blob: c922fa61e44d43f6c6e59801d3e6dc55ec14aa90 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau4b10a5c2022-09-17 12:24:53 +020042022/09/17 : 2.7-dev6
5 - MINOR: Revert part of clarifying samples support per os commit
6 - BUILD: makefile: enable crypt(3) for NetBSD
7 - BUG/MINOR: quic: Retransmitted frames marked as acknowledged
8 - BUG/MINOR: quic: Possible crash with "tls-ticket-keys" on QUIC bind lines
9 - MINOR: http-check: Remove support for headers/body in "option httpchk" version
10 - BUG/MINOR: h1: Support headers case adjustment for TCP proxies
11 - BUG/MINOR: quic: Possible crash when verifying certificates
12 - BUILD: quic: add some ifdef around the SSL_ERROR_* for libressl
13 - BUILD: ssl: fix ssl_sock_switchtx_cbk when no client_hello_cb
14 - BUILD: quic: temporarly ignore chacha20_poly1305 for libressl
15 - BUILD: quic: enable early data only with >= openssl 1.1.1
16 - BUILD: ssl: fix the ifdef mess in ssl_sock_initial_ctx
17 - BUILD: quic: fix the #ifdef in ssl_quic_initial_ctx()
18 - MINOR: quic: add QUIC support when no client_hello_cb
19 - MINOR: quic: Add traces about sent or resent TX frames
20 - MINOR: quic: No TRACE_LEAVE() in retrieve_qc_conn_from_cid()
21 - BUG/MINOR: quic: Wrong connection ID to thread ID association
22 - BUG/MINOR: task: always reset a new tasklet's call date
23 - BUG/MINOR: task: make task_instant_wakeup() work on a task not a tasklet
24 - MINOR: task: permanently enable latency measurement on tasklets
25 - CLEANUP: task: rename ->call_date to ->wake_date
26 - BUG/MINOR: sched: properly account for the CPU time of dying tasks
27 - MINOR: sched: store the current profile entry in the thread context
28 - BUG/MINOR: stream/sched: take into account CPU profiling for the last call
29 - MINOR: tasks: do not keep cpu and latency times in struct task
30 - MINOR: tools: add generic pointer hashing functions
31 - CLEANUP: activity: make memprof use the generic ptr_hash() function
32 - CLEANUP: activity: make taskprof use ptr_hash()
33 - MINOR: debug: add struct ha_caller to describe a calling location
34 - CLEANUP: debug: use struct ha_caller for memstat
35 - DEBUG: task: define a series of wakeup types for tasks and tasklets
36 - DEBUG: task: use struct ha_caller instead of arrays of file:line
37 - DEBUG: applet: instrument appctx_wakeup() to log the caller's location
38 - DEBUG: task: simplify the caller recording in DEBUG_TASK
39 - CLEANUP: task: move tid and wake_date into the common part
40 - CLEANUP: sched: remove duplicate code in run_tasks_from_list()
41 - CLEANUP: activity: make the number of sched activity entries more configurable
42 - DEBUG: resolvers: unstatify process_resolvers() to make it appear in profiling
43 - DEBUG: quic: export the few task handlers that often appear in task dumps
44 - MEDIUM: tasks/activity: combine the called function with the caller
45 - MINOR: tasks/activity: improve the caller-callee activity hash
46 - MINOR: activity/cli: support aggregating task profiling outputs
47 - MINOR: activity/cli: support sorting task profiling by total CPU time
48 - BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
49 - BUG/MINOR: quic: Speed up the handshake completion only one time
50 - BUG/MINOR: quic: Trace fix about packet number space information.
51 - BUG/MINOR: h3: Crash when h3 trace verbosity is "minimal"
52 - MINOR: h3: Add the quic_conn object to h3 traces
53 - MINOR: h3: Missing connection argument for a TRACE_LEAVE() argument
54 - MINOR: h3: Send the h3 settings with others streams (requests)
55 - MINOR: dev/udp: Apply the corruption to both directions
56 - BUILD: udp-perturb: Add a make target for udp-perturb tool
57 - BUG/MINOR: signals/poller: ensure wakeup from signals
58 - CI: cirrus-ci: bump FreeBSD image to 13-1
59 - DEV: flags: fix usage message to reflect available options
60 - DEV: flags: add missing CO_FL_FDLESS connection flag
61 - MINOR: flags: add a new file to host flag dumping macros
62 - MINOR: flags: implement a macro used to dump enums inside masks
63 - MINOR: flags/channel: use flag dumping for channel flags and analysers
64 - MINOR: flags/connection: use flag dumping for connection flags
65 - MINOR: flags/stconn: use flag dumping for stconn and sedesc flags
66 - MINOR: flags/stream: use flag dumping for stream error type
67 - MINOR: flags/stream: use flag dumping for stream flags
68 - MINOR: flags/task: use flag dumping for task state
69 - MINOR: flags/http_ana: use flag dumping for txn flags
70 - DEV: flags: remove the now unused SHOW_FLAG() definition
71 - DEV: flags: remove the now useless intermediary functions
72 - MINOR: flags/htx: use flag dumping to show htx and start-line flags
73 - MINOR: flags/http_ana: use flag dumping to show http msg states
74 - BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
75 - MINOR: listener: small API change
76 - MINOR: proxy/listener: support for additional PAUSED state
77 - BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'
78 - BUILD: flags: fix build warning in some macros used by show_flags
79 - BUILD: flags: fix the fallback macros for missing stdio
80 - CLEANUP: pollers: remove dead code in the polling loop
81 - BUG/MINOR: mux-h1: Increment open_streams counter when H1 stream is created
82 - REGTESTS: healthcheckmail: Relax matching on the healthcheck log message
83 - CLEANUP: listener: function comment typo in stop_listener()
84 - BUG/MINOR: listener: null pointer dereference suspected by coverity
85 - MINOR: flags/fd: decode FD flags states
86 - REORG: mux-h2: extract flags and enums into mux_h2-t.h
87 - MINOR: flags/mux-h2: decode H2C and H2S flags
88 - REGTESTS: log: test the log-forward feature
89 - BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.
90 - REGTESTS: ssl/log: test the log-forward with SSL
91 - MEDIUM: httpclient: httpclient_create_proxy() creates a proxy for httpclient
92 - MEDIUM: httpclient: allow to use another proxy
93 - DOC: fix TOC in starter guide for subsection 3.3.8. Statistics
94 - MINOR: httpclient: export httpclient_create_proxy()
95 - MEDIUM: quic: separate path for rx and tx with set_encryption_secrets
96 - BUG/MEDIUM: mux-quic: fix crash on early app-ops release
97 - REORG: mux-h1: extract flags and enums into mux_h1-t.h
98 - MINOR: flags/mux-h1: decode H1C and H1S flags
99 - CLEANUP: mux-quic: remove stconn usage in h3/hq
100 - BUG/MINOR: mux-quic: do not remotely close stream too early
101 - CLEANUP: exclude udp-perturb with .gitignore
102 - BUG/MEDIUM: server: segv when adding server with hostname from CLI
103 - CLEANUP: quic,ssl: fix tiny typos in C comments
104 - BUG/MEDIUM: captures: free() an error capture out of the proxy lock
105 - BUILD: fd: fix a build warning on the DWCAS
106 - MINOR: anon: add new macros and functions to anonymize contents
107 - MINOR: anon: store the anonymizing key in the global structure
108 - MINOR: anon: store the anonymizing key in the CLI's appctx
109 - MINOR: cli: anonymize commands 'show sess' and 'show sess all'
110 - MINOR: cli: anonymize 'show servers state' and 'show servers conn'
111 - MINOR: config: add command-line -dC to dump the configuration file
112 - SCRIPTS: announce-release: update some URLs to https
113
Willy Tarreau3bb2b5d2022-09-02 19:36:50 +02001142022/09/02 : 2.7-dev5
115 - BUG/MINOR: mux-quic: Fix memleak on QUIC stream buffer for unacknowledged data
116 - BUG/MEDIUM: cpu-map: fix thread 1's affinity affecting all threads
117 - MINOR: cpu-map: remove obsolete diag warning about combined ranges
118 - BUG/MAJOR: mworker: fix infinite loop on master with no proxies.
