR] session-counters: split FE and BE track counters
12417 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
12418 - [MEDIUM] session counters: automatically remove expired entries.
12419 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
12420 - [MEDIUM] session-counters: make it possible to count connections from frontend
12421 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
12422 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
12423 - [CLEANUP] stats: use stksess_kill() to remove table entries
12424 - [DOC] update the references to session counters and to tcp-request connection
12425 - [DOC] cleanup: split a few long lines
12426 - [MEDIUM] http: forward client's close when abortonclose is set
12427 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
12428 - [BUG] stats: global stats timeout may be specified before stats socket.
12429 - [BUG] conf: add tcp-request content rules to the correct list
12430
Willy Tarreau21475e32010-05-23 08:46:08 +0200124312010/05/23 : 1.5-dev0
12432 - exact copy of 1.4.6
12433
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200124342010/05/16 : 1.4.6
12435 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
12436 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
12437 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
12438 - [DOC] add a few precisions about the use of RDP cookies
12439
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200124402010/05/13 : 1.4.5
12441 - [DOC] report minimum kernel version for tproxy in the Makefile
12442 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
12443 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
12444 - [DOC] fix ignore-persist/force-persist documentation
12445 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
12446 - [DOC] doc/configuration.txt: fix typos
12447 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
12448 - [MINOR] fix possible crash in debug mode with invalid responses
12449 - [MINOR] halog: add support for statisticts on status codes
12450 - [OPTIM] halog: use a faster zero test in fgets()
12451 - [OPTIM] halog: minor speedup by using unlikely()
12452 - [OPTIM] halog: speed up fgets2-64 by about 10%
12453 - [DOC] refresh the README file and merge the CONTRIB file into it
12454 - [MINOR] acl: support loading values from files
12455 - [MEDIUM] ebtree: upgrade to version 6.0
12456 - [MINOR] acl trees: add flags and union members to store values in trees
12457 - [MEDIUM] acl: add ability to insert patterns in trees
12458 - [MEDIUM] acl: add tree-based lookups of exact strings
12459 - [MEDIUM] acl: add tree-based lookups of networks
12460 - [MINOR] acl: ignore empty lines and comments in pattern files
12461 - [MINOR] stick-tables: add support for "stick on hdr"
12462
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200124632010/04/07 : 1.4.4
12464 - [BUG] appsession should match the whole cookie name
12465 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
12466 - [MEDIUM] backend: move the transparent proxy address selection to backend
12467 - [MINOR] add very fast IP parsing functions
12468 - [MINOR] add new tproxy flags for dynamic source address binding
12469 - [MEDIUM] add ability to connect to a server from an IP found in a header
12470 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
12471 - [MINOR] http: make it possible to pretend keep-alive when doing close
12472 - [MINOR] config: report "default-server" instead of "(null)" in error messages
12473
Willy Tarreau75934a12010-03-30 09:50:08 +0200124742010/03/30 : 1.4.3
12475 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
12476 - [MEDIUM] session: better fix for connection to servers with closed input
12477 - [DOC] indicate in the doc how to bind to port ranges
12478 - [BUG] backend: L7 hashing must not be performed on incomplete requests
12479 - [TESTS] add a simple program to test connection resets
12480 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
12481 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
12482 - [MINOR] config: allow "slowstart 0s"
12483 - [BUILD] 'make tags' did not consider files ending in '.c'
12484 - [MINOR] checks: add the ability to disable a server in the config
12485
Willy Tarreauda618cb2010-03-17 23:41:57 +0100124862010/03/17 : 1.4.2
12487 - [CLEANUP] product branch update
12488 - [DOC] Some more documentation cleanups
12489 - [BUG] clf logs segfault when capturing a non existant header
12490 - [OPTIM] config: only allocate check buffer when checks are enabled
12491 - [MEDIUM] checks: support multi-packet health check responses
12492 - [CLEANUP] session: remove duplicate test
12493 - [BUG] http: don't wait for response data to leave buffer is client has left
12494 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
12495 - [MINOR] stats: don't send empty lines in "show errors"
12496 - [MINOR] stats: make the data dump function reusable for other purposes
12497 - [MINOR] stats socket: add show sess <id> to dump details about a session
12498 - [BUG] stats: connection reset counters must be plain ascii, not HTML
12499 - [BUG] url_param hash may return a down server
12500 - [MINOR] force null-termination of hostname
12501 - [MEDIUM] connect to servers even when the input has already been closed
12502 - [BUG] don't merge anonymous ACLs !
12503 - [BUG] config: fix endless loop when parsing "on-error"
12504 - [MINOR] http: don't mark a server as failed when it returns 501/505
12505 - [OPTIM] checks: try to detect the end of response without polling again
12506 - [BUG] checks: don't report an error when recv() returns an error after data
12507 - [BUG] checks: don't abort when second poll returns an error
12508 - [MINOR] checks: make shutdown() silently fail
12509 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
12510 - [BUG] init: unconditionally catch SIGPIPE
12511 - [BUG] checks: don't wait for a close to start parsing the response
12512
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100125132010/03/04 : 1.4.1
12514 - [BUG] Clear-cookie path issue
12515 - [DOC] fix typo on stickiness rules
12516 - [BUILD] fix BSD and OSX makefiles for missing files
12517 - [BUILD] includes order breaks OpenBSD build
12518 - [BUILD] fix some build warnings on Solaris with is* macros
12519 - [BUG] logs: don't report "last data" when we have just closed after an error
12520 - [BUG] logs: don't report "proxy request" when server closes early
12521 - [BUILD] fix platform-dependant build issues related to crypt()
12522 - [STATS] count transfer aborts caused by client and by server
12523 - [STATS] frontend requests were not accounted for failed requests
12524 - [MINOR] report total number of processed connections when stopping a proxy
12525 - [DOC] be more clear about the limitation to one single monitor-net entry
12526
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100125272010/02/26 : 1.4.0
12528 - [MINOR] stats: report maint state for tracking servers too
12529 - [DOC] fix summary to add pattern extraction
12530 - [DOC] Documentation cleanups
12531 - [BUG] cfgparse memory leak and missing free calls in deinit()
12532 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
12533 - [EXAMPLES] add auth.cfg
12534 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
12535 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
12536 - [BUILD] auth: don't use unnamed unions
12537 - [BUG] config: report unresolvable host names as errors
12538 - [BUILD] fix build breakage with DEBUG_FULL
12539 - [DOC] fix a typo about timeout check and clarify the explanation.
12540 - [MEDIUM] http: don't use trash to realign large buffers
12541 - [STATS] report HTTP requests (total and rate) in frontends
12542 - [STATS] separate frontend and backend HTTP stats
12543 - [MEDIUM] http: revert to use a swap buffer for realignment
12544 - [MINOR] stats: report the request rate in frontends as cell titles
12545 - [MINOR] stats: mark areas with an underline when tooltips are available
12546 - [DOC] reorder some entries to maintain the alphabetical order
12547 - [DOC] cleanup of the keyword matrix
12548
Willy Tarreaub05613d2010-02-02 10:18:28 +0100125492010/02/02 : 1.4-rc1
12550 - [MEDIUM] add a maintenance mode to servers
12551 - [MINOR] http-auth: last fix was wrong
12552 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
12553 - [MINOR] Base64 decode
12554 - [MINOR] generic auth support with groups and encrypted passwords
12555 - [MINOR] add ACL_TEST_F_NULL_MATCH
12556 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
12557 - [MINOR] acl: add http_auth and http_auth_group
12558 - [MAJOR] use the new auth framework for http stats
12559 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
12560 - [STATS] make it possible to change a CLI connection timeout
12561 - [BUG] patterns: copy-paste typo in type conversion arguments
12562 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
12563 - [MINOR] standard: str2mask: string to netmask converter
12564 - [MINOR] pattern: add support for argument parsers for converters
12565 - [MINOR] pattern: add the "ipmask()" converting function
12566 - [MINOR] config: off-by-one in "stick-table" after list of converters
12567 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
12568 - [BUG] restore accidentely removed line in last patch !
12569 - [MINOR] checks: make the HTTP check code add the CRLF itself
12570 - [MINOR] checks: add the server's status in the checks
12571 - [BUILD] halog: make without arch-specific optimizations
12572 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
12573 - [MINOR] http: disable keep-alive when process is going down
12574 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
12575 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
12576 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
12577 - [MINOR] prepare req_*/rsp_* to receive a condition
12578 - [CLEANUP] config: specify correct const char types to warnif_* functions
12579 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
12580 - [MEDIUM] http: make the request filter loop check for optional conditions
12581 - [MEDIUM] http: add support for conditional request filter execution
12582 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
12583 - [MEDIUM] http: add support for conditional request header addition
12584 - [MEDIUM] http: add support for conditional response header rewriting
12585 - [DOC] add some missing ACLs about response header matching
12586 - [MEDIUM] http: add support for proxy authentication
12587 - [MINOR] http-auth: make the 'unless' keyword work as expected
12588 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
12589 - [MEDIUM] add support for anonymous ACLs
12590 - [MEDIUM] http: switch to tunnel mode after status 101 responses
12591 - [MEDIUM] http: stricter processing of the CONNECT method
12592 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
12593 - [MINOR] config: fix too large ssl-hello-check message.
12594 - [BUG] fix error response in case of server error
12595
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100125962010/01/25 : 1.4-dev8
12597 - [CLEANUP] Keep in sync "defaults" support between documentation and code
12598 - [MEDIUM] http: add support for Proxy-Connection header
12599 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
12600 - [MINOR] http: remove a copy-paste typo in transaction cleaning
12601 - [BUG] http: trim any excess buffer data when recycling a connection
12602
Willy Tarreau6939b552010-01-25 01:54:37 +0100126032010/01/25 : 1.4-dev7
12604 - [BUG] appsession: possible memory leak in case of out of memory condition
12605 - [MINOR] config: don't accept 'appsession' in defaults section
12606 - [MINOR] Add function to parse a size in configuration
12607 - [MEDIUM] Add stick table (persistence) management functions and types
12608 - [MEDIUM] Add pattern fetch management types and functions
12609 - [MEDIUM] Add src dst and dport pattern fetches.
12610 - [MEDIUM] Add stick table configuration and init.
12611 - [MEDIUM] Add stick and store rules analysers.
12612 - [MINOR] add option "mysql-check" to use MySQL health checks
12613 - [BUG] health checks: fix requeued message
12614 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
12615 - [BUG] checks: fix newline termination
12616 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
12617 - [BUG] appsession's sessid must be reset at end of transaction
12618 - [BUILD] appsession did not build anymore under gcc-2.95
12619 - [BUG] server redirection used an uninitialized string.
12620 - [MEDIUM] http: fix handling of message pointers
12621 - [MINOR] http: fix double slash prefix with server redirect
12622 - [MINOR] http redirect: add the ability to append a '/' to the URL
12623 - [BUG] stream_interface: fix retnclose and remove cond_close
12624 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
12625 - [MINOR] http: move appsession 'sessid' from session to http_txn
12626 - [OPTIM] reorder http_txn to optimize cache lines placement
12627 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
12628 - [MINOR] http: add a separate "http-keep-alive" timeout
12629 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
12630 - [DOC] fix various too large lines
12631 - [DOC] remove several trailing spaces
12632 - [DOC] add the doc about stickiness
12633 - [BUILD] remove a warning in standard.h on AIX
12634 - [BUG] checks: chars are unsigned on AIX, check was always true
12635 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
12636 - [BUG] check: we must not check for error before reading a response
12637 - [BUG] buffers: remove remains of wrong obsolete length check
12638 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
12639 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
12640 - [MEDIUM] http: don't switch to tunnel mode upon close
12641 - [DOC] add documentation about connection header processing
12642 - [MINOR] http: add http_remove_header2() to remove a header value.