119 - REGTESTS: launch http_reuse_always in mworker mode
120 - BUG/MINOR: quix: Memleak for non in flight TX packets
121 - BUG/MINOR: quic: Wrong list_for_each_entry() use when building packets from qc_do_build_pkt()
122 - BUG/MINOR: quic: Safer QUIC frame builders
123 - MINOR: quic: Replace MT_LISTs by LISTs for RX packets.
124 - BUG/MEDIUM: applet: fix incorrect check for abnormal return condition from handler
125 - BUG/MINOR: applet: make the call_rate only count the no-progress calls
126 - MEDIUM: peers: limit the number of updates sent at once
127 - BUILD: tcp_sample: fix build of get_tcp_info() on OpenBSD
128 - BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
129 - BUG/MINOR: mworker: does not create the "default" resolvers in wait mode
130 - BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect
131 - REGTESTS: Fix prometheus script to perform HTTP health-checks
132 - MINOR: resolvers: shut the warning when "default" resolvers is implicit
133 - Revert "BUG/MINOR: quix: Memleak for non in flight TX packets"
134 - BUG/MINOR: quic: Leak in qc_release_lost_pkts() for non in flight TX packets
135 - BUG/MINOR: quic: Stalled connections (missing I/O handler wakeup)
136 - CLEANUP: quic: No more use ->rx_list MT_LIST entry point (quic_rx_packet)
137 - CLEANUP: quic: Remove a useless check in qc_lstnr_pkt_rcv()
138 - MINOR: quic: Remove useless traces about references to TX packets
139 - Revert "MINOR: quic: Remove useless traces about references to TX packets"
140 - DOC: configuration: do-resolve doesn't work with a port in the string
141 - MINOR: sample: add the host_only and port_only converters
142 - BUG/MINOR: httpclient: fix resolution with port
143 - DOC: configuration.txt: do-resolve must use host_only to remove its port.
144 - BUG/MINOR: quic: Null packet dereferencing from qc_dup_pkt_frms() trace
145 - BUG/MINOR: quic: Frames added to packets even if not built.
146 - BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
147 - BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
148 - BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
149 - BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
150 - BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets
151 - BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
152 - BUG/MINOR: epoll: do not actively poll for Rx after an error
153 - MINOR: raw-sock: don't try to send if an error was already reported
154 - BUG/MINOR: quic: Missing header protection AES cipher context initialisations (draft-v2)
155 - MINOR: quic: Add a trace to distinguish the datagram from the packets inside
156 - BUG/MINOR: ssl: fix deinit of the ca-file tree
157 - BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free()
158 - BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)
159 - BUG/MEDIUM: ssl: Fix a UAF when old ckch instances are released
160 - BUG/MINOR: ssl: revert two wrong fixes with ckhi_link
161 - BUG/MINOR: dev/udp: properly preset the rx address size
162 - BUILD: debug: make sure debug macros are never empty
163 - MINOR: quic: Move traces about RX/TX bytes from QUIC_EV_CONN_PRSAFRM event
164 - BUG/MINOR: quic: TX frames memleak
165 - BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free() v2
166 - MINOR: sink/ring: rotate non-empty file-backed contents only
167 - BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
168 - REGTESTS: http_request_buffer: Add a barrier to not mix up log messages
169 - BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools
170 - MINOR: backend: always satisfy the first req reuse rule with l7 retries
171 - BUG/MINOR: quic: Do not ack when probing
172 - MINOR: quic: Add TX frames addresses to traces to several trace events
173 - MINOR: quic: Trace typo fix in qc_release_frm()
174 - BUG/MINOR: quic: Frames leak during retransmissions
175 - BUG/MINOR: h2: properly set the direction flag on HTX response
176 - BUG/MEDIUM: httpclient: always detach the caller before self-killing
177 - BUG/MINOR: httpclient: only ask for more room on failed writes
178 - BUG/MINOR: httpclient: keep-alive was accidentely disabled
179 - MEDIUM: httpclient: enable ALPN support on outgoing https connections
180 - BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber
181 - BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber
182 - BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber
183 - DEBUG: stream: minor rearrangement of a few fields in struct stream.
184 - MINOR: debug: report applet pointer and handler in crashes when known
185 - MINOR: mux-h2: extract the stream dump function out of h2_show_fd()
186 - MINOR: mux-h2: extract the connection dump function out of h2_show_fd()
187 - MINOR: muxes: add a "show_sd" helper to complete "show sess" dumps
188 - MINOR: mux-h2: provide a "show_sd" helper to output stream debugging info
189 - MINOR: mux-h2: insert line breaks in "show sess all" output for legibility
190 - MINOR: mux-quic: provide a "show_sd" helper to output stream debugging info
191 - MINOR: mux-h1: split "show_fd" into connection and stream
192 - MINOR: mux-h1: provide a "show_sd" helper to output stream debugging info
193 - BUG/MINOR: http-act: initialize http fmt head earlier
194
Willy Tarreauf5320192022-08-20 15:56:31 +02001952022/08/20 : 2.7-dev4
196 - BUG/MEDIUM: quic: Wrong packet length check in qc_do_rm_hp()
197 - MINOR: quic: Too much useless traces in qc_build_frms()
198 - BUG/MEDIUM: quic: Missing AEAD TAG check after removing header protection
199 - MINOR: quic: Replace pool_zalloc() by pool_malloc() for fake datagrams
200 - MINOR: debug: make the mem_stats section aligned to void*
201 - MINOR: debug: store and report the pool's name in struct mem_stats
202 - MINOR: debug: also store the function name in struct mem_stats
203 - MINOR: debug/memstats: automatically determine first column size
204 - MINOR: debug/memstats: permit to pass the size to free()
205 - CLEANUP: mux-quic: remove loop on sending frames
206 - MINOR: quic: replace custom buf on Tx by default struct buffer
207 - MINOR: quic: release Tx buffer on each send
208 - MINOR: quic: refactor datagram commit in Tx buffer
209 - MINOR: quic: skip sending if no frame to send in io-cb
210 - BUG/MINOR: mux-quic: open stream on STOP_SENDING
211 - BUG/MINOR: quic: fix crash on handshake io-cb for null next enc level
212 - BUG/MEDIUM: quic: always remove the connection from the accept list on close
213 - BUG/MEDIUM: poller: use fd_delete() to release the poller pipes
214 - BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()
215 - MEDIUM: quic: xprt traces rework
216 - BUILD: stconn: fix build warning at -O3 about possible null sc
217 - MINOR: quic: Remove useless lock for RX packets
218 - BUG/MINOR: quic: Possible infinite loop in quic_build_post_handshake_frames()
219 - CLEANUP: quic: Remove trailing spaces
220 - MINOR: mux-quic: adjust enter/leave traces
221 - MINOR: mux-quic: define protocol error traces
222 - CLEANUP: mux-quic: adjust traces level
223 - MINOR: mux-quic: define new traces
224 - BUG/MEDIUM: mux-quic: fix crash due to invalid trace arg
225 - BUG/MEDIUM: quic: Possible use of uninitialized <odcid> variable in qc_lstnr_params_init()
226 - BUG/MEDIUM: ring: fix too lax 'size' parser
227 - BUG/MEDIUM: quic: Wrong use of <token_odcid> in qc_lsntr_pkt_rcv()
228 - BUILD: ring: forward-declare struct appctx to avoid a build warning
229 - MINOR: ring: support creating a ring from a linear area
230 - MINOR: ring: add support for a backing-file
231 - DEV: haring: add a simple utility to read file-backed rings
232 - DEV: haring: support remapping LF in contents with CR VT
233 - BUG/MINOR: quic: memleak on wrong datagram receipt
234 - BUILD: sink: replace S_IRUSR, S_IWUSR with their octal value
235 - MINOR: ring: archive a previous file-backed ring on startup
236 - BUG/MINOR: mux-quic: fix crash with traces in qc_detach()
237 - BUG/MINOR: quic: MIssing check when building TX packets
238 - BUG/MINOR: quic: Wrong status returned by qc_pkt_decrypt()
239 - MINOR: memprof: export the minimum definitions for memory profiling
240 - MINOR: pool/memprof: report pool alloc/free in memory profiling
241 - MINOR: pools/memprof: store and report the pool's name in each bin
242 - MINOR: chunk: inline alloc_trash_chunk()
243 - MINOR: stick-table: Add table_expire() and table_idle() new converters
244 - CLEANUP: exclude haring with .gitignore
245 - MINOR: quic: adjust quic_frame flag manipulation
246 - MINOR: h3: report error on control stream close
247 - MINOR: qpack: report error on enc/dec stream close
248 - BUG/MEDIUM: mux-quic: reject uni stream ID exceeding flow control
249 - MINOR: mux-quic: adjust traces on stream init
250 - MINOR: mux-quic: add missing args on some traces
251 - MINOR: quic: refactor application send
252 - BUG/MINOR: quic: do not notify MUX on frame retransmit
253 - BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names
254 - BUG/MINOR: quic: Missing initializations for ducplicated frames.
255 - BUG/MEDIUM: quic: fix crash on MUX send notification
256 - REORG: h2: extract cookies concat function in http_htx
257 - REGTESTS: add test for HTTP/2 cookies concatenation
258 - MEDIUM: h3: concatenate multiple cookie headers
259 - MINOR: applet: add a function to reset the svcctx of an applet
260 - BUG/MEDIUM: cli: always reset the service context between commands
261 - BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
262 - MINOR: mux-h2/traces: report transition to SETTINGS1 before not after
263 - MINOR: mux-h2: make streams know if they need to send more data
264 - BUG/MINOR: mux-h2: send a CANCEL instead of ES on truncated writes
265 - BUG/MINOR: quic: Possible crashes when dereferencing ->pkt quic_frame struct member
266 - MINOR: quic: Add frame addresses to QUIC_EV_CONN_PRSAFRM event traces
267 - BUG/MINOR: quic: Wrong splitted duplicated frames handling
268 - MINOR: quic: Add the QUIC connection to mux traces
269 - MINOR: quic: Trace fix in qc_release_frm()
270 - BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized
271 - BUG/MAJOR: log-forward: Fix ssl layer not initialized on bind even if configured
272 - MINOR: quic: Add reusable cipher contexts for header protection
273 - BUG/MINOR: ssl/cli: error when the ca-file is empty
274 - MINOR: ssl: handle ca-file appending in cafile_entry
275 - MINOR: ssl/cli: implement "add ssl ca-file"
276
Willy Tarreau87e95d32022-08-07 17:28:59 +02002772022/08/07 : 2.7-dev3
278 - BUILD: makefile: Fix install(1) handling for OpenBSD/NetBSD/Solaris/AIX
279 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds (try 2)
280 - MINOR: resolvers: resolvers_destroy() deinit and free a resolver
281 - BUG/MINOR: resolvers: shut off the warning for the default resolvers
282 - BUG/MINOR: ssl: allow duplicate certificates in ca-file directories
283 - BUG/MINOR: tools: fix statistical_prng_range()'s output range
284 - BUG/MINOR: quic: do not send CONNECTION_CLOSE_APP in initial/handshake
285 - BUILD: debug: Add braces to if statement calling only CHECK_IF()
286 - BUG/MINOR: fd: Properly init the fd state in fd_insert()
287 - BUG/MEDIUM: fd/threads: fix incorrect thread selection in wakeup broadcast
288 - MINOR: init: load OpenSSL error strings
289 - MINOR: ssl: enhance ca-file error emitting
290 - BUG/MINOR: mworker/cli: relative pid prefix not validated anymore
291 - BUG/MAJOR: mux_quic: fix invalid PROTOCOL_VIOLATION on POST data overlap
292 - BUG/MEDIUM: mworker: proc_self incorrectly set crashes upon reload
293 - BUILD: add detection for unsupported compiler models
294 - BUG/MEDIUM: stconn: Only reset connect expiration when processing backend side
295 - BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible
296 - BUG/MEDIUM: master: force the thread count earlier
297 - BUG/MAJOR: poller: drop FD's tgid when masks don't match
298 - DEBUG: fd: detect possibly invalid tgid in fd_insert()
299 - BUG/MINOR: sockpair: wrong return value for fd_send_uxst()
300 - MINOR: sockpair: move send_fd_uxst() error message in caller
301 - Revert "BUG/MINOR: peers: set the proxy's name to the peers section name"
302 - DEBUG: fd: split the fd check
303 - MEDIUM: resolvers: continue startup if network is unavailable
304 - BUG/MINOR: fd: always remove late updates when freeing fd_updt[]
305 - MINOR: cli: emit a warning when _getsocks was used more than once
306 - BUG/MINOR: mworker: PROC_O_LEAVING used but not updated
307 - Revert "MINOR: cli: emit a warning when _getsocks was used more than once"
308 - MINOR: cli: warning on _getsocks when socket were closed
309 - BUG/MEDIUM: mux-quic: fix missing EOI flag to prevent streams leaks
310 - MINOR: quic: Congestion control architecture refactoring
311 - MEDIUM: quic: Cubic congestion control algorithm implementation
312 - MINOR: quic: New "quic-cc-algo" bind keyword
313 - BUG/MINOR: quic: loss time limit variable computed but not used
314 - MINOR: quic: Stop looking for packet loss asap
315 - BUG/MAJOR: quic: Useless resource intensive loop qc_ackrng_pkts()
316 - MINOR: quic: Send packets as much as possible from qc_send_app_pkts()
317 - BUG/MEDIUM: queue/threads: limit the number of entries dequeued at once
318 - MAJOR: threads/plock: update the embedded library
319 - MINOR: thread: provide an alternative to pthread's rwlock
320 - DEBUG: tools: provide a tree dump function for ebmbtrees as well
321 - MINOR: ebtree: add ebmb_lookup_shorter() to pursue lookups
322 - BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
323 - BUG/MINOR: mux-quic: prevent crash if conn released during IO callback
324 - CLEANUP: mux-quic: remove useless app_ops is_active callback
325 - BUG/MINOR: mux-quic: do not free conn if attached streams
326 - MINOR: mux-quic: save proxy instance into qcc
327 - MINOR: mux-quic: use timeout server for backend conns
328 - MEDIUM: mux-quic: adjust timeout refresh
329 - MINOR: mux-quic: count in-progress requests
330 - MEDIUM: mux-quic: implement http-keep-alive timeout
331 - MINOR: peers: Add a warning about incompatible SSL config for the local peer
332 - MINOR: peers: Use a dedicated reconnect timeout when stopping the local peer
333 - BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
334 - BUG/MINOR: peers: Use right channel flag to consider the peer as connected
335 - BUG/MEDIUM: dns: Properly initialize new DNS session
336 - BUG/MINOR: backend: Don't increment conn_retries counter too early
337 - MINOR: server: Constify source server to copy its settings
338 - REORG: server: Export srv_settings_cpy() function
339 - BUG/MEDIUM: proxy: Perform a custom copy for default server settings
340 - BUG/MINOR: quic: Missing in flight ack eliciting packet counter decrement
341 - BUG/MEDIUM: quic: Floating point exception in cubic_root()
342 - MINOR: h3: support HTTP request framing state
343 - MINOR: mux-quic: refresh timeout on frame decoding
344 - MINOR: mux-quic: refactor refresh timeout function
345 - MEDIUM: mux-quic: implement http-request timeout
346 - BUG/MINOR: quic: Avoid sending truncated datagrams
347 - BUG/MINOR: ring/cli: fix a race condition between the writer and the reader
348 - BUG/MEDIUM: sink: Set the sink ref for forwarders created during ring parsing
349 - BUG/MINOR: sink: fix a race condition between the writer and the reader
350 - BUG/MINOR: quic: do not reject datagrams matching minimum permitted size
351 - MINOR: quic: Add two new stats counters for sendto() errors
352 - BUG/MINOR: quic: Missing Initial packet dropping case
353 - MINOR: quic: explicitely ignore sendto error
354 - BUG/MINOR: quic: adjust errno handling on sendto
355 - BUG/MEDIUM: quic: break out of the loop in quic_lstnr_dghdlr
356 - MINOR: threads: report the number of thread groups in build options
357 - MINOR: config: automatically preset MAX_THREADS based on MAX_TGROUPS
358 - BUILD: SSL: allow to pass additional configure args to QUICTLS
359 - CI: enable weekly "m32" builds on x86_64
360 - CLEANUP: assorted typo fixes in the code and comments
361 - BUG/MEDIUM: fix DH length when EC key is used
362 - REGTESTS: ssl: adopt tests to OpenSSL-3.0.N
363 - REGTESTS: ssl: adopt tests to OpenSSL-3.0.N
364 - REGTESTS: ssl: fix grep invocation to use extended regex in ssl_generate_certificate.vtc
365 - BUILD: cfgparse: always defined _GNU_SOURCE for sched.h and crypt.h
366
Willy Tarreau2200a9c2022-07-16 17:17:22 +02003672022/07/16 : 2.7-dev2
368 - BUG/MINOR: qpack: fix build with QPACK_DEBUG
369 - MINOR: h3: handle errors on HEADERS parsing/QPACK decoding