12643 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
12644 - [MAJOR] http: rework request Connection header handling
12645 - [MAJOR] http: rework response Connection header handling
12646 - [MINOR] add the ability to force kernel socket buffer size.
12647 - [BUG] http_server_error() must not purge a previous pending response
12648 - [OPTIM] http: don't delay response if next request is incomplete
12649 - [MINOR] add the "force-persist" statement to force persistence on down servers
12650 - [MINOR] http: logs must report persistent connections to down servers
12651 - [BUG] buffer_replace2 must never change the ->w entry
12652
Willy Tarreau11f8f542010-01-08 07:49:44 +0100126532010/01/08 : 1.4-dev6
12654 - [BUILD] warning in stream_interface.h
12655 - [BUILD] warning ultoa_r returns char *
12656 - [MINOR] hana: only report stats if it is enabled
12657 - [MINOR] stats: add "a link" & "a href" for sockets
12658 - [MINOR]: stats: add show-legends to report additional informations
12659 - [MEDIUM] default-server support
12660 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
12661 - [MINOR] stats: add href to tracked server
12662 - [BUG] stats: show UP/DOWN status also in tracking servers
12663 - [DOC] Restore ability to search a keyword at the beginning of a line
12664 - [BUG] stats: cookie should be reported under backend not under proxy
12665 - [BUG] cfgparser/stats: fix error message
12666 - [BUG] http: disable auto-closing during chunk analysis
12667 - [BUG] http: fix hopefully last closing issue on data forwarding
12668 - [DEBUG] add an http_silent_debug function to debug HTTP states
12669 - [MAJOR] http: fix again the forward analysers
12670 - [BUG] http_process_res_common() must not skip the forward analyser
12671 - [BUG] http: some possible missed close remain in the forward chain
12672 - [BUG] http: redirect needed to be updated after recent changes
12673 - [BUG] http: don't set no-linger on response in case of forced close
12674 - [MEDIUM] http: restore the original behaviour of option httpclose
12675 - [TESTS] add a file to test various connection modes
12676 - [BUG] http: check options before the connection header
12677 - [MAJOR] session: fix the order by which the analysers are run
12678 - [MEDIUM] session: also consider request analysers added during response
12679 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
12680 - [BUG] http: memory leak with captures when using keep-alive
12681 - [BUG] http: fix for capture memory leak was incorrect
12682 - [MINOR] http redirect: use proper call to return last response
12683 - [MEDIUM] http: wait for some flush of the response buffer before a new request
12684 - [MEDIUM] session: limit the number of analyser loops
12685
Willy Tarreau1f445892010-01-03 23:23:36 +0100126862010/01/03 : 1.4-dev5
12687 - [MINOR] server tracking: don't care about the tracked server's mode
12688 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
12689 - [MEDIUM] appsession: add the "request-learn" option
12690 - [BUG] Configuration parser bug when escaping characters
12691 - [MINOR] CSS & HTML fun
12692 - [MINOR] Collect & provide http response codes received from servers
12693 - [BUG] Fix silly typo: hspr_other -> hrsp_other
12694 - [MINOR] Add "a name" to stats page
12695 - [MINOR] add additional "a href"s to stats page
12696 - [MINOR] Collect & provide http response codes for frontends, fix backends
12697 - [DOC] some small spell fixes and unifications
12698 - [MEDIUM] Decrease server health based on http responses / events, version 3
12699 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
12700 - [BUG] config: fix erroneous check on cookie domain names, again
12701 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
12702 - [DOC] trivial fix for man page
12703 - [MINOR] config: report all supported options for the "bind" keyword
12704 - [MINOR] tcp: add support for the defer_accept bind option
12705 - [MINOR] unix socket: report the socket path in case of bind error
12706 - [CONTRIB] halog: support searching by response time
12707 - [DOC] add a reminder about obsolete documents
12708 - [DOC] point to 1.4 doc, not 1.3
12709 - [DOC] option tcp-smart-connect was missing from index
12710 - [MINOR] http: detect connection: close earlier
12711 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
12712 - [OPTIM] move some rarely used fields out of fdtab
12713 - [MEDIUM] fd: merge fd_list into fdtab
12714 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
12715 - [MINOR] http: add new transaction flags for keep-alive and content-length
12716 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
12717 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
12718 - [MINOR] http request: simplify the test of no-data
12719 - [MEDIUM] http request: simplify POST length detection
12720 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
12721 - [MAJOR] http: create the analyser which waits for a response
12722 - [MINOR] http: pre-set the persistent flags in the transaction
12723 - [MEDIUM] http response: check body length and set transaction flags
12724 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
12725 - [MINOR] http: remove the last call to stream_int_return
12726 - [IMPORT] import ebtree v5.0 into directory ebtree/
12727 - [MEDIUM] build: switch ebtree users to use new ebtree version
12728 - [CLEANUP] ebtree: remove old unused files
12729 - [BUG] definitely fix regparm issues between haproxy core and ebtree
12730 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
12731 - [BUILD] missing #ifndef in ebmbtree.h
12732 - [BUILD] missing #ifndef in ebsttree.h
12733 - [MINOR] tools: add hex2i() function to convert hex char to int
12734 - [MINOR] http: create new MSG_BODY sub-states
12735 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
12736 - [DOC] option is "defer-accept", not "defer_accept"
12737 - [MINOR] http: keep pointer to beginning of data
12738 - [BUG] x-original-to: name was not set in default instance
12739 - [MINOR] http: detect tunnel mode and set it in the session
12740 - [BUG] config: fix error message when config file is not found
12741 - [BUG] config: fix wrong handling of too large argument count
12742 - [BUG] config: disable 'option httplog' on TCP proxies
12743 - [BUG] config: fix erroneous check on cookie domain names
12744 - [BUG] config: cookie domain was ignored in defaults sections
12745 - [MINOR] config: support passing multiple "domain" statements to cookies
12746 - [MINOR] ebtree: add functions to lookup non-null terminated strings
12747 - [MINOR] config: don't report error on all subsequent files on failure
12748 - [BUG] second fix for the printf format warning
12749 - [BUG] check_post: limit analysis to the buffer length
12750 - [MEDIUM] http: process request body in a specific analyser
12751 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
12752 - [MAJOR] http: completely process the "connection" header
12753 - [MINOR] http: only consider chunk encoding with HTTP/1.1
12754 - [MAJOR] buffers: automatically compute the maximum buffer length
12755 - [MINOR] http: move the http transaction init/cleanup code to proto_http
12756 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
12757 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
12758 - [MEDIUM] http: rework chunk-size parser
12759 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
12760 - [MINOR] buffers: add buffer_ignore() to skip some bytes
12761 - [BUG] http: offsets are relative to the buffer, not to ->som
12762 - [MEDIUM] http: automatically re-aling request buffer
12763 - [BUG] http: body parsing must consider the start of message
12764 - [MINOR] new function stream_int_cond_close()
12765 - [MAJOR] http: implement body parser
12766 - [BUG] http: typos on several unlikely() around header insertion
12767 - [BUG] stream_sock: wrong max computation on recv
12768 - [MEDIUM] http: rework the buffer alignment logic
12769 - [BUG] buffers: wrong size calculation for displaced data
12770 - [MINOR] stream_sock: prepare for closing when all pending data are sent
12771 - [MEDIUM] http: add two more states for the closing period
12772 - [MEDIUM] http: properly handle "option forceclose"
12773 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
12774 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
12775 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
12776 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
12777 - [MINOR] config: option forceclose is valid in frontends too
12778 - [BUILD] halog: insufficient include path in makefile
12779 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
12780 - [MEDIUM] http: make the parsers able to wait for a buffer flush
12781 - [MAJOR] http: add support for option http-server-close
12782 - [BUG] http: ensure we abort data transfer on write error
12783 - [BUG] last fix was overzealous and disabled server-close
12784 - [BUG] http: fix erroneous trailers size computation
12785 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
12786 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
12787 - [BUG] http: redirects were broken by chunk changes
12788 - [BUG] http: the request URI pointer is relative to the buffer
12789 - [OPTIM] http: don't immediately enable reading on request
12790 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
12791 - [BUG] http: take care of errors, timeouts and aborts during the data phase
12792 - [MINOR] http: don't wait for sending requests to the server
12793 - [MINOR] http: make the conditional redirect support keep-alive
12794 - [BUG] http: fix cookie parser to support spaces and commas in values
12795 - [MINOR] config: some options were missing for "redirect"
12796 - [MINOR] redirect: add support for unconditional rules
12797 - [MINOR] config: centralize proxy struct initialization
12798 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
12799 - [MEDIUM] config: remove the limitation of 10 config files
12800 - [CLEANUP] http: remove a remaining impossible condition
12801 - [OPTIM] http: optimize a bit the construct of the forward loops
12802
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200128032009/10/12 : 1.4-dev4
12804 - [DOC] add missing rate_lim and rate_max
12805 - [MAJOR] struct chunk rework
12806 - [MEDIUM] Health check reporting code rework + health logging, v3
12807 - [BUG] check if rise/fall has an argument and it is > 0
12808 - [MINOR] health checks logging unification
12809 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
12810 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
12811 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
12812 - [MINOR] Introduce include/types/counters.h
12813 - [CLEANUP] Move counters to dedicated structures
12814 - [MINOR] Add "clear counters" to clear statistics counters
12815 - [MEDIUM] Collect & provide separate statistics for sockets, v2
12816 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
12817 - [MINOR] acl: don't report valid acls as potential mistakes
12818 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
12819 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
12820 - [MINOR] Capture & display more data from health checks, v2
12821 - [BUG] task.c: don't assing last_timer to node-less entries
12822 - [BUG] http stats: large outputs sometimes got some parts chopped off
12823 - [MINOR] backend: export some functions to recount servers
12824 - [MINOR] backend: uninline some LB functions
12825 - [MINOR] include time.h from freq_ctr.h as is uses "now".
12826 - [CLEANUP] backend: move LB algos to individual files
12827 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
12828 - [CLEANUP] proxy: move last lb-specific bits to their respective files
12829 - [MINOR] backend: separate declarations of LB algos from their lookup method
12830 - [MINOR] backend: reorganize the LB algorithm selection
12831 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
12832 - [MINOR] report list of supported pollers with -vv
12833 - [DOC] log-health-checks is an option, not a directive
12834 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
12835 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
12836 - [MINOR] stats: strip CR and LF from the input command line
12837 - [BUG] don't refresh timeouts late after detected activity
12838 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
12839 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
12840 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
12841 - [MEDIUM] stats: don't use s->ana_state anymore
12842 - [MINOR] remove now obsolete ana_state from the session struct
12843 - [MEDIUM] stats: make HTTP stats use an I/O handler
12844 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
12845 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
12846 - [MINOR] config: reference file and line with any listener/proxy/server declaration
12847 - [MINOR] config: report places of duplicate names or IDs
12848 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
12849 - [MINOR] tools: add a new get_next_id() function
12850 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
12851 - [OPTIM] counters: move some max numbers to the counters struct
12852 - [BUG] counters: fix segfault on missing counters for a listener
12853 - [MEDIUM] backend: implement consistent hashing variation
12854 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
12855 - [MINOR] stats: use 'clear counters all' to clear all values
12856 - [MEDIUM] add access restrictions to the stats socket
12857 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
12858 - [MINOR] proxy: provide function to retrieve backend/server pointers
12859 - [MINOR] add the "initial weight" to the server struct.
12860 - [MEDIUM] stats: add the "get weight" command to report a server's weight
12861 - [MEDIUM] stats: add the "set weight" command
12862 - [BUILD] add a 'make tags' target
12863 - [MINOR] stats: add support for numeric IDs in set weight/get weight
12864 - [MINOR] stats: use a dedicated state to output static data
12865 - [OPTIM] stats: check free space before trying to print
12866
Willy Tarreau9f389e02009-09-24 00:12:50 +0200128672009/09/24 : 1.4-dev3
12868 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
12869 - [MEDIUM] Collect & show information about last health check, v3
12870 - [MINOR] export the hostname variable so that all the code can access it
12871 - [MINOR] stats: add a new node-name setting
12872 - [MEDIUM] remove old experimental tcpsplice option
12873 - [BUILD] fix build for systems without SOL_TCP
12874 - [MEDIUM] move connection establishment from backend to the SI.