370 - BUG/MINOR: qpack: abort on dynamic index field line decoding
371 - MINOR: qpack: properly handle invalid dynamic table references
372 - MINOR: task: Add tasklet_wakeup_after()
373 - BUG/MINOR: quic: Dropped packets not counted (with RX buffers full)
374 - MINOR: quic: Add new stats counter to diagnose RX buffer overrun
375 - MINOR: quic: Duplicated QUIC_RX_BUFSZ definition
376 - MINOR: quic: Improvements for the datagrams receipt
377 - CLEANUP: h2: Typo fix in h2_unsubcribe() traces
378 - MINOR: quic: Increase the QUIC connections RX buffer size (upto 64Kb)
379 - CLEANUP: mux-quic: adjust comment on qcs_consume()
380 - MINOR: ncbuf: implement ncb_is_fragmented()
381 - BUG/MINOR: mux-quic: do not signal FIN if gap in buffer
382 - MINOR: fd: add a new FD_DISOWN flag to prevent from closing a deleted FD
383 - BUG/MEDIUM: ssl/fd: unexpected fd close using async engine
384 - MINOR: tinfo: make tid temporarily still reflect global ID
385 - CLEANUP: config: remove unused proc_mask()
386 - MINOR: debug: remove mask support from "debug dev sched"
387 - MEDIUM: task: add and preset a thread ID in the task struct
388 - MEDIUM: task/debug: move the ->thread_mask integrity checks to ->tid
389 - MAJOR: task: use t->tid instead of ffsl(t->thread_mask) to take the thread ID
390 - MAJOR: task: replace t->thread_mask with 1<<t->tid when thread mask is needed
391 - CLEANUP: task: remove thread_mask from the struct task
392 - MEDIUM: applet: only keep appctx_new_*() and drop appctx_new()
393 - MEDIUM: task: only keep task_new_*() and drop task_new()
394 - MINOR: applet: always use task_new_on() on applet creation
395 - MEDIUM: task: remove TASK_SHARED_WQ and only use t->tid
396 - MINOR: task: replace task_set_affinity() with task_set_thread()
397 - CLEANUP: task: remove the unused task_unlink_rq()
398 - CLEANUP: task: remove the now unused TASK_GLOBAL flag
399 - MINOR: task: make rqueue_ticks atomic
400 - MEDIUM: task: move the shared runqueue to one per thread
401 - MEDIUM: task: replace the global rq_lock with a per-rq one
402 - MINOR: task: remove grq_total and use rq_total instead
403 - MINOR: task: replace global_tasks_mask with a check for tree's emptiness
404 - MEDIUM: task: use regular eb32 trees for the run queues
405 - MEDIUM: queue: revert to regular inter-task wakeups
406 - MINOR: thread: make wake_thread() take care of the sleeping threads mask
407 - MINOR: thread: move the flags to the shared cache line
408 - MINOR: thread: only use atomic ops to touch the flags
409 - MINOR: poller: centralize poll return handling
410 - MEDIUM: polling: make update_fd_polling() not care about sleeping threads
411 - MINOR: poller: update_fd_polling: wake a random other thread
412 - MEDIUM: thread: add a new per-thread flag TH_FL_NOTIFIED to remember wakeups
413 - MEDIUM: tasks/fd: replace sleeping_thread_mask with a TH_FL_SLEEPING flag
414 - MINOR: tinfo: add the tgid to the thread_info struct
415 - MINOR: tinfo: replace the tgid with tgid_bit in tgroup_info
416 - MINOR: tinfo: add the mask of enabled threads in each group
417 - MINOR: debug: use ltid_bit in ha_thread_dump()
418 - MINOR: wdt: use ltid_bit in wdt_handler()
419 - MINOR: clock: use ltid_bit in clock_report_idle()
420 - MINOR: thread: use ltid_bit in ha_tkillall()
421 - MINOR: thread: add a new all_tgroups_mask variable to know about active tgroups
422 - CLEANUP: thread: remove thread_sync_release() and thread_sync_mask
423 - MEDIUM: tinfo: add a dynamic thread-group context
424 - MEDIUM: thread: make stopping_threads per-group and add stopping_tgroups
425 - MAJOR: threads: change thread_isolate to support inter-group synchronization
426 - MINOR: thread: add is_thread_harmless() to know if a thread already is harmless
427 - MINOR: debug: mark oneself harmless while waiting for threads to finish
428 - MINOR: wdt: do not rely on threads_to_dump anymore
429 - MEDIUM: debug: make the thread dumper not rely on a thread mask anymore
430 - BUILD: debug: fix build issue on clang with previous commit
431 - BUILD: debug: re-export thread_dump_state
432 - BUG/MEDIUM: threads: fix incorrect thread group being used on soft-stop
433 - BUG/MEDIUM: thread: check stopping thread against local bit and not global one
434 - MINOR: proxy: use tg->threads_enabled in hard_stop() to detect stopped threads
435 - BUILD: Makefile: Add Lua 5.4 autodetect
436 - CI: re-enable gcc asan builds
437 - MEDIUM: mworker: set the iocb of the socketpair without using fd_insert()
438 - MINOR: fd: Add BUG_ON checks on fd_insert()
439 - CLEANUP: mworker: rename mworker_pipe to mworker_sockpair
440 - CLEANUP: mux-quic: do not export qc_get_ncbuf
441 - REORG: mux-quic: reorganize flow-control fields
442 - MINOR: mux-quic: implement accessor for sedesc
443 - MEDIUM: mux-quic: refactor streams opening
444 - MINOR: mux-quic: rename qcs flag FIN_RECV to SIZE_KNOWN
445 - MINOR: mux-quic: emit FINAL_SIZE_ERROR on invalid STREAM size
446 - BUG/MINOR: peers/config: always fill the bind_conf's argument
447 - BUG/MEDIUM: peers/config: properly set the thread mask
448 - CLEANUP: bwlim: Set pointers to NULL when memory is released
449 - BUG/MINOR: http-check: Preserve headers if not redefined by an implicit rule
450 - BUG/MINOR: http-act: Properly generate 103 responses when several rules are used
451 - BUG/MEDIUM: thread: mask stopping_threads with threads_enabled when checking it
452 - CLEANUP: thread: also remove a thread's bit from stopping_threads on stop
453 - BUG/MINOR: peers: fix possible NULL dereferences at config parsing
454 - BUG/MINOR: http-htx: Fix scheme based normalization for URIs wih userinfo
455 - MINOR: http: Add function to get port part of a host
456 - MINOR: http: Add function to detect default port
457 - BUG/MEDIUM: h1: Improve authority validation for CONNCET request
458 - MINOR: http-htx: Use new HTTP functions for the scheme based normalization
459 - BUG/MEDIUM: http-fetch: Don't fetch the method if there is no stream
460 - REGTEESTS: filters: Fix CONNECT request in random-forwarding script
461 - MEDIUM: mworker/systemd: send STATUS over sd_notify
462 - BUG/MINOR: mux-h1: Be sure to commit htx changes in the demux buffer
463 - BUG/MEDIUM: http-ana: Don't wait to have an empty buf to switch in TUNNEL state
464 - BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send
465 - MEDIUM: epoll: don't synchronously delete migrated FDs
466 - BUILD: debug: silence warning on gcc-5
467 - BUILD: http: silence an uninitialized warning affecting gcc-5
468 - BUG/MEDIUM: mux-quic: fix server chunked encoding response
469 - REORG: mux-quic: rename stream initialization function
470 - MINOR: mux-quic: rename stream purge function
471 - MINOR: mux-quic: add traces on frame parsing functions
472 - MINOR: mux-quic: implement qcs_alert()
473 - MINOR: mux-quic: filter send/receive-only streams on frame parsing
474 - MINOR: mux-quic: do not ack STREAM frames on unrecoverable error
475 - MINOR: mux-quic: support stream opening via MAX_STREAM_DATA
476 - MINOR: mux-quic: define basic stream states
477 - MINOR: mux-quic: use stream states to mark as detached
478 - MEDIUM: mux-quic: implement RESET_STREAM emission
479 - MEDIUM: mux-quic: implement STOP_SENDING handling
480 - BUG/MEDIUM: debug: fix possible hang when multiple threads dump at once
481 - BUG/MINOR: quic: fix closing state on NO_ERROR code sent
482 - CLEANUP: quic: clean up include on quic_frame-t.h
483 - MINOR: quic: define a generic QUIC error type
484 - MINOR: mux-quic: support app graceful shutdown
485 - MINOR: mux-quic/h3: prepare CONNECTION_CLOSE on release
486 - MEDIUM: quic: send CONNECTION_CLOSE on released MUX
487 - CLEANUP: mux-quic: move qc_release()
488 - MINOR: mux-quic: send one last time before release
489 - MINOR: h3: store control stream in h3c
490 - MINOR: h3: implement graceful shutdown with GOAWAY
491 - BUG/MINOR: threads: produce correct global mask for tgroup > 1
492 - BUG/MEDIUM: cli/threads: make "show threads" more robust on applets
493 - BUG/MINOR: thread: use the correct thread's group in ha_tkillall()
494 - BUG/MINOR: debug: enter ha_panic() only once
495 - BUG/MEDIUM: debug: fix parallel thread dumps again
496 - MINOR: cli/streams: show a stream's tgid next to its thread ID
497 - DEBUG: cli: add a new "debug dev deadlock" expert command
498 - MINOR: cli/activity: add a thread number argument to "show activity"
499 - CLEANUP: applet: remove the obsolete command context from the appctx
500 - MEDIUM: config: remove deprecated "bind-process" directives from frontends
501 - MEDIUM: config: remove the "process" keyword on "bind" lines
502 - MINOR: listener/config: make "thread" always support up to LONGBITS
503 - CLEANUP: fd: get rid of the __GET_{NEXT,PREV} macros
504 - MEDIUM: debug/threads: make the lock debugging take tgroups into account
505 - MEDIUM: proto: stop protocols under thread isolation during soft stop
506 - MEDIUM: poller: program the update in fd_update_events() for a migrated FD
507 - MEDIUM: poller: disable thread-groups for poll() and select()
508 - MINOR: thread: remove MAX_THREADS limitation
509 - MEDIUM: cpu-map: replace the process number with the thread group number
510 - MINOR: mworker/threads: limit the mworker sockets to group 1
511 - MINOR: cli/threads: always bind CLI to thread group 1
512 - MINOR: fd/thread: get rid of thread_mask()
513 - MEDIUM: task/thread: move the task shared wait queues per thread group
514 - MINOR: task: move the niced_tasks counter to the thread group context
515 - DOC: design: add some thoughts about how to handle the update_list
516 - MEDIUM: conn: make conn_backend_get always scan the same group
517 - MAJOR: fd: remove pending updates upon real close
518 - MEDIUM: fd/poller: make the update-list per-group
519 - MINOR: fd: delete unused updates on close()
520 - MINOR: fd: make fd_insert() apply the thread mask itself
521 - MEDIUM: fd: add the tgid to the fd and pass it to fd_insert()
522 - MINOR: cli/fd: show fd's tgid and refcount in "show fd"
523 - MINOR: fd: add functions to manipulate the FD's tgid
524 - MINOR: fd: add fd_get_running() to atomically return the running mask
525 - MAJOR: fd: grab the tgid before manipulating running
526 - MEDIUM: fd/poller: turn polled_mask to group-local IDs
527 - MEDIUM: fd/poller: turn update_mask to group-local IDs
528 - MEDIUM: fd/poller: turn running_mask to group-local IDs
529 - MINOR: fd: make fd_clr_running() return the previous value instead
530 - MEDIUM: fd: make thread_mask now represent group-local IDs
531 - MEDIUM: fd: make fd_insert() take local thread masks
532 - MEDIUM: fd: make fd_insert/fd_delete atomically update fd.tgid
533 - MEDIUM: fd: quit fd_update_events() when FD is closed
534 - MEDIUM: thread: change thread_resolve_group_mask() to return group-local values
535 - MEDIUM: listener: switch bind_thread from global to group-local
536 - MINOR: fd: add fd_reregister_all() to deal with boot-time FDs
537 - MEDIUM: fd: support stopping FDs during starting
538 - MAJOR: pollers: rely on fd_reregister_all() at boot time
539 - MAJOR: poller: only touch/inspect the update_mask under tgid protection
540 - MEDIUM: fd: support broadcasting updates for foreign groups in updt_fd_polling
541 - CLEANUP: threads: remove the now unused all_threads_mask and tid_bit
542 - MINOR: config: change default MAX_TGROUPS to 16
543 - BUG/MEDIUM: tools: avoid calling dlsym() in static builds
544
Willy Tarreauf9de4e92022-06-24 22:09:05 +02005452022/06/24 : 2.7-dev1
546 - BUG/MINOR: ssl_ckch: Free error msg if commit changes on a cert entry fails
547 - BUG/MINOR: ssl_ckch: Free error msg if commit changes on a CA/CRL entry fails
548 - BUG/MEDIUM: ssl_ckch: Don't delete a cert entry if it is being modified
549 - BUG/MEDIUM: ssl_ckch: Don't delete CA/CRL entry if it is being modified
550 - BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a cert entry
551 - BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a CA/CRL entry
552 - BUG/MEDIUM: ssl_ckch: Rework 'commit ssl cert' to handle full buffer cases
553 - BUG/MEDIUM: ssl_ckch: Rework 'commit ssl ca-file' to handle full buffer cases
554 - BUG/MEDIUM: ssl/crt-list: Rework 'add ssl crt-list' to handle full buffer cases
555 - BUG/MEDIUM: httpclient: Don't remove HTX header blocks before duplicating them
556 - BUG/MEDIUM: httpclient: Rework CLI I/O handler to handle full buffer cases
557 - MEDIUM: httpclient: Don't close CLI applet at the end of a response
558 - MEDIUM: http-ana: Always report rewrite failures as PRXCOND in logs
559 - CLEANUP: Re-apply xalloc_size.cocci (2)
560 - REGTESTS: abortonclose: Add a barrier to not mix up log messages
561 - REGTESTS: http_request_buffer: Increase client timeout to wait "slow" clients
562 - CLEANUP: ssl_ckch: Use corresponding enum for commit_cacrlfile_ctx.cafile_type
563 - MINOR: ssl_ckch: Simplify I/O handler to commit changes on CA/CRL entry
564 - BUG/MINOR: ssl_ckch: Use right type for old entry in show_crlfile_ctx
565 - BUG/MINOR: ssl_ckch: Dump CRL transaction only once if show command yield
566 - BUG/MINOR: ssl_ckch: Dump CA transaction only once if show command yield
567 - BUG/MINOR: ssl_ckch: Dump cert transaction only once if show command yield
568 - BUG/MINOR: ssl_ckch: Init right field when parsing "commit ssl crl-file" cmd
569 - CLEANUP: ssl_ckch: Remove unused field in commit_cacrlfile_ctx structure
570 - MINOR: ssl_ckch: Simplify structure used to commit changes on CA/CRL entries
571 - MINOR: ssl_ckch: Remove service context for "set ssl cert" command
572 - MINOR: ssl_ckch: Remove service context for "set ssl ca-file" command
573 - MINOR: ssl_ckch: Remove service context for "set ssl crl-file" command
574 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cert I/O handler
575 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cafile I/O handler
576 - BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_crlfile I/O handler
577 - BUILD: ssl_ckch: Fix build error about a possible uninitialized value
578 - BUG/MINOR: ssl_ckch: Fix another possible uninitialized value
579 - REGTESTS: http_abortonclose: Extend supported versions
580 - REGTESTS: restrict_req_hdr_names: Extend supported versions
581 - MINOR: connection: support HTTP/3.0 for smp_*_http_major fetch
582 - MINOR: h3: add h3c pointer into h3s instance
583 - MINOR: mux-quic: simplify decode_qcs API
584 - MINOR: mux-quic/h3: adjust demuxing function return values
585 - BUG/MINOR: h3: fix return value on decode_qcs on error
586 - BUILD: quic: fix anonymous union for gcc-4.4
587 - BUILD: compiler: implement unreachable for older compilers too
588 - DEV: tcploop: reorder options in the usage message
589 - DEV: tcploop: make the current address the default address
590 - DEV: tcploop: make it possible to change the target address of a connect()
591 - DEV: tcploop: factor out the socket creation
592 - DEV: tcploop: permit port 0 to ease handling of default options
593 - DEV: tcploop: add a new "bind" command to bind to ip/port.