12875 - [MEDIUM] make the global stats socket part of a frontend
12876 - [MEDIUM] session: account per-listener connections
12877 - [MINOR] session: switch to established state if no connect function
12878 - [MEDIUM] make the unix stats sockets use the generic session handler
12879 - [CLEANUP] unix: remove uxst_process_session()
12880 - [CLEANUP] move remaining stats sockets code to dumpstats
12881 - [MINOR] move the initial task's nice value to the listener
12882 - [MINOR] cleanup set_session_backend by using pre-computed analysers
12883 - [MINOR] set s->srv_error according to the analysers
12884 - [MEDIUM] set rep->analysers from fe and be analysers
12885 - [MEDIUM] replace BUFSIZE with buf->size in computations
12886 - [MEDIUM] make it possible to change the buffer size in the configuration
12887 - [MEDIUM] report error on buffer writes larger than buffer size
12888 - [MEDIUM] stream_interface: add and use ->update function to resync
12889 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
12890 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
12891 - [BUG] tarpit did not work anymore
12892 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
12893 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
12894 - [MINOR] buffers: provide more functions to handle buffer data
12895 - [MEDIUM] buffers: provide new buffer_feed*() function
12896 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
12897 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
12898 - [BUG] buffer_forward() would not correctly consider data already scheduled
12899 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
12900 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
12901 - [MAJOR] http: add support for HTTP 1xx informational responses
12902 - [MINOR] buffers: inline buffer_si_putchar()
12903 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
12904 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
12905 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
12906 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
12907 - [MEDIUM] add support for infinite forwarding
12908 - [BUILD] stream_interface: fix conflicting declaration
12909 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
12910 - [BUG] variable buffer size ignored at initialization time
12911 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
12912 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
12913 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
12914 - [MINOR] stream_interface: add iohandler callback
12915 - [MINOR] stream_interface: add functions to support running as internal/external tasks
12916 - [MEDIUM] session: call iohandler for embedded tasks (applets)
12917 - [MINOR] add a ->private member to the stream_interface
12918 - [MEDIUM] stats: prepare the connection for closing before dumping
12919 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
12920
Willy Tarreau68dcd252009-08-09 22:57:09 +0200129212009/08/09 : 1.4-dev2
12922 - [BUG] task: fix possible crash when some timeouts are not configured
12923 - [BUG] log: option tcplog would log to global if no logger was defined
12924
Willy Tarreaub03d2982009-07-29 22:38:32 +0200129252009/07/29 : 1.4-dev1
12926 - [MINOR] acl: add support for matching of RDP cookies
12927 - [MEDIUM] add support for RDP cookie load-balancing
12928 - [MEDIUM] add support for RDP cookie persistence
12929 - [MINOR] add a new CLF log format
12930 - [MINOR] startup: don't imply -q with -D
12931 - [BUG] ensure that we correctly re-start old process in case of error
12932 - [MEDIUM] add support for binding to source port ranges during connect
12933 - [MINOR] config: track "no option"/"option" changes
12934 - [MINOR] config: support resetting options do default values
12935 - [MEDIUM] implement option tcp-smart-accept at the frontend
12936 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
12937 - [MEDIUM] implement tcp-smart-connect option at the backend
12938 - [MEDIUM] add support for TCP MSS adjustment for listeners
12939 - [MEDIUM] support setting a server weight to zero
12940 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
12941 - [MAJOR] session: don't clear buffer status flags anymore
12942 - [MAJOR] session: only check for timeouts when they have just occurred.
12943 - [MAJOR] session: simplify buffer error handling
12944 - [MEDIUM] config: split parser and checker in two functions
12945 - [MEDIUM] config: support loading multiple configuration files
12946 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
12947 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
12948 - [MEDIUM] splice: set the capability on each stream_interface
12949 - [BUG] http: redirect rules were processed too early
12950 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
12951 - [MEDIUM] http: split request waiter from request processor
12952 - [MEDIUM] session: tell analysers what bit they were called for
12953 - [MAJOR] http: complete splitting of the remaining stages
12954 - [MINOR] report in the proxies the requirements for ACLs
12955 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
12956 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
12957 - [MINOR] prepare callers of session_set_backend to handle errors
12958 - [BUG] default ACLs did not properly set the ->requires flag
12959 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
12960 - [MINOR] ensure we can jump from swiching rules to http without data
12961 - [MINOR] http: take http request timeout from the backend
12962 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
12963 - [BUILD] report commit date and not author's date as build date
12964 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
12965 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
12966 - [BUG] stream_sock: don't stop reading when the poller reports an error
12967 - [BUG] config: tcp-request content only accepts "if" or "unless"
12968 - [BUG] task: fix possible timer drift after update
12969 - [MINOR] apply tcp-smart-connect option for the checks too
12970 - [MINOR] stats: better displaying in MSIE
12971 - [MINOR] config: improve error reporting in global section
12972 - [MINOR] config: improve error reporting in listen sections
12973 - [MINOR] config: the "capture" keyword is not allowed in backends
12974 - [MINOR] config: improve error reporting when checking configuration
12975 - [BUILD] fix a minor build warning on AIX
12976 - [BUILD] use "git cmd" instead of "git-cmd"
12977 - [CLEANUP] report 2009 not 2008 in the copyright banner.
12978 - [MINOR] print usage on the stats sockets upon invalid commands
12979 - [MINOR] acl: detect and report potential mistakes in ACLs
12980 - [BUILD] fix incorrect printf arg count with tcp_splice
12981 - [BUG] fix random pauses on last segment of a series
12982 - [BUILD] add support for build under Cygwin
12983
Willy Tarreau79158882009-06-09 11:59:08 +0200129842009/06/09 : 1.4-dev0
12985 - exact copy of 1.3.18
12986
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200129872009/05/10 : 1.3.18
12988 - [MEDIUM] add support for "balance hdr(name)"
12989 - [CLEANUP] give a little bit more information in error message
12990 - [MINOR] add X-Original-To: header
12991 - [BUG] x-original-to: fix missing initialization to default value
12992 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
12993 - [MINOR] improve reporting of misplaced acl/reqxxx rules
12994 - [MEDIUM] http: add options to ignore invalid header names
12995 - [MEDIUM] http: capture invalid requests/responses even if accepted
12996 - [BUILD] add format(printf) to printf-like functions
12997 - [MINOR] fix several printf formats and missing arguments
12998 - [BUG] stats: total and lbtot are unsigned
12999 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
13000 - [CLEANUP] remove unused make option from haproxy.spec
13001 - [BUILD] make it possible to pass alternative arch at build time
13002 - [MINOR] switch all stat counters to 64-bit
13003 - [MEDIUM] ensure we don't recursively call pool_gc2()
13004 - [CRITICAL] uninitialized response field can sometimes cause crashes
13005 - [BUG] fix wrong pointer arithmetics in HTTP message captures
13006 - [MINOR] rhel init script : support the reload operation
13007 - [MINOR] add basic signal handling functions
13008 - [BUILD] add signal.o to all makefiles
13009 - [MEDIUM] call signal_process_queue from run_poll_loop
13010 - [MEDIUM] pollers: don't wait if a signal is pending
13011 - [MEDIUM] convert all signals to asynchronous signals
13012 - [BUG] O(1) pollers should check their FD before closing it
13013 - [MINOR] don't close stdio fds twice
13014 - [MINOR] add options dontlog-normal and log-separate-errors
13015 - [DOC] minor fixes and rearrangements
13016 - [BUG] fix parser crash on unconditional tcp content rules
13017 - [DOC] rearrange the configuration manual and add a summary
13018 - [MINOR] standard: provide a new 'my_strndup' function
13019 - [MINOR] implement per-logger log level limitation
13020 - [MINOR] compute the max of sessions/s on fe/be/srv
13021 - [MINOR] stats: report max sessions/s and limit in CSV export
13022 - [MINOR] stats: report max sessions/s and limit in HTML stats
13023 - [MINOR] stats/html: use the arial font before helvetica
13024
Willy Tarreauf459b422009-03-29 15:26:57 +0200130252009/03/29 : 1.3.17
13026 - Update specfile to build for v2.6 kernel.
13027 - [BUG] reset the stream_interface connect timeout upon connect or error
13028 - [BUG] reject unix accepts when connection limit is reached
13029 - [MINOR] show sess: report number of calls to each task
13030 - [BUG] don't call epoll_ctl() on closed sockets
13031 - [BUG] stream_sock: disable I/O on fds reporting an error
13032 - [MINOR] sepoll: don't count two events on the same FD.
13033 - [MINOR] show sess: report a lot more information about sessions
13034 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
13035 - [BUG] don't set an expiration date directly from now_ms
13036 - [MINOR] implement ulltoh() to write HTML-formatted numbers
13037 - [MINOR] stats/html: group digits by 3 to clarify numbers
13038 - [BUILD] remove haproxy-small.spec
13039 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
13040
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100130412009/03/22 : 1.3.16
13042 - [BUILD] Fixed Makefile for linking pcre
13043 - [CONTRIB] selinux policy for haproxy
13044 - [MINOR] show errors: encode backslash as well as non-ascii characters
13045 - [MINOR] cfgparse: some cleanups in the consistency checks
13046 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
13047 - [MINOR] tcp-inspect: permit the use of no-delay inspection
13048 - [MEDIUM] reverse internal proxy declaration order to match configuration
13049 - [CLEANUP] config: catch and report some possibly wrong rule ordering
13050 - [BUG] connect timeout is in the stream interface, not the buffer
13051 - [BUG] session: errors were not reported in termination flags in TCP mode
13052 - [MINOR] tcp_request: let the caller take care of errors and timeouts
13053 - [CLEANUP] http: remove some commented out obsolete code in process_response
13054 - [MINOR] update ebtree to version 4.1
13055 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
13056 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
13057 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
13058 - [MINOR] sched: permit a task to stay up between calls
13059 - [MINOR] task: keep a task count and clean up task creators
13060 - [MINOR] stats: report number of tasks (active and running)
13061 - [BUG] server check intervals must not be null
13062 - [OPTIM] stream_sock: don't retry to read after a large read
13063 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
13064 - [MEDIUM] session: don't resync FSMs on non-interesting changes
13065 - [BUG] check for global.maxconn before doing accept()
13066 - [OPTIM] sepoll: do not re-check whole list upon accepts
13067
Willy Tarreau8185ced2009-03-09 22:45:53 +0100130682009/03/09 : 1.3.16-rc2
13069 - [BUG] stream_sock: write timeout must be updated when forwarding !
13070
Willy Tarreauff63b432009-03-09 01:03:42 +0100130712009/03/09 : 1.3.16-rc1
13072 - appsessions: cleanup DEBUG_HASH and initialize request_counter
13073 - [MINOR] acl: add new keyword "connslots"
13074 - [MINOR] cfgparse: fix off-by 2 in error message size
13075 - [BUILD] fix build with gcc 4.3
13076 - [BUILD] fix MANDIR default location to match documentation
13077 - [TESTS] add a debug patch to help trigger the stats bug
13078 - [BUG] Flush buffers also where there are exactly 0 bytes left
13079 - [MINOR] Allow to specify a domain for a cookie
13080 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
13081 - [MEDIUM] Fix memory freeing at exit
13082 - [MEDIUM] Fix memory freeing at exit, part 2
13083 - [BUG] Fix listen & more of 2 couples <ip>:<port>
13084 - [DOC] remove buggy comment for use_backend
13085 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
13086 - [MEDIUM] add support for URI hash depth and length limits
13087 - [MINOR] permit renaming of x-forwarded-for header
13088 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
13089 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
13090 - [MEDIUM] upgrade to ebtree v4.0
13091 - [DOC] update the README file with new build options
13092 - [MEDIUM] reduce risk of event starvation in ev_sepoll
13093 - [MEDIUM] detect streaming buffers and tag them as such
13094 - [MEDIUM] add support for conditional HTTP redirection
13095 - [BUILD] make install should depend on haproxy not "all"
13096 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
13097 - [BUG] event pollers must not wait if a task exists in the run queue
13098 - [BUG] queue management: wake oldest request in queues
13099 - [BUG] log: reported queue position was offed-by-one
13100 - [BUG] fix the dequeuing logic to ensure that all requests get served
13101 - [DOC] documentation for the "retries" parameter was missing.