594 - DEV: tcploop: add minimal UDP support
595 - BUG/MINOR: trace: Test server existence for health-checks to get proxy
596 - BUG/MINOR: checks: Properly handle email alerts in trace messages
597 - BUG/MEDIUM: mailers: Set the object type for check attached to an email alert
598 - REGTESTS: healthcheckmail: Update the test to be functionnal again
599 - REGTESTS: healthcheckmail: Relax health-check failure condition
600 - BUG/MINOR: h3: fix incorrect BUG_ON assert on SETTINGS parsing
601 - MEDIUM: mux-h2: try to coalesce outgoing WINDOW_UPDATE frames
602 - OPTIM: mux-h2: increase h2_settings_initial_window_size default to 64k
603 - BUG/MINOR: h3: fix frame type definition
604 - BUG/MEDIUM: h3: fix SETTINGS parsing
605 - BUG/MINOR: cli/stats: add missing trailing LF after JSON outputs
606 - BUG/MINOR: server: do not enable DNS resolution on disabled proxies
607 - BUG/MINOR: cli/stats: add missing trailing LF after "show info json"
608 - DOC: design: update the notes on thread groups
609 - BUG/MEDIUM: mux-quic: fix flow control connection Tx level
610 - MINOR: mux-quic: complete BUG_ON on TX flow-control enforcing
611 - BUG/MINOR: mux-quic: fix memleak on frames rejected by transport
612 - BUG/MINOR: tcp-rules: Make action call final on read error and delay expiration
613 - CLEANUP: check: Remove useless tests on check's stream-connector
614 - BUG/MEDIUM: stconn: Don't wakeup applet for send if it won't consume data
615 - BUG/MEDIUM: cli: Notify cli applet won't consume data during request processing
616 - BUG/MEDIUM: mux-quic: fix segfault on flow-control frame cleanup
617 - MINOR: task: move profiling bit to per-thread
618 - CLEANUP: quic: use task_new_on() for single-threaded tasks
619 - MINOR: tinfo: remove the global thread ID bit (tid_bit)
620 - CLEANUP: hlua: check for at least 2 threads on a task
621 - MINOR: thread: get rid of MAX_THREADS_MASK
622 - OPTIM: task: do not consult shared WQ when we're already full
623 - DOC: design: update the task vs thread affinity requirements
624 - MINOR: qpack: add comments and remove a useless trace
625 - MINOR: qpack: reduce dependencies on other modules
626 - BUG/MINOR: qpack: support header litteral name decoding
627 - MINOR: qpack: add ABORT_NOW on unimplemented decoding
628 - BUG/MINOR: h3/qpack: deal with too many headers
629 - MINOR: qpack: improve decoding function
630 - MINOR: qpack: implement standalone decoder tool
631 - BUG/BUILD: h3: fix wrong label name
632 - BUG/MINOR: quic: Stop hardcoding Retry packet Version field
633 - MINOR: quic: Add several nonce and key definitions for Retry tag
634 - BUG/MINOR: quic: Wrong PTO calculation
635 - MINOR: quic: Parse long packet version from qc_parse_hd_form()
636 - CLEANUP: quid: QUIC draft-28 no more supported
637 - MEDIUM: quic: Add QUIC v2 draft support
638 - MINOR: quic: Released QUIC TLS extension for QUIC v2 draft
639 - MEDIUM: quic: Compatible version negotiation implementation (draft-08)
640 - CLEANUP: quic: Remove any reference to boringssl
641 - BUG/MINOR: task: fix thread assignment in tasklet_kill()
642 - BUG/MEDIUM: stream: Properly handle destructive client connection upgrades
643 - MINOR: stream: Rely on stconn flags to abort stream destructive upgrade
644 - CLEANUP: stconn: Don't expect to have no sedesc on detach
645 - BUG/MINOR: log: Properly test connection retries to fix dontlog-normal option
646 - MINOR: hlua: don't dump empty entries in hlua_traceback()
647 - MINOR: hlua: add a new hlua_show_current_location() function
648 - MEDIUM: debug: add a tainted flag when a shared library is loaded
649 - MEDIUM: debug: detect redefinition of symbols upon dlopen()
650 - BUILD: quic: Wrong HKDF label constant variable initializations
651 - BUG/MINOR: quic: Unexpected half open connection counter wrapping
652 - BUG/MINOR: quic_stats: Duplicate "quic_streams_data_blocked_bidi" field name
653 - BUG/MINOR: quic: purge conn Rx packet list on release
654 - BUG/MINOR: quic: free rejected Rx packets
655 - BUG/MINOR: qpack: abort on dynamic index field line decoding
656 - BUG/MEDIUM: ssl/cli: crash when crt inserted into a crt-list
657 - REGTESTS: ssl: add the same cert for client/server
658 - BUG/MINOR: quic: Acknowledgement must be forced during handshake
659 - MINOR: quic: Dump version_information transport parameter
660 - BUG/MEDIUM: mworker: use default maxconn in wait mode
661 - MINOR: intops: add a function to return a valid bit position from a mask
662 - TESTS: add a unit test for one_among_mask()
663 - BUILD: ssl_ckch: fix "maybe-uninitialized" build error on gcc-9.4 + ARM
664 - BUG/MINOR: ssl: Do not look for key in extra files if already in pem
665 - BUG/MINOR: quic: Missing acknowledgments for trailing packets
666 - BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created
667 - BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch
668 - MINOR: freq_ctr: Add a function to get events excess over the current period
669 - BUG/MINOR: stream: only free the req/res captures when set
670 - CLEANUP: pool/tree-wide: remove suffix "_pool" from certain pool names
671 - MEDIUM: debug: improve DEBUG_MEM_STATS to also report pool alloc/free
672 - BUG/MINOR: quic: Wrong reuse of fulfilled dgram RX buffer
673 - BUG/MAJOR: quic: Big RX dgrams leak when fulfilling a buffer
674 - BUG/MAJOR: quic: Big RX dgrams leak with POST requests
675 - BUILD: quic+h3: 32-bit compilation errors fixes
676 - MEDIUM: bwlim: Add support of bandwith limitation at the stream level
677
Willy Tarreau29698e32022-05-31 17:05:27 +02006782022/05/31 : 2.7-dev0
679 - MINOR: version: it's development again
680
Willy Tarreaua1efc042022-05-31 16:58:21 +02006812022/05/31 : 2.6.0
682 - DOC: Fix formatting in configuration.txt to fix dconv
683 - CLEANUP: tcpcheck: Remove useless test on the stream-connector in tcpcheck_main
684 - CLEANUP: muxes: Consider stream's sd as defined in .show_fd callback functions
685 - MINOR: quic: Ignore out of packet padding.
686 - CLEANUP: quic: Useless QUIC_CONN_TX_BUF_SZ definition
687 - CLEANUP: quic: No more used handshake output buffer
688 - MINOR: quic: QUIC transport parameters split.
689 - MINOR: quic: Transport parameters dump
690 - DOC: quic: Update documentation for QUIC Retry
691 - MINOR: quic: Tunable "max_idle_timeout" transport parameter
692 - MINOR: quic: Tunable "initial_max_streams_bidi" transport parameter
693 - MINOR: quic: Clarifications about transport parameters value
694 - MINOIR: quic_stats: add QUIC connection errors counters
695 - BUG/MINOR: quic: Largest RX packet numbers mixing
696 - MINOR: quic_stats: Add transport new counters (lost, stateless reset, drop)
697 - DOC: quic: Documentation update for QUIC
698 - MINOR: quic: Connection TX buffer setting renaming.
699 - MINOR: h3: Add a statistics module for h3
700 - MINOR: quic: Send STOP_SENDING frames if mux is released
701 - MINOR: quic: Do not drop packets with RESET_STREAM frames
702 - BUG/MINOR: qpack: fix buffer API usage on prefix integer encoding
703 - BUG/MINOR: qpack: support bigger prefix-integer encoding
704 - BUG/MINOR: h3: do not report bug on unknown method
705 - SCRIPTS: add make-releases-json to recreate a releases.json file in download dirs
706 - SCRIPTS: make publish-release try to launch make-releases-json
707 - MINOR: htx: add an unchecked version of htx_get_head_blk()
708 - BUILD: htx: use the unchecked version of htx_get_head_blk() where needed
709 - BUILD: quic: use inttypes.h instead of stdint.h
710 - DOC: internal: remove totally outdated diagrams
711 - DOC: remove the outdated ROADMAP file
712 - DOC: add maintainers for QUIC and HTTP/3
713 - MINOR: h3: define h3 trace module
714 - MINOR: h3: add traces on frame recv
715 - MINOR: h3: add traces on frame send
716 - MINOR: h3: add traces on h3s init/end
717 - EXAMPLES: remove completely outdated acl-content-sw.cfg
718 - BUILD: makefile: reorder objects by build time
719 - DOC: fix a few spelling mistakes in the docs
720 - BUG/MEDIUM: peers/cli: fix "show peers" crash
721 - CLEANUP: peers/cli: stop misusing the appctx local variable
722 - CLEANUP: peers/cli: make peers_dump_peer() take an appctx instead of an stconn
723 - BUG/MINOR: peers: set the proxy's name to the peers section name
724 - MINOR: server: indicate when no address was expected for a server
725 - BUG/MINOR: peers: detect and warn on init_addr/resolvers/check/agent-check
726 - DOC: peers: indicate that some server settings are not usable
727 - DOC: peers: clarify when entry expiration date is renewed.
728 - DOC: peers: fix port number and addresses on new peers section format
729 - DOC: gpc/gpt: add commments of gpc/gpt array definitions on stick tables.
730 - DOC: install: update supported OpenSSL versions in the INSTALL doc
731 - MINOR: ncbuf: adjust ncb_data with NCBUF_NULL
732 - BUG/MINOR: h3: fix frame demuxing
733 - BUG/MEDIUM: h3: fix H3_EXCESSIVE_LOAD when receiving H3 frame header only
734 - BUG/MINOR: quic: Fix QUIC_EV_CONN_PRSAFRM event traces
735 - CLEANUP: quic: remove useless check on local UNI stream reception
736 - BUG/MINOR: qpack: do not consider empty enc/dec stream as error
737 - DOC: intro: adjust the numbering of paragrams to keep the output ordered
738 - MINOR: version: mention that it's LTS now.
739
Willy Tarreau0edb9972022-05-27 19:49:31 +02007402022/05/27 : 2.6-dev12
741 - CLEANUP: tools: Clean up non-QUIC error message handling in str2sa_range()
742 - BUG/MEDIUM: tools: Fix `inet_ntop` usage in sa2str
743 - CLEANUP: tools: Crash if inet_ntop fails due to ENOSPC in sa2str
744 - BUG/MEDIUM: mux-quic: adjust buggy proxy closing support
745 - Revert "MINOR: quic: activate QUIC traces at compilation"
746 - Revert "MINOR: mux-quic: activate qmux traces on stdout via macro"
747 - CLEANUP: init: address a coverity warning about possible multiply overflow
748 - BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols
749 - MEDIUM: h1: enlarge the scope of accepted version chars with accept-invalid-http-request
750 - BUG/MEDIUM: resolvers: Don't defer resolutions release in deinit function
751 - BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections
752 - BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section
753 - BUG/MINOR: task: Don't defer tasks release when HAProxy is stopping
754 - MINOR: h3: mark ncbuf as const on h3_b_dup
755 - MINOR: mux-quic: do not alloc quic_stream_desc for uni remote stream
756 - MINOR: mux-quic: delay cs_endpoint allocation
757 - MINOR: mux-quic: add traces in qc_recv()
758 - MINOR: mux-quic: adjust return value of decode_qcs
759 - CLEANUP: h3: rename struct h3 -> h3c
760 - CLEANUP: h3: rename uni stream type constants
761 - BUG/MINOR: h3: prevent overflow when parsing SETTINGS
762 - MINOR: h3: refactor h3_control_send()
763 - MINOR: quic: support CONNECTION_CLOSE_APP emission
764 - MINOR: mux-quic: disable read on CONNECTION_CLOSE emission
765 - MINOR: h3: reject too big frames
766 - MINOR: mux-quic: emit STREAM_STATE_ERROR in qcc_recv
767 - BUG/MINOR: mux-quic: refactor uni streams TX/send H3 SETTINGS
768 - MINOR: h3/qpack: use qcs as type in decode callbacks
769 - MINOR: h3: define stream type
770 - MINOR: h3: refactor uni streams initialization
771 - MINOR: h3: check if frame is valid for stream type
772 - MINOR: h3: define non-h3 generic parsing function
773 - MEDIUM: quic: refactor uni streams RX
774 - CLEANUP: h3: remove h3 uni tasklet
775 - MINOR: h3: abort read on unknown uni stream
776 - MINOR: h3: refactor SETTINGS parsing/error reporting
777 - Revert "BUG/MINOR: task: Don't defer tasks release when HAProxy is stopping"
778 - DOC: configuration: add a warning for @system-ca on bind
779 - CLEANUP: init: address another coverity warning about a possible multiply overflow
780 - BUG/MINOR: ssl/lua: use correctly cert_ext in CertCache.set()
781 - BUG/MEDIUM: sample: Fix adjusting size in word converter
782 - REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+ (2)
783 - CLEANUP: conn_stream: remove unneeded exclusion of RX_WAIT_EP from RXBLK_ANY
784 - CLEANUP: conn_stream: rename the cs_endpoint's context to "conn"
785 - MINOR: conn_stream: add new sets of functions to set/get endpoint flags
786 - DEV: coccinelle: add cs_endp_flags.cocci
787 - CLEANUP: conn_stream: apply cs_endp_flags.cocci tree-wide
788 - DEV: coccinelle: add endp_flags.cocci
789 - CLEANUP: conn_stream: apply endp_flags.cocci tree-wide
790 - CLEANUP: conn_stream: rename the stream endpoint flags CS_EP_* to SE_FL_*
791 - CLEANUP: conn_stream: rename the cs_endpoint's target to "se"
792 - CLEANUP: conn_stream: rename cs_endpoint to sedesc (stream endpoint descriptor)
793 - CLEANUP: applet: rename the sedesc pointer from "endp" to "sedesc"
794 - CLEANUP: conn_stream: rename the conn_stream's endp to sedesc
795 - CLEANUP: conn_stream: rename cs_app_* to sc_app_*
796 - CLEANUP: conn_stream: tree-wide rename to stconn (stream connector)
797 - CLEANUP: mux-h1: add and use h1s_sc() to retrieve the stream connector
798 - CLEANUP: mux-h2: add and use h2s_sc() to retrieve the stream connector
799 - CLEANUP: mux-fcgi: add and use fcgi_strm_sc() to retrieve the stream connector
800 - CLEANUP: mux-pt: add and use pt_sc() to retrieve the stream connector
801 - CLEANUP: stdesc: rename the stream connector ->cs field to ->sc
802 - CLEANUP: stream: rename "csf" and "csb" to "scf" and "scb"
803 - CLEANUP: stconn: tree-wide rename stream connector flags CS_FL_* to SC_FL_*
804 - CLEANUP: stconn: tree-wide rename stconn states CS_ST/SB_* to SC_ST/SB_*
805 - MINOR: check: export wake_srv_chk()
806 - MINOR: conn_stream: test the various ops functions before calling them
807 - MEDIUM: stconn: merge the app_ops and the data_cb fields
808 - MINOR: applet: add new wrappers to put chk/blk/str/chr to channel from appctx
809 - CLEANUP: applet: use applet_put*() everywhere possible
810 - CLEANUP: stconn: rename cs_{i,o}{b,c} to sc_{i,o}{b,c}
811 - CLEANUP: stconn: rename cs_{check,strm,strm_task} to sc_strm_*
812 - CLEANUP: stconn: rename cs_conn() to sc_conn()
813 - CLEANUP: stconn: rename cs_mux() to sc_mux_strm()
814 - CLEANUP: stconn: rename cs_conn_mux() to sc_mux_ops()