13102 - [MEDIUM] implement a monotonic internal clock
13103 - [MEDIUM] further improve monotonic clock by check forward jumps
13104 - [OPTIM] add branch prediction hints in list manipulations
13105 - [MAJOR] replace ultree with ebtree in wait-queues
13106 - [BUG] we could segfault during exit while freeing uri_auths
13107 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
13108 - [MINOR] introduce now_ms, the current date in milliseconds
13109 - [BUG] disable buffer read timeout when reading stats
13110 - [MEDIUM] rework the wait queue mechanism
13111 - [BUILD] change declaration of base64tab to fix build with Intel C++
13112 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
13113 - [MAJOR] use an ebtree instead of a list for the run queue
13114 - [MEDIUM] introduce task->nice and boot access to statistics
13115 - [OPTIM] task_queue: assume most consecutive timers are equal
13116 - [BUILD] silent a warning in unlikely() with gcc 4.x
13117 - [MAJOR] convert all expiration timers from timeval to ticks
13118 - [BUG] use_backend would not correctly consider "unless"
13119 - [TESTS] added test-acl.cfg to test some ACL combinations
13120 - [MEDIUM] add support for configuration keyword registration
13121 - [MEDIUM] modularize the global "stats" keyword configuration parser
13122 - [MINOR] cfgparse: add support for warnings in external functions
13123 - [MEDIUM] modularize the "timeout" keyword configuration parser
13124 - [MAJOR] implement tcp request content inspection
13125 - [MINOR] acl: add a new parsing function: parse_dotted_ver
13126 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
13127 - [CLEANUP] remove unused include/types/client.h
13128 - [CLEANUP] remove many #include <types/xxx> from C files
13129 - [CLEANUP] remove dependency on obsolete INTBITS macro
13130 - [DOC] document the new "tcp-request" keyword and associated ACLs
13131 - [MINOR] acl: add REQ_CONTENT to the list of default acls
13132 - [MEDIUM] acl: permit fetch() functions to set the result themselves
13133 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
13134 - [MINOR] acl: add the "wait_end" acl verb
13135 - [MEDIUM] acl: enforce ACL type checking
13136 - [MEDIUM] acl: set types on all currently known ACL verbs
13137 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
13138 - [CLEANUP] remove 65 useless NULL checks before free
13139 - [MEDIUM] memory: update pool_free2() to support NULL pointers
13140 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
13141 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
13142 - [MEDIUM] process_srv: don't rely at all on client state
13143 - [MEDIUM] process_cli: don't rely at all on server state
13144 - [BUG] fix segfault with url_param + check_post
13145 - [BUG] server timeout was not considered in some circumstances
13146 - [BUG] client timeout incorrectly rearmed while waiting for server
13147 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
13148 - [MAJOR] get rid of SV_STANALYZE (step 2)
13149 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
13150 - [MAJOR] completely separate HTTP and TCP states on the request path
13151 - [BUG] fix recently introduced loop when client closes early
13152 - [MAJOR] get rid of the SV_STHEADERS state
13153 - [MAJOR] better separation of response processing and server state
13154 - [MAJOR] clearly separate HTTP response processing from TCP server state
13155 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
13156 - [MINOR] term_trace: add better instrumentations to trace the code
13157 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
13158 - [BUG] process_response must not enable the read FD
13159 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
13160 - [BUG] process_response: do not touch srv_state
13161 - [BUG] maintain_proxies must not disable backends
13162 - [CLEANUP] get rid of BF_SHUT*_PENDING
13163 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
13164 - [MAJOR] process_session: rely only on buffer flags
13165 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
13166 - [MEDIUM] centralize buffer timeout checks at the top of process_session
13167 - [MINOR] ensure the termination flags are set by process_xxx
13168 - [MEDIUM] session: move the analysis bit field to the buffer
13169 - [OPTIM] process_cli/process_srv: reduce the number of tests
13170 - [BUG] regparm is broken on gcc < 3
13171 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
13172 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
13173 - [BUG] process_cli/process_srv: don't call shutdown when already done
13174 - [BUG] process_request: HTTP body analysis must return zero if missing data
13175 - [TESTS] test-fsm: 22 regression tests for state machines
13176 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
13177 - [BUG] fix harmless but wrong fd insertion sequence
13178 - [MEDIUM] make it possible for analysers to follow the whole session
13179 - [MAJOR] rework of the server FSM
13180 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
13181 - [MEDIUM] massive cleanup of process_srv()
13182 - [MEDIUM] second level of code cleanup for process_srv_data
13183 - [MEDIUM] third cleanup and optimization of process_srv_data()
13184 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
13185 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
13186 - [MAJOR] make the client side use stream_sock_process_data()
13187 - [MEDIUM] split stream_sock_process_data
13188 - [OPTIM] stream_sock_read must check for null-reads more often
13189 - [MINOR] only call flow analysers when their read side is connected.
13190 - [MEDIUM] reintroduce BF_HIJACK with produce_content
13191 - [MINOR] re-arrange buffer flags and rename some of them
13192 - [MINOR] do not check for BF_SHUTR when computing write timeout
13193 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
13194 - [OPTIM] reduce the number of calls to task_wakeup()
13195 - [OPTIM] force inlining of large functions with gcc >= 3
13196 - [MEDIUM] indicate a reason for a task wakeup
13197 - [MINOR] change type of fdtab[]->owner to void*
13198 - [MAJOR] make stream sockets aware of the stream interface
13199 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
13200 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
13201 - [MEDIUM] process_session: make use of the new buffer flags
13202 - [CLEANUP] process_session: move debug outputs out of the critical loop
13203 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
13204 - [OPTIM] add compiler hints in tick_is_expired()
13205 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
13206 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
13207 - [MINOR] add an expiration flag to the stream_sock_interface
13208 - [MAJOR] migrate the connection logic to stream interface
13209 - [MAJOR] add a connection error state to the stream_interface
13210 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
13211 - [MEDIUM] continue layering cleanups.
13212 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
13213 - [MEDIUM] remove stream_sock_update_data()
13214 - [MINOR] maintain a global session list in order to ease debugging
13215 - [BUG] shutw must imply close during a connect
13216 - [MEDIUM] process shutw during connection attempt
13217 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
13218 - [MAJOR] complete layer4/7 separation
13219 - [CLEANUP] move the session-related functions to session.c
13220 - [MINOR] call session->do_log() for logging
13221 - [MINOR] replace the ambiguous client_return function by stream_int_return
13222 - [MINOR] replace client_retnclose() with stream_int_retnclose()
13223 - [MINOR] replace srv_close_with_err() with http_server_error()
13224 - [MEDIUM] make the http server error function a pointer in the session
13225 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
13226 - [MINOR] stream_sock_data_finish() should not expose fd
13227 - [MEDIUM] extract TCP request processing from HTTP
13228 - [MEDIUM] extract the HTTP tarpit code from process_request().
13229 - [MEDIUM] move the HTTP request body analyser out of process_request().
13230 - [MEDIUM] rename process_request to http_process_request
13231 - [BUG] fix forgotten server session counter
13232 - [MINOR] declare process_session in session.h, not proto_http.h
13233 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
13234 - [MINOR] add an analyser code for UNIX stats request
13235 - [MINOR] pre-set analyser flags on the listener at registration time
13236 - [BUG] do not forward close from cons to prod with analysers
13237 - [MEDIUM] ensure that sock->shutw() also closes read for init states
13238 - [MINOR] add an analyser state in struct session
13239 - [MAJOR] make unix sockets work again with stats
13240 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
13241 - [MINOR] move the listener reference from fd to session
13242 - [MEDIUM] reference the current hijack function in the buffer itself
13243 - [MINOR] slightly rebalance stats_dump_{raw,http}
13244 - [MINOR] add a new back-reference type : struct bref
13245 - [MINOR] add back-references to sessions for later use by a dumper.
13246 - [MEDIUM] add support for "show sess" in unix stats socket
13247 - [BUG] do not release the connection slot during a retry
13248 - [BUG] dynamic connection throttling could return a max of zero conns
13249 - [BUG] do not try to pause backends during reload
13250 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
13251 - [BUG] acl-related keywords are not allowed in defaults sections
13252 - [BUG] cookie capture is declared in the frontend but checked on the backend
13253 - [BUG] critical errors should be reported even in daemon mode
13254 - [MINOR] redirect: add support for the "drop-query" option
13255 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
13256 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
13257 - [BUG] do not dequeue requests on a dead server
13258 - [BUG] do not dequeue the backend's pending connections on a dead server
13259 - [MINOR] stats: indicate if a task is running in "show sess"
13260 - [BUG] check timeout must not be changed if timeout.check is not set
13261 - [BUG] "option transparent" is for backend, not frontend !
13262 - [MINOR] transfer errors were not reported anymore in data phase
13263 - [MEDIUM] add a send limit to a buffer
13264 - [MEDIUM] don't report buffer timeout when there is I/O activity
13265 - [MEDIUM] indicate when we don't care about read timeout
13266 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
13267 - [MEDIUM] enable inter-stream_interface wakeup calls
13268 - [MAJOR] implement autonomous inter-socket forwarding
13269 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
13270 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
13271 - [MEDIUM] i/o: rework ->to_forward and ->send_max
13272 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
13273 - [OPTIM] buffer: replace rlim by max_len
13274 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
13275 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
13276 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
13277 - [MEDIUM] split stream_sock_write() into callback and core functions
13278 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
13279 - [MINOR] stream_sock: fix a few wrong empty calculations
13280 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
13281 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
13282 - [MEDIUM] splice: add configuration options and set global.maxpipes
13283 - [MINOR] introduce structures required to support Linux kernel splicing
13284 - [MEDIUM] add definitions for Linux kernel splicing
13285 - [MAJOR] complete support for linux 2.6 kernel splicing
13286 - [BUG] reserve some pipes for backends with splice enabled
13287 - [MEDIUM] splice: add hints to support older buggy kernels
13288 - [MEDIUM] introduce pipe pools
13289 - [MEDIUM] splice: make use of pipe pools
13290 - [STATS] report pipe usage in the statistics
13291 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
13292 - [BUILD] fix snapshot date extraction with negative timezones
13293 - [MEDIUM] move global tuning options to the global structure
13294 - [MEDIUM] splice: add the global "nosplice" option
13295 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
13296 - [BUG] we must not exit if protocol binding only returns a warning
13297 - [MINOR] add support for bind interface name
13298 - [BUG] inform the user when root is expected but not set
13299 - [MEDIUM] add support for source interface binding
13300 - [MEDIUM] add support for source interface binding at the server level
13301 - [MEDIUM] implement bind-process to limit service presence by process
13302 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
13303 - [DOC] filled the logging section of the configuration manual
13304 - [DOC] document HTTP status codes
13305 - [DOC] document a few missing info about errorfile
13306 - [BUG] fix random memory corruption using "show sess"
13307 - [BUG] fix unix socket processing of interrupted output
13308 - [DOC] add diagrams of queuing and future ACL design
13309 - [BUILD] proto_http did not build on gcc-2.95
13310 - [BUG] the "source" keyword must first clear optional settings
13311 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
13312 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
13313 - [MEDIUM] store a complete dump of request and response errors in proxies
13314 - [MEDIUM] implement error dump on unix socket with "show errors"
13315 - [DOC] document "show errors"
13316 - [MINOR] errors dump must use user-visible date, not internal date.