815 - CLEANUP: stconn: rename cs_appctx() to sc_appctx()
816 - CLEANUP: stconn: rename __cs_endp_target() to __sc_endp()
817 - CLEANUP: stconn: rename cs_get_data_name() to sc_get_data_name()
818 - CLEANUP: stconn: rename cs_conn_*() to sc_conn_*()
819 - CLEANUP: stconn: rename cs_conn_get_first() to conn_get_first_sc()
820 - CLEANUP: stconn: rename cs_ep_set_error() to se_fl_set_error()
821 - CLEANUP: stconn: make a few functions take a const argument
822 - CLEANUP: stconn: use a single function to know if SC may send to SE
823 - MINOR: stconn: consider CF_SHUTW for sc_is_send_allowed()
824 - MINOR: stconn: remove calls to cs_done_get()
825 - MEDIUM: stconn: always rely on CF_SHUTR in addition to cs_rx_blocked()
826 - MEDIUM: stconn: remove SE_FL_RXBLK_SHUT
827 - MINOR: stconn: rename SE_FL_RXBLK_CONN to SE_FL_APPLET_NEED_CONN
828 - MEDIUM: stconn: take SE_FL_APPLET_NEED_CONN out of the RXBLK_ANY flags
829 - CLEANUP: stconn: rename cs_rx_room_{blk,rdy} to sc_{need,have}_room()
830 - CLEANUP: stconn: rename cs_rx_chan_{blk,rdy} to sc_{wont,will}_read()
831 - CLEANUP: stconn: rename cs_rx_buff_{blk,rdy} to sc_{need,have}_buff()
832 - MINOR: stconn: start to rename cs_rx_endp_{more,done}() to se_have_{no_,}more_data()
833 - MINOR: stconn: add sc_is_recv_allowed() to check for ability to receive
834 - CLEANUP: stconn: rename SE_FL_RX_WAIT_EP to SE_FL_HAVE_NO_DATA
835 - MEDIUM: stconn: move the RXBLK flags to the stream connector
836 - CLEANUP: stconn: rename SE_FL_WANT_GET to SE_FL_WILL_CONSUME
837 - CLEANUP: stconn: remove cs_tx_blocked() and cs_tx_endp_ready()
838 - CLEANUP: stconn: rename cs_{want,stop}_get() to se_{will,wont}_consume()
839 - CLEANUP: stconn: rename cs_cant_get() to se_need_more_data()
840 - CLEANUP: stconn: rename cs_{new,create,free,destroy}_* to sc_*
841 - CLEANUP: stconn: rename remaining management functions from cs_* to sc_*
842 - CLEANUP: stconn: rename cs{,_get}_{src,dst} to sc_*
843 - CLEANUP: stconn: rename cs_{shut,chk}* to sc_*
844 - CLEANUP: stconn: rename final state manipulation functions from cs_* to sc_*
845 - CLEANUP: quic: drop the name "conn_stream" from the pool variable names
846 - REORG: rename cs_utils.h to sc_strm.h
847 - REORG: stconn: rename conn_stream.{c,h} to stconn.{c,h}
848 - CLEANUP: muxes: rename "get_first_cs" to "get_first_sc"
849 - DEV: flags: use "sc" for stream conns instead of "cs"
850 - CLEANUP: check: rename all occurrences of stconn "cs" to "sc"
851 - CLEANUP: connection: rename all occurrences of stconn "cs" to "sc"
852 - CLEANUP: stconn: rename all occurrences of stconn "cs" to "sc"
853 - CLEANUP: quic/h3: rename all occurrences of stconn "cs" to "sc"
854 - CLEANUP: stream: rename all occurrences of stconn "cs" to "sc"
855 - CLEANUP: promex: rename all occurrences of stconn "cs" to "sc"
856 - CLEANUP: stats: rename all occurrences of stconn "cs" to "sc"
857 - CLEANUP: cli: rename all occurrences of stconn "cs" to "sc"
858 - CLEANUP: applet: rename all occurrences of stconn "cs" to "sc"
859 - CLEANUP: cache: rename all occurrences of stconn "cs" to "sc"
860 - CLEANUP: dns: rename all occurrences of stconn "cs" to "sc"
861 - CLEANUP: spoe: rename all occurrences of stconn "cs" to "sc"
862 - CLEANUP: hlua: rename all occurrences of stconn "cs" to "sc"
863 - CLEANUP: log-forward: rename all occurrences of stconn "cs" to "sc"
864 - CLEANUP: http-client: rename all occurrences of stconn "cs" to "sc"
865 - CLEANUP: mux-fcgi: rename all occurrences of stconn "cs" to "sc"
866 - CLEANUP: mux-h1: rename all occurrences of stconn "cs" to "sc"
867 - CLEANUP: mux-h2: rename all occurrences of stconn "cs" to "sc"
868 - CLEANUP: mux-pt: rename all occurrences of stconn "cs" to "sc"
869 - CLEANUP: peers: rename all occurrences of stconn "cs" to "sc"
870 - CLEANUP: sink: rename all occurrences of stconn "cs" to "sc"
871 - CLEANUP: sslsock: remove only occurrence of local variable "cs"
872 - CLEANUP: applet: rename appctx_cs() to appctx_sc()
873 - CLEANUP: stream: rename stream_upgrade_from_cs() to stream_upgrade_from_sc()
874 - CLEANUP: obj_type: rename OBJ_TYPE_CS to OBJ_TYPE_SC
875 - CLEANUP: stconn: replace a few remaining occurrences of CS in comments or traces
876 - DOC: internal: update the muxes doc to mention the stconn
877 - CLEANUP: mux-quic: rename the "endp" field to "sd"
878 - CLEANUP: mux-h1: rename the "endp" field to "sd"
879 - CLEANUP: mux-h2: rename the "endp" field to "sd"
880 - CLEANUP: mux-fcgi: rename the "endp" field to "sd"
881 - CLEANUP: mux-pt: rename the "endp" field to "sd"
882 - CLEANUP: stconn: rename a few "endp" arguments and variables to "sd"
883 - MINOR: stconn: turn SE_FL_WILL_CONSUME to SE_FL_WONT_CONSUME
884 - CLEANUP: stream: remove unneeded test on appctx during initialization
885 - CLEANUP: stconn: remove the new unneeded SE_FL_APP_MASK
886 - DEV: flags: fix "siet" shortcut name
887 - DEV: flags: rename the "endp" shortcut to "sd" for "stream descriptor"
888 - DEV: flags: reorder a few SC/SE flags
889 - DOC: internal: add a description of the stream connectors and descriptors
890
Willy Tarreau137c8fd2022-05-20 23:31:51 +02008912022/05/20 : 2.6-dev11
892 - CI: determine actual LibreSSL version dynamically
893 - BUG/MEDIUM: ncbuf: fix null buffer usage
894 - MINOR: ncbuf: fix warnings for testing build
895 - MEDIUM: http-ana: Add a proxy option to restrict chars in request header names
896 - MEDIUM: ssl: Delay random generator initialization after config parsing
897 - MINOR: ssl: Add 'ssl-propquery' global option
898 - MINOR: ssl: Add 'ssl-provider' global option
899 - CLEANUP: Add missing header to ssl_utils.c
900 - CLEANUP: Add missing header to hlua_fcn.c
901 - CLEANUP: Remove unused function hlua_get_top_error_string
902 - BUILD: fix build warning on solaris based systems with __maybe_unused.
903 - MINOR: tools: add get_exec_path implementation for solaris based systems.
904 - BUG/MINOR: ssl: Fix crash when no private key is found in pem
905 - CLEANUP: conn-stream: Remove cs_applet_shut declaration from header file
906 - MINOR: applet: Prepare appctx to own the session on frontend side
907 - MINOR: applet: Let the frontend appctx release the session
908 - MINOR: applet: Change return value for .init callback function
909 - MINOR: stream: Export stream_free()
910 - MINOR: applet: Add appctx_init() helper fnuction
911 - MINOR: applet: Add a function to finalize frontend appctx startup
912 - MINOR: applet: Add function to release appctx on error during init stage
913 - MEDIUM: dns: Refactor dns appctx creation
914 - MEDIUM: spoe: Refactor SPOE appctx creation
915 - MEDIUM: lua: Refactor cosocket appctx creation
916 - MEDIUM: httpclient: Refactor http-client appctx creation
917 - MINOR: sink: Add a ref to sink in the sink_forward_target structure
918 - MEDIUM: sink: Refactor sink forwarder appctx creation
919 - MINOR: peers: Add a ref to peers section in the peer structure
920 - MEDIUM: peers: Refactor peer appctx creation
921 - MINOR: applet: Add API to start applet on a thread subset
922 - MEDIUM: applet: Add support for async appctx startup on a thread subset
923 - MINOR: peers: Track number of applets run by thread
924 - MEDIUM: peers: Balance applets across threads
925 - MINOR: conn-stream/applet: Stop setting appctx as the endpoint context
926 - CLEANUP: proxy: Remove dead code when parsing "http-restrict-req-hdr