13317 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
13318 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
13319 - [MEDIUM] measure and report session rate on frontend, backends and servers
13320 - [BUG] the "connslots" keyword was matched as "connlots"
13321 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
13322 - [MEDIUM] implement "rate-limit sessions" for the frontend
13323 - [BUG] interface binding: length must include the trailing zero
13324 - [BUG] typo in timeout error reporting : report *res and not *err
13325 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
13326 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
13327 - [BUG] switch server-side stream interface to close in case of abort
13328 - [CLEANUP] remove last references to term_trace
13329 - [OPTIM] freq_ctr: do not rotate the counters when reading
13330 - [BUG] disable any analysers for monitoring requests
13331 - [BUG] rate-limit in defaults section was ignored
13332 - [BUG] task: fix handling of duplicate keys
13333 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
13334 - [OPTIM] displace tasks in the wait queue only if absolutely needed
13335 - [MEDIUM] minor update to the task api: let the scheduler queue itself
13336 - [BUG] event_accept() must always wake the task up, even in health mode
13337 - [CLEANUP] task: distinguish between clock ticks and timers
13338 - [OPTIM] task: reduce the number of calls to task_queue()
13339 - [OPTIM] do not re-check req buffer when only response has changed
13340 - [CLEANUP] don't enable kernel splicing when socket is closed
13341 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
13342 - [MINOR] buffers: implement buffer_flush()
13343 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
13344 - [BUILD] build fixes for Solaris
13345 - [BUILD] proto_http did not build on gcc-2.95 (again)
13346 - [CONTRIB] halog: fast log parser for haproxy
13347 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
13348
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200133492008/04/19 : 1.3.15
13350 - [BUILD] Added support for 'make install'
13351 - [BUILD] Added 'install-man' make target for installing the man page
13352 - [BUILD] Added 'install-bin' make target
13353 - [BUILD] Added 'install-doc' make target
13354 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
13355 - [BUILD] Changed 'install' target to install the binaries first
13356 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
13357 - [MEDIUM]: Inversion for options
13358 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
13359 - [BUG]: Restore clearing t->logs.bytes
13360 - [MEDIUM]: rework checks handling
13361 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
13362 - [MEDIUM] Implement "track [<backend>/]<server>"
13363 - [MINOR] Implement persistent id for proxies and servers
13364 - [BUG] Don't increment server connections too much + fix retries
13365 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
13366 - [MAJOR] proto_uxst rework -> SNMP support
13367 - [BUG] appsession lookup in URL does not work
13368 - [BUG] transparent proxy address was ignored in backend
13369 - [BUG] hot reconfiguration failed because of a wrong error check
13370 - [DOC] big update to the configuration manual
13371 - [DOC] large update to the configuration manual
13372 - [DOC] document more options
13373 - [BUILD] major rework of the GNU Makefile
13374 - [STATS] add support for "show info" on the unix socket
13375 - [DOC] document options forwardfor to logasap
13376 - [MINOR] add support for the "backlog" parameter
13377 - [OPTIM] introduce global parameter "tune.maxaccept"
13378 - [MEDIUM] introduce "timeout http-request" in frontends
13379 - [MINOR] tarpit timeout is also allowed in backends
13380 - [BUG] increment server connections for each connect()
13381 - [MEDIUM] add a turn-around state of one second after a connection failure
13382 - [BUG] fix typo in redispatched connection
13383 - [DOC] document options nolinger to ssl-hello-chk
13384 - [DOC] added documentation for "option tcplog" to "use_backend"
13385 - [BUG] connect_server: server might not exist when sending error report
13386 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
13387 - [MEDIUM] add non-local bind to connect() on Linux
13388 - [MINOR] add transparent proxy support for balabit's Tproxy v4
13389 - [BUG] use backend's source and not server's source with tproxy
13390 - [BUG] fix overlapping server flags
13391 - [MEDIUM] fix server health checks source address selection
13392 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
13393 - [DOC] added "server", "source" and "stats" keywords
13394 - [DOC] all server parameters have been documented
13395 - [DOC] document all req* and rsp* keywords.
13396 - [DOC] added documentation about HTTP header manipulations
13397 - [BUG] log response byte count, not request
13398 - [BUILD] code did not build in full debug mode
13399 - [BUG] fix truncated responses with sepoll
13400 - [MINOR] use s->frt_addr as the server's address in transparent proxy
13401 - [MINOR] fix configuration hint about timeouts
13402 - [DOC] minor cleanup of the doc and notice to contributors
13403 - [MINOR] report correct section type for unknown keywords.
13404 - [BUILD] update MacOS Makefile to build on newer versions
13405 - [DOC] fix erroneous "useallbackups" option in the doc
13406 - [DOC] applied small fixes from early readers
13407 - [MINOR] add configuration support for "redir" server keyword
13408 - [MEDIUM] completely implement the server redirection method
13409 - [TESTS] add a test case for the server redirection mechanism
13410 - [DOC] add a configuration entry for "server ... redir <prefix>"
13411 - [BUILD] backend.c and checks.c did not build without tproxy !
13412 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
13413 - [BUILD] backend.c and checks.c did not build without tproxy !
13414 - [OPTIM] used unsigned ints for HTTP state and message offsets
13415 - [OPTIM] GCC4's builtin_expect() is suboptimal
13416 - [BUG] failed conns were sometimes incremented in the frontend!
13417 - [BUG] timeout.check was not pre-set to eternity
13418 - [TESTS] add test-pollers.cfg to easily report pollers in use
13419 - [BUG] do not apply timeout.connect in checks if unset
13420 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
13421 - [MINOR] silent gcc for a wrong warning
13422 - [CLEANUP] update .gitignore to ignore more temporary files
13423 - [CLEANUP] report dlmalloc's source path only if explictly specified
13424 - [BUG] str2sun could leak a small buffer in case of error during parsing
13425 - [BUG] option allbackups was not working anymore in roundrobin mode
13426 - [MAJOR] implementation of the "leastconn" load balancing algorithm
13427 - [BUILD] ensure that users don't build without setting the target anymore.
13428 - [DOC] document the leastconn LB algo
13429 - [MEDIUM] fix stats socket limitation to 16 kB
13430 - [DOC] fix unescaped space in httpchk example.
13431 - [BUG] fix double-decrement of server connections
13432 - [TESTS] add a test case for port mapping
13433 - [TESTS] add a benchmark for integer hashing
13434 - [TESTS] add new methods in ip-hash test file
13435 - [MAJOR] implement parameter hashing for POST requests
13436
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100134372007/12/06 : 1.3.14
13438 - New option http_proxy (Alexandre Cassen)
13439 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
13440 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
13441 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
13442 - use backends only with use_backend directive (Krzysztof Oledzki)
13443 - Handle long lines properly (Krzysztof Oledzki)
13444 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
13445 - continous statistics (Krzysztof Oledzki)
13446 - add support for logging via a UNIX socket (Robert Tsai)
13447 - fix error checking in strl2ic/strl2uic()
13448 - fix calls to localtime()
13449 - provide easier-to-use ultoa_* functions
13450 - provide easy-to-use limit_r and LIM2A* macros
13451 - add a simple test for the status page
13452 - move error codes to common/errors.h
13453 - silent warning about LIST_* being redefined on OpenBSD
13454 - add socket address length to the protocols
13455 - group PR_O_BALANCE_* bits into a checkable value
13456 - externalize the "balance" option parser to backend.c
13457 - introduce the "url_param" balance method
13458 - make default_backend work in TCP mode too
13459 - disable warning about localtime_r on Solaris
13460 - adjust error messages about conflicting proxies
13461 - avoid calling some layer7 functions if not needed
13462 - simplify error path in event_accept()
13463 - add an options field to the listeners
13464 - added a new state to listeners
13465 - unbind_listener() must use fd_delete() and not close()
13466 - add a generic unbind_listener() primitive
13467 - add a generic delete_listener() primitive
13468 - add a generic unbind_all_listeners() primitive
13469 - create proto_tcp and move initialization of proxy listeners
13470 - stats: report numerical process ID, proxy ID and server ID
13471 - relative_pid was not initialized
13472 - missing header names in raw stats output
13473 - fix missing parenthesis in check_response_for_cacheability
13474 - small optimization on session_process_counters()
13475 - merge ebtree version 3.0
13476 - make ebtree headers multiple-include compatible
13477 - ebtree: include config.h for REGPRM*
13478 - differentiate between generic LB params and map-specific ones
13479 - add a weight divisor to the struct proxy
13480 - implement the Fast Weighted Round Robin (FWRR) algo
13481 - include filltab25.c to experiment on FWRR for dynamic weights
13482 - merge test-fwrr.cfg to validate dynamic weights
13483 - move the load balancing algorithm to be->lbprm.algo
13484 - change server check result to a bit field
13485 - implement "http-check disable-on-404" for graceful shutdown
13486 - secure the calling conditions of ->set_server_status_{up,down}
13487 - report disabled servers as "NOLB" when they are still UP
13488 - document the "http-check disable-on-404" option
13489 - http-check disable-on-404 is not limited to HTTP mode
13490 - add a test file for disable-on-404
13491 - use distinct bits per load-balancing algorithm type
13492 - implement the slowstart parameter for servers
13493 - document the server's slowstart parameter
13494 - stats: report the server warm up status in a "throttle" column
13495 - fix 2 minor issues on AIX
13496 - add the "nbsrv" ACL verb
13497 - add the "fail" condition to monitor requests
13498 - remove a warning from gcc due to htons() in standard.c
13499 - fwrr: ensure that we never overflow in placements
13500 - store the build options to report with -vv
13501 - fix the status return of the init script (R.I. Pienaar)
13502 - stats: real time monitoring script for unix socket (Prizee)
13503 - document "nbsrv" and "monitor fail"
13504 - restrict the set of allowed characters for identifiers
13505 - implement a time parsing function
13506 - add support for time units in the configuration
13507 - add a bit of documentation about timers
13508 - introduce separation between contimeout, and tarpit + queue
13509 - introduce the "timeout" keyword
13510 - grouped all timeouts in one structure
13511 - slowstart is in ms, not seconds
13512 - slowstart: ensure we don't start with a null weight
13513 - report the number of times each server was selected
13514 - fix build on AIX due to recent log changes
13515 - fix build on Solaris due to recent log changes
13516
Willy Tarreaue855f422007-10-18 22:38:22 +0200135172007/10/18 : 1.3.13
13518 - replace the code under O'Reilly license (Arnaud Cornet)
13519 - add a small man page (Arnaud Cornet)
13520 - stats: report haproxy's version by default (Krzysztof Oledzki)
13521 - stats: count server retries and redispatches (Krzysztof Oledzki)
13522 - core: added easy support for Doug Lea's malloc (dlmalloc)
13523 - core: fade out memory usage when stopping proxies
13524 - core: moved the sockaddr pointer to the fdtab structure
13525 - core: add generic protocol support
13526 - core: implement client-side support for PF_UNIX sockets
13527 - stats: implement the CSV output
13528 - stats: add a link to the CSV export HTML page
13529 - stats: implement the statistics output on a unix socket
13530 - config: introduce the "stats" keyword in global section
13531 - build: centralize version and date into one file for each
13532 - tests: added a new hash algorithm
13533
135342007/10/18 : 1.3.12.3
13535 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
13536 - fix double-free during clean exit (Krzysztof Oledzki)
13537 - prevent the system from sending an RST when closing health-checks
13538 (Krzysztof Oledzki)
13539 - do not add a cache-control header when on non-cacheable responses
13540 (Krzysztof Oledzki)
13541 - spread health checks even more (Krzysztof Oledzki)
13542 - stats: scope "." must match the backend and not the frontend
13543 - fixed call to chroot() during startup
13544 - fix wrong timeout computation in event_accept()
13545 - remove condition for exit() under fork() failure
13546
135472007/09/20 : 1.3.12.2
13548 - fix configuration sanity checks for TCP listeners
13549 - set the log socket receive window to zero bytes
13550 - pre-initialize timeouts to infinity, not zero
13551 - fix the SIGHUP message not to alert on server-less proxies
13552 - timeouts and retries could be ignored when switching backend
13553 - added a file to check that "retries" works.
13554 - O'Reilly has clarified its license
13555
135562007/09/05 : 1.3.12.1
13557 - spec I/O: fix allocations of spec entries for an FD
13558 - ensure we never overflow in chunk_printf()
13559 - improve behaviour with large number of servers per proxy
13560 - add support for "stats refresh <interval>"
13561 - stats page: added links for 'refresh' and 'hide down'
13562 - fix backend's weight in the stats page.
13563 - the "stats" keyword is not allowed in a pure frontend.
13564 - provide a test configuration file for stats and checks
13565
Willy Tarreaub21152b2007-06-17 23:41:40 +0200135662007/06/17 : 1.3.12
13567 - fix segfault at exit when using captures
13568 - bug: negation in ACL conds was not cleared between terms
13569 - errorfile: use a local file to feed error messages
13570 - acl: support '-i' to ignore case when matching
13571 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
13572 - acl: support maching on 'path' component
13573 - acl: implement matching on header values
13574 - acl: distinguish between request and response headers
13575 - acl: permit to return any header when no name specified
13576 - acl: provide default ACLs
13577 - added the 'use_backend' keyword for full content-switching
13578 - acl: specify the direction during fetches
13579 - acl: provide the argument length for fetch functions
13580 - acl: provide a reference to the expr to fetch()
13581 - improve memory freeing upon exit
13582 - str2net() must not change the const char *
13583 - shut warnings 'is*' macros from ctype.h on solaris
13584
Willy Tarreaua3503e02007-06-03 17:27:07 +0200135852007/06/03 : 1.3.11.4
13586 - do not re-arm read timeout in SHUTR state !
13587 - optimize I/O by detecting system starvation
13588 - the epoll FD must not be shared between processes
13589 - limit the number of events returned by *poll*
13590
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200135912007/05/14 : 1.3.11.3
13592 - pre-initialize timeouts with tv_eternity during parsing
13593
Willy Tarreaufc273c22007-05-14 03:42:47 +0200135942007/05/14 : 1.3.11.2
13595 - fixed broken health-checks since switch to timeval
13596
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200135972007/05/14 : 1.3.11.1
13598 - fixed ev_kqueue which was forgotten during the switch to timeval
13599 - allowed null timeouts for past events in select
13600
Willy Tarreau544eb402007-05-14 02:42:33 +0200136012007/05/14 : 1.3.11
13602 - fixed ev_sepoll again by rewriting the state machine
13603 - switched all timeouts to timevals instead of milliseconds
13604 - improved memory management using mempools v2.
13605 - several minor optimizations
13606
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200136072007/05/09 : 1.3.10.2
13608 - fixed build on OpenBSD (missing types.h)
13609
Willy Tarreau13398d32007-05-09 22:58:28 +0200136102007/05/09 : 1.3.10.1
13611 - fixed sepoll transition matrix (two states were missing)
13612
Willy Tarreau61beedf2007-05-09 01:44:58 +0200136132007/05/08 : 1.3.10
13614 - several fixes in ev_sepoll
13615 - fixed some expiration dates on some tasks
13616 - fixed a bug in connection establishment detection due to speculative I/O
13617 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
13618 - implemented URI hashing algorithm (Guillaume Dallaire)
13619 - implemented SMTP health checks (Peter van Dijk)
13620 - replaced the rbtree with ul2tree from old scheduler project
13621 - new framework for generic ACL support
13622 - added the 'acl' and 'block' keywords to the config language
13623 - added several ACL criteria and matches (IP, port, URI, ...)
13624 - cleaned up and better modularization for some time functions
13625 - fixed list macros
13626 - fixed useless memory allocation in str2net()
13627 - store the original destination address in the session
13628
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200136292007/04/15 : 1.3.9
13630 - modularized the polling mechanisms and use function pointers instead
13631 of macros at many places
13632 - implemented support for FreeBSD's kqueue() polling mechanism
13633 - fixed a warning on OpenBSD : MIN/MAX redefined
13634 - change socket registration order at startup to accomodate kqueue.
13635 - several makefile cleanups to support old shells
13636 - fix build with limits.h once for all
13637 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
13638 - fdtab now holds the results of polling
13639 - implemented support for speculative I/O processing with epoll()
13640 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
13641 - auto-registering of pollers at load time
13642
Willy Tarreau42c76592007-04-03 20:30:13 +0200136432007/04/03 : 1.3.8.2
13644 - rewriting either the status line or request line could crash the
13645 process due to a pointer which ought to be reset before parsing.
13646 - rewriting the status line in the response did not work, it caused
13647 a 502 Bad Gateway due to an erroneous state during parsing
13648
Willy Tarreauef6d7612007-04-01 11:06:22 +0200136492007/04/01 : 1.3.8.1
13650 - fix reqadd when no option httpclose is used.
13651 - removed now unused fiprm and beprm from proxies
13652 - split logs into two versions : TCP and HTTP
13653 - added some docs about http headers storage and acls
13654 - added a VIM script for syntax color highlighting (Bruno Michel)
13655
Willy Tarreaud661cc02007-03-26 00:24:56 +0200136562007/03/25 : 1.3.8
13657 - fixed several bugs which might have caused a crash with bad configs
13658 - several optimizations in header processing
13659 - many progresses towards transaction-based processing
13660 - option forwardfor may be used in frontends
13661 - completed HTTP response processing
13662 - some code refactoring between request and response processing
13663 - new HTTP header manipulation functions
13664 - optimizations on the recv() patch to reduce CPU usage under very
13665 high data rates.
13666 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
13667 - username/groupname support from Marcus Rueckert
13668 - added the "except" keyword to the "forwardfor" option (Bryan German)
13669 - support for health-checks on other addresses (Fabrice Dulaunoy)
13670 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
13671 - do not insert "Connection: close" in HTTP/1.0 messages
13672
Willy Tarreau9cabf702007-01-26 23:49:01 +0100136732007/01/26 : 1.3.7
13674 - fix critical bug introduced with 1.3.6 : an empty request header
13675 may lead to a crash due to missing pointer assignment
13676 - hdr_idx might be left uninitialized in debug mode
13677 - fixed build on FreeBSD due to missing fd_set declaration
13678
Willy Tarreaue7a24382007-01-22 08:57:44 +0100136792007/01/22 : 1.3.6.1
13680 - change in the header chaining broke cookies and authentication
13681
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100136822007/01/22 : 1.3.6
13683 - stats now support the HEAD method too
13684 - extracted http request from the session
13685 - huge rework of the HTTP parser which is now a 28-state FSM.
13686 - linux-style likely/unlikely macros for optimization hints
13687 - do not create a server socket when there's no server
13688 - imported lots of docs
13689
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100136902007/01/07 : 1.3.5
13691 - stats: swap color sets for active and backup servers
13692 - try to guess server check port when unset
13693 - added complete support and doc for TCP Splicing
13694 - replace the wait-queue linked list with an rbtree.
13695 - a few bugfixes and cleanups
13696
Willy Tarreau85270da2007-01-02 00:59:39 +0100136972007/01/02 : 1.3.4
13698 - support for cttproxy on the server side to present the client
13699 address to the server.
13700 - added support for SO_REUSEPORT on Linux (needs kernel patch)
13701 - new RFC2616-compliant HTTP request parser with header indexing
13702 - split proxies in frontends, rulesets and backends
13703 - implemented the 'req[i]setbe' to select a backend depending
13704 on the contents
13705 - added the 'default_backend' keyword to select a default BE.
13706 - new stats page featuring FEs and BEs + bytes in both dirs
13707 - improved log format to indicate the backend and the time in ms.
13708 - lots of cleanups
13709
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200137102006/10/15 : 1.3.3
13711 - fix broken redispatch option in case the connection has already
13712 been marked "in progress" (ie: nearly always).
13713 - support regparm on x86 to speed up some often called functions
13714 - removed a few useless calls to gettimeofday() in log functions.
13715 - lots of 'const char*' cleanups
13716 - turn every FD_* into functions which are faster on recent CPUs
13717
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200137182006/09/03 : 1.3.2
13719 - started the changes towards I/O completion callbacks. stream_sock* have
13720 replaced event_*.
13721 - added the new "reqtarpit" and "reqitarpit" protection features
13722
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200137232006/07/09 : 1.3.1 (1.2.15)
13724 - now, haproxy warns about missing timeout during startup to try to
13725 eliminate all those buggy configurations.
13726 - added "Content-Type: text/html" in responses wherever appropriate, as
13727 suggested by Cameron Simpson.
13728 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
13729 test server's health
13730 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
13731 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
13732 at once.
13733
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200137342006/06/29 : 1.3.0
13735 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020013736 difference is expected at all.
13737 - fixed a bug by which neither stats nor error messages could be returned if
13738 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020013739
willy tarreau7e6328d2006-05-21 23:26:20 +0200137402006/05/21 : 1.2.14
13741 - new HTML status report with the 'stats' keyword.
13742 - added the 'abortonclose' option to better resist traffic surges
13743 - implemented dynamic traffic regulation with the 'minconn' option
13744 - show request time on denied requests
13745 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
13746 - now a proxy instance is allowed to run without servers, which is
13747 useful to dedicate one instance to stats
13748 - added lots of error counters
13749 - a missing parenthesis preventd matching of cacheable cookies
13750 - a missing parenthesis in poll_loop() might have caused missed events.
13751
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200137522006/05/14 : 1.2.13.1
13753 - an uninitialized field in the struct session could cause a crash when
13754 the session was freed. This has been encountered on Solaris only.
13755 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
13756 be nice to them by performing a soft stop if pause fails.
13757
willy tarreauc3a2e072006-05-13 18:51:38 +0200137582006/05/13 : 1.2.13
13759 - 'maxconn' server parameter to do per-server session limitation
13760 - queueing to support non-blocking session limitation
13761 - fixed removal of cookies for cookie-less servers such as backup servers
13762 - two separate wait queues for expirable and non-expirable tasks provide
13763 better performance with lots of sessions.
13764 - some code cleanups and performance improvements
13765 - made state dumps a bit more verbose
13766 - fixed missing checks for NULL srv in dispatch mode
13767 - load balancing on backup servers was not possible in source hash mode.
13768 - two session flags shared the same bit, but fortunately they were not
13769 compatible.
13770
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200137712006/04/15 : 1.2.12
13772 Very few changes preparing for more important changes to support per-server
13773 session limitations and queueing :
13774 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
13775 - added the 'weight' parameter to the servers, limited to 1..256. It applies
13776 to roundrobin and source hash.
13777 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
13778
willy tarreaue0dd2692006-03-30 16:27:34 +0200137792006/03/30 : 1.2.11.1
13780 - under some conditions, it might have been possible that when the
13781 last dead server became available, it would not have been used
13782 till another one would have changed state. Could not be reproduced
13783 at all, however seems possible from the code.
13784
willy tarreaud2058dc2006-03-25 20:35:41 +0100137852006/03/25 : 1.2.11
13786 - added the '-db' command-line option to disable backgrounding.
13787 - added the -sf/-st command-line arguments which are used to specify
13788 a list of pids to send a FINISH or TERMINATE signal upon startup.
13789 They will also be asked to release their port if a bind fails.
13790 - reworked the startup mechanism to allow the sending of a signal to a list
13791 of old pids if a socket cannot be bound, with a retry for a limited amount
13792 of time (1 second by default).
13793 - added the ability to enforce limits on memory usage.
13794 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
13795 - re-architectured the server round-robin mechanism to ease integration of
13796 other algorithms. It now relies on the number of active and backup servers.
13797 - added a counter for the number of active and backup servers, and report
13798 these numbers upon SIGHUP or state change.
13799
willy tarreaubfad5742006-03-23 14:19:11 +0100138002006/03/23 : 1.2.10.1
13801 - while fixing the backup server round-robin "feature", a new bug was
13802 introduced which could miss some backup servers.
13803 - the displayed proxy name was wrong when dumping upon SIGHUP.
13804
willy tarreauaaff30e2006-03-19 21:30:41 +0100138052006/03/19 : 1.2.10
13806 - assert.h is needed when DEBUG is defined.
13807 - ENORMOUS long standing bug affecting the epoll polling system :
13808 event_data is a union, not a structure !
13809 - Make fd management more robust and easier to debug. Also some
13810 micro-optimisations.
13811 - Limit the number of consecutive accept() in multi-process mode.
13812 This produces a more evenly distributed load across the processes and
13813 slightly improves performance by reducing bottlenecks.
13814 - Make health-checks be more regular, and faster to retry after a timeout.
13815 - Fixed some messages to ease parsing of alerts.
13816 - provided a patch to enable epoll on RHEL3 kernels.
13817 - Separated OpenBSD build from the main Makefile into a new one.
13818
willy tarreau50be0172006-03-15 19:41:19 +0100138192006/03/15 : 1.2.9
13820 - haproxy could not be stopped after being paused, it had to be woken up
13821 first. This has been fixed.
13822 - the 'ulimit-n' parameter is now optional and by default computed from
13823 maxconn + the number of listeners + the number of health-checks.
13824 - it is now possible to specify a maximum number of connections at build
13825 time with the SYSTEM_MAXCONN define. The value set in the configuration
13826 file will then be limited to this value, and only the command-line '-n'
13827 option will be able to bypass it. It will prevent against accidental
13828 high memory usage on small systems.
13829 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
13830 versions did not detect a line beginning with a space as the continuation
13831 of previous header. It is now correct.
13832 - health checks sent to servers configured with identical intervals were
13833 sent in perfect synchronisation because the initial time was the same
13834 for all. This could induce high load peaks when fragile servers were
13835 hosting tens of instances for the same application. Now the load is
13836 spread evenly across the smallest interval amongst a listener.
13837 - a new 'forceclose' option was added to make the proxy close the outgoing
13838 channel to the server once it has sent all its headers and the server
13839 starts responding. This helps some servers which don't close upon the
13840 'Connection: close' header. It implies 'option httpclose'.
13841 - there was a bug in the way the backup servers were handled. They were
13842 erroneously load-balanced while the doc said the opposite. Since
13843 load-balanced backup servers is one of the features some people have
13844 been asking for, the problem was fixed to reflect the documented
13845 behaviour and a new option 'allbackups' was introduced to provide the
13846 feature to those who need it.
13847 - a never ending connect() could lead to a fast select() loop if its
13848 timeout times the number of retransmits exceeded the server read or write
13849 timeout, because the later was used to compute select()'s timeout while
13850 the connection timeout was not reached.
13851 - now we initialize the libc's localtime structures very early so that even
13852 under OOM conditions, we can still send dated error messages without
13853 segfaulting.
13854 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
13855 descriptors are closed.
13856
willy tarreau065f1c02006-01-29 22:10:07 +0100138572006/01/29 : 1.2.8
13858 - fixed a nasty bug affecting poll/epoll which could return unmodified data
13859 from the server to the client, and sometimes lead to memory corruption
13860 crashing the process.
13861 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
13862
138632005/12/18 : 1.2.7.1
13864 - the "retries" option was ignored because connect() could not return an
13865 error if the connection failed before the timeout.
13866 - TCP health-checks could not detect a connection refused in poll/epoll
13867 mode.
13868
willy tarreaua56eca72005-12-18 01:34:42 +0100138692005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010013870 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
13871 least on Solaris, this caused the libc's regex primitives to be used instead
13872 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010013873 - delayed the quiet mode during startup so that most of the startup alerts can
13874 be displayed even in quiet mode.
13875 - display an alert when a listener has no address, invalid or no port, or when
13876 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010013877 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010013878
willy tarreaub952e1d2005-12-18 01:31:20 +0100138792005/10/09 : 1.2.7rc (1.1.33rc)
13880 - second batch of socklen_t changes.
13881 - clean-ups from Cameron Simpson.
13882 - because tv_remain() does not know about eternity, using no timeout can
13883 make select() spin around a null time-out. Bug reported by Cameron Simpson.
13884 - client read timeout was not properly set to eternity initialized after an
13885 accept() if it was not set in the config. It remained undetected so long
13886 because eternity is 0 and newly allocated pages are zeroed by the system.
13887 - do not call get_original_dst() when not in transparent mode.
13888 - implemented a workaround for a bug in certain epoll() implementations on
13889 linux-2.4 kernels (epoll-lt <= 0.21).
13890 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
13891
willy tarreauc5f73ed2005-12-18 01:26:38 +0100138922005/08/07 : 1.2.6
13893 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
13894
138952005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010013896 - added the number of active sessions (proxy/process) in the logs
13897
138982005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010013899 - the time-out fix introduced in 1.1.25 caused a corner case where it was
13900 possible for a client to keep a connection maintained regardless of the
13901 timeout if the server closed the connection during the HEADER phase,
13902 while the client ignored the close request while doing nothing in the
13903 other direction. This has been fixed now by ensuring that read timeouts
13904 are re-armed when switching to any SHUTW state.
13905
139062005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
13907 - enhanced error reporting in the logs. Now the proxy will precisely detect
13908 various error conditions related to the system and/or process limits, and
13909 generate LOG_EMERG logs indicating that a resource has been exhausted.
13910 - logs will contain two new characters for the error cause : 'R' indicates
13911 a resource exhausted, and 'I' indicates an internal error, though this
13912 one should never happen.
13913 - server connection timeouts can now be reported in the logs (sC), as well
13914 as connections refused because of maxconn limitations (PC).
13915
139162005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
13917 - new global configuration keyword "ulimit-n" may be used to raise the FD
13918 limit to usable values.
13919 - a warning is now displayed on startup if the FD limit is lower than the
13920 configured maximum number of sockets.
13921
139222005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
13923 - new configuration keyword "monitor-net" makes it possible to be monitored
13924 by external devices which connect to the proxy without being logged nor
13925 forwarded to any server. Particularly useful on generic TCPv4 relays.
13926
willy tarreau5dffb602005-12-18 01:15:23 +0100139272005/06/21 : 1.2.5.2
13928 - fixed build on PPC where chars are unsigned by default
13929
willy tarreau08dedbe2005-12-18 01:13:48 +0100139302005/05/02 : 1.2.5.1
13931 - dirty hack to fix a bug introduced with epoll : if we close an FD and
13932 immediately reassign it to another session through a connect(), the
13933 Prev{Read,Write}Events are not updated, which causes trouble detecting
13934 changes, thus leading to many timeouts at high loads.
13935
willy tarreau64a3cc32005-12-18 01:13:11 +0100139362005/04/30 : 1.2.5 (1.1.31)
13937 - changed the runtime argument to disable epoll() to '-de'
13938 - changed the runtime argument to disable poll() to '-dp'
13939 - added global options 'nopoll' and 'noepoll' to do the same at the
13940 configuration level.
13941 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
13942 support epoll().
13943 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
13944 - conditionned signals redirection to #ifdef DEBUG_MEMORY
13945
willy tarreau1c2ad212005-12-18 01:11:29 +0100139462005/04/26 : 1.2.5-pre4
13947 - made epoll() support a compile-time option : ENABLE_EPOLL
13948 - provided a very little libc replacement for a possibly missing epoll()
13949 implementation which can be enabled by -DUSE_MY_EPOLL
13950 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
13951 The equivalent runtime argument becomes '-P'. A few tests show that it
13952 performs like select() with many fds, but slightly slower (certainly
13953 because of the higher amount of memory involved).
13954 - separated the 3 polling methods and the tasks scheduler into 4 distinct
13955 functions which makes the code a lot more modular.
13956 - moved some event tables to private static declarations inside the poller
13957 functions.
13958 - the poller functions can now initialize themselves, run, and cleanup.
13959 - changed the runtime argument to enable epoll() to '-E'.
13960 - removed buggy epoll_ctl() code in the client_retnclose() function. This
13961 function was never meant to remove anything.
13962 - fixed a typo which caused glibc to yell about a double free on exit.
13963 - removed error checking after epoll_ctl(DEL) because we can never know if
13964 the fd is still active or already closed.
13965 - added a few entries in the makefile
13966
willy tarreauad90a0c2005-12-18 01:09:15 +0100139672005/04/25 : 1.2.5-pre3
13968 - experimental epoll() support (use temporary '-e' argument)
13969
139702005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010013971 - implemented the HTTP 303 code for error redirection. This forces the
13972 browser to fetch the given URI with a GET request. The new keyword for
13973 this is 'errorloc303', and a new 'errorloc302' keyword has been created
13974 to make them easily distinguishable.
13975 - added more controls in the parser for valid use of '\x' sequence.
13976 - few fixes from Alex & Klaus
13977
willy tarreauad90a0c2005-12-18 01:09:15 +0100139782005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010013979 - fixed a few errors in the documentation
13980
139812005/02/13
13982 - do not pre-initialize unused file-descriptors before select() anymore.
13983
willy tarreau12350152005-12-18 01:03:27 +0100139842005/01/22 : 1.2.4
13985 - merged Alexander Lazic's and Klaus Wagner's work on application
13986 cookie-based persistence. Since this is the first merge, this version is
13987 not intended for general use and reports are more than welcome. Some
13988 documentation is really needed though.
13989
willy tarreau0174f312005-12-18 01:02:42 +0100139902005/01/22 : 1.2.3 (1.1.30)
13991 - add an architecture guide to the documentation
13992 - released without any changes
13993
139942004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
13995 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
13996 compatible with Apache. This limit can be configured in the makefile now.
13997 Thanks to Eric Fehr for the checks.
13998 - added a per-server "source" option which now makes it possible to bind to
13999 a different source for each (potentially identical) server.
14000 - changed cookie-based server selection slightly to allow several servers to
14001 share a same cookie, thus making it possible to associate backup servers to
14002 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
14003 - added the cookie 'prefix' mode which makes it possible to use persistence
14004 with thin clients which support only one cookie. The server name is prefixed
14005 before the application cookie, and restore back.
14006 - fixed the order of servers within an instance to match documentation. Now
14007 the servers are *really* used in the order of their declaration. This is
14008 particularly important when multiple backup servers are in use.
14009
willy tarreau4302f492005-12-18 01:00:37 +0100140102004/10/18 : 1.2.2 (1.1.29)
14011 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
14012 option was enabled without the 'tcplog' option.
14013 - encode_string() would use hdr_encode_map instead of the map argument.
14014
140152004/08/10 : (1.1.29-pre2)
14016 - the logged request is now encoded with '#XX' for unprintable characters
14017 - new keywords 'capture request header' and 'capture response header' enable
14018 logging of arbitrary HTTP headers in requests and responses
14019 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
14020
willy tarreau982249e2005-12-18 00:57:06 +0100140212004/06/06 : 1.2.1 (1.1.28)
14022 - added the '-V' command line option to verbosely report errors even though
14023 the -q or 'quiet' options are specified. This is useful with '-c'.
14024 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010014025
willy tarreau982249e2005-12-18 00:57:06 +0100140262004/06/05 :
14027 - added the "logasap" option which produces a log without waiting for the data
14028 to be transferred from the server to the client.
14029 - added the "httpclose" option which removes any "connection:" header and adds
14030 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010014031 - added the 'checkcache' option which blocks cacheable responses containing
14032 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010014033 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
14034 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010014035
140362004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010014037 - send an EMERG log when no server is available for a given proxy
14038 - added the '-c' command line option to syntactically check the
14039 configuration file without starting the service.
14040
willy tarreau8a86dbf2005-12-18 00:45:59 +0100140412003/11/09 : 1.2.0
14042 - the same as 1.1.27 + IPv6 support on the client side
14043
willy tarreaufe2c5c12005-12-17 14:14:34 +0100140442003/10/27 : 1.1.27
14045 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
14046 bug : the code still assumed that HTTP requests were the same size as the
14047 original ones (22 bytes), and failed if they were not.
14048 - added support for pidfiles.
14049
willy tarreauc58fc692005-12-17 14:13:08 +0100140502003/10/22 : 1.1.26
14051 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
14052 broke almost all compatibility with POST requests, because the proxy
14053 stopped to read anything from the client as soon as it got all of its
14054 headers.
14055
willy tarreauc1cae632005-12-17 14:12:23 +0100140562003/10/15 : 1.1.25
14057 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
14058 generic TCP proxies, or lighter logs for HTTP proxies.
14059 - fixed a time-out condition wrongly reported as client time-out in data
14060 phase if the client timeout was lower than the connect timeout times the
14061 number of retries.
14062
willy tarreau197e8ec2005-12-17 14:10:59 +0100140632003/09/21 : 1.1.24
14064 - if a client sent a full request then shut its write connection down, then
14065 the request was aborted. This case was detected only when using haproxy
14066 both as health-check client and as a server.
14067 - if 'option httpchk' is used in a 'health' mode server, then responses will
14068 change from 'OK' to 'HTTP/1.0 200 OK'.
14069 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
14070 server response followed by a close could be ignored, and the server seen
14071 as failed.
14072
willy tarreaueedaa9f2005-12-17 14:08:03 +0100140732003/09/19 : 1.1.23
14074 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
14075 'default' sections to keep previous parameters, and not initialize logs
14076 correctly.
14077 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
14078 relying on 'dispatch' mode to segfault at the first connection.
14079 - 'option httpchk' now supports method, HTTP version and a few headers.
14080 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
14081 'defaults' section
14082
140832003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010014084 - 'listen' now supports optionnal address:port-range lists
14085 - 'bind' introduced to add new listen addresses
14086 - fixed a bug which caused a session to be kept established on a server till
14087 it timed out if the client closed during the DATA phase.
14088 - the port part of each server address can now be empty to make the proxy
14089 connect to the server on the same port it was connected to, be an absolute
14090 unsigned number to reflect a single port (as in older versions), or an
14091 explicitly signed number (+N/-N) to indicate that this offset must be
14092 applied to the port the proxy was connected to, when connecting to the
14093 server.
14094 - the 'port' server option allows the user to specify a different
14095 health-check port than the service one. It is mandatory when only relative
14096 ports have been specified and check is required. By default, the checks are
14097 sent to the service port.
14098 - new 'defaults' section which is rather similar to 'listen' except that all
14099 values are only used as default values for future 'listen' sections, until
14100 a new 'defaults' resets them. At the moment, server options, regexes,
14101 cookie names and captures cannot be set in the 'defaults' section.
14102
willy tarreau2f6ba652005-12-17 13:57:42 +0100141032003/05/06 : 1.1.21
14104 - changed the debug output format so that it now includes the session unique
14105 ID followed by the instance name at the beginning of each line.
14106 - in debug mode, accept now shows the client's IP and port.
14107 - added one 3 small debugging scripts to search and pretty print debug output
14108 - changed the default health check request to "OPTIONS /" instead of
14109 "OPTIONS *" since not all servers implement the later one.
14110 - "option httpchk" now accepts an optional parameter allowing the user to
14111 specify and URI other than '/' during health-checks.
14112
willy tarreaub1ff9db2005-12-17 13:51:03 +0100141132003/04/21 : 1.1.20
14114 - fixed two problems with time-outs, one where a server would be logged as
14115 timed out during transfer that take longer to complete than the fixed
14116 time-out, and one where clients were logged as timed-out during the data
14117 phase because they didn't have anything to send. This sometimes caused
14118 slow client connections to close too early while in fact there was no
14119 problem. The proper fix would be to have a per-fd time-out with
14120 conditions depending on the state of the HTTP FSM.
14121
willy tarreau906b2682005-12-17 13:49:52 +0100141222003/04/16 : 1.1.19
14123 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
14124 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
14125 cookie persistence because it uses "cookie:". Two memcmp() have been
14126 replaced with strncasecmp().
14127
willy tarreau036e1ce2005-12-17 13:46:33 +0100141282003/04/02 : 1.1.18
14129 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
14130 REGEX=pcre on the make command line.
14131 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
14132 - when explicit source address binding is required, it is now also used for
14133 health-checks.
14134 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
14135 itself.
14136 - factored several strings to reduce binary size by about 2 kB.
14137 - replaced setreuid() and setregid() with more standard setuid() and setgid().
14138 - added 4 status flags to the log line indicating who ended the connection
14139 first, the sessions state, the validity of the cookie, and action taken on
14140 the set-cookie header.
14141
141422002/10/18 : 1.1.17
14143 - add the notion of "backup" servers, which are used only when all other
14144 servers are down.
14145 - make Set-Cookie return "" instead of "(null)" when the server has no
14146 cookie assigned (useful for backup servers).
14147 - "log" now supports an optionnal level name (info, notice, err ...) above
14148 which nothing is sent.
14149 - replaced some strncmp() with memcmp() for better efficiency.
14150 - added "capture cookie" option which logs client and/or server cookies
14151 - cleaned up/down messages and dump servers states upon SIGHUP
14152 - added a redirection feature for errors : "errorloc <errnum> <url>"
14153 - now we won't insist on connecting to a dead server, even with a cookie,
14154 unless option "persist" is specified.
14155 - added HTTP/408 response for client request time-out and HTTP/50[234] for
14156 server reply time-out or errors.
14157
141582002/09/01 : 1.1.16
14159 - implement HTTP health checks when option "httpchk" is specified.
14160
141612002/08/07 : 1.1.15
14162 - replaced setpgid()/setpgrp() with setsid() for better portability, because
14163 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
14164
141652002/07/20 : 1.1.14
14166 - added "postonly" cookie mode
14167
141682002/07/15 : 1.1.13
14169 - tv_diff used inverted parameters which led to negative times !
14170
141712002/07/13 : 1.1.12
14172 - fixed stats monitoring, and optimized some tv_* for most common cases.
14173 - replaced temporary 'newhdr' with 'trash' to reduce stack size
14174 - made HTTP errors more HTML-fiendly.
14175 - renamed strlcpy() to strlcpy2() because of a slightly difference between
14176 their behaviour (return value), to avoid confusion.
14177 - restricted HTTP messages to HTTP proxies only
14178 - added a 502 message when the connection has been refused by the server,
14179 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
14180 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
14181 inserting a cookie, because some caches (apache) don't understand it.
14182 - fixed processing of server headers when client is in SHUTR state
14183
141842002/07/04 :
14185 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
14186 setpgid()
14187
141882002/06/04 : 1.1.11
14189 - fixed multi-cookie handling in client request to allow clean deletion
14190 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010014191 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010014192 - added a "nocache" option to "cookie" to specify that we explicitly want
14193 to add a "cache-control" header when we add a cookie.
14194 It is also possible to add an "Expires: <old-date>" to keep compatibility
14195 with old/broken caches.
14196
141972002/05/10 : 1.1.10
14198 - if a cookie is used in insert+indirect mode, it's desirable that the
14199 the servers don't see it. It was not possible to remove it correctly
14200 with regexps, so now it's removed automatically.
14201
142022002/04/19 : 1.1.9
14203 - don't use snprintf()'s return value as an end of message since it may
14204 be larger. This caused bus errors and segfaults in internal libc's
14205 getenv() during localtime() in send_log().
14206 - removed dead insecure send_syslog() function and all references to it.
14207 - fixed warnings on Solaris due to buggy implementation of isXXXX().
14208
142092002/04/18 : 1.1.8
14210 - option "dontlognull"
14211 - fixed "double space" bug in config parser
14212 - fixed an uninitialized server field in case of dispatch
14213 with no existing server which could cause a segfault during
14214 logging.
14215 - the pid logged was always the father's, which was wrong for daemons.
14216 - fixed wrong level "LOG_INFO" for message "proxy started".
14217
142182002/04/13 :
14219 - http logging is now complete :
14220 - ip:port, date, proxy, server
14221 - req_time, conn_time, hdr_time, tot_time
14222 - status, size, request
14223 - source address
14224
142252002/04/12 : 1.1.7
14226 - added option forwardfor
14227 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
14228 - added "log global" in "listen" section.
14229
142302002/04/09 :
14231 - added a new "global" section :
14232 - logs
14233 - debug, quiet, daemon modes
14234 - uid, gid, chroot, nbproc, maxconn
14235
142362002/04/08 : 1.1.6
14237 - regex are now chained and not limited anymore.
14238 - unavailable server now returns HTTP/502.
14239 - increased per-line args limit to 40
14240 - added reqallow/reqdeny to block some request on matches
14241 - added HTTP 400/403 responses
14242
142432002/04/03 : 1.1.5
14244 - connection logging displayed incorrect source address.
14245 - added proxy start/stop and server up/down log events.
14246 - replaced log message short buffers with larger trash.
14247 - enlarged buffer to 8 kB and replace buffer to 4 kB.
14248
142492002/03/25 : 1.1.4
14250 - made rise/fall/interval time configurable
14251
142522002/03/22 : 1.1.3
14253 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
14254 which could lead to loops.
14255
142562002/03/21 : 1.1.2
14257 - fixed a bug in buffer management where we could have a loop
14258 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
14259 => implemented an adjustable buffer limit.
14260 - fixed a bug : expiration of tasks in wait queue timeout is used again,
14261 and running tasks are skipped.
14262 - added some debug lines for accept events.
14263 - send warnings for servers up/down.
14264
142652002/03/12 : 1.1.1
14266 - fixed a bug in total failure handling
14267 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
14268
142692002/03/10 : 1.1.0
14270 - fixed a few timeout bugs
14271 - rearranged the task scheduler subsystem to improve performance,
14272 add new tasks, and make it easier to later port to librt ;
14273 - allow multiple accept() for one select() wake up ;
14274 - implemented internal load balancing with basic health-check ;
14275 - cookie insertion and header add/replace/delete, with better strings
14276 support.
14277
142782002/03/08
14279 - reworked buffer handling to fix a few rewrite bugs, and
14280 improve overall performance.
14281 - implement the "purge" option to delete server cookies in direct mode.
14282
142832002/03/07
14284 - fixed some error cases where the maxfd was not decreased.
14285
142862002/02/26
14287 - now supports transparent proxying, at least on linux 2.4.
14288
142892002/02/12
14290 - soft stop works again (fixed select timeout computation).
14291 - it seems that TCP proxies sometimes cannot timeout.
14292 - added a "quiet" mode.
14293 - enforce file descriptor limitation on socket() and accept().
14294
142952001/12/30 : release of version 1.0.2 : fixed a bug in header processing
142962001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
142972001/12/16 : release of version 1.0.0.
142982001/12/16 : added syslog capability for each accepted connection.
142992001/11/19 : corrected premature end of files and occasional SIGPIPE.
143002001/10/31 : added health-check type servers (mode health) which replies OK then closes.
143012001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
14302 with or without cookies (use keyword http for this).
143032001/09/01 : added client/server header replacing with regexps.
14304 eg:
14305 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
14306 srvexp ^Server:\ .* Server:\ Apache
143072000/11/29 : first fully working release with complete FSMs and timeouts.
143082000/11/28 : major rewrite
143092000/11/26 : first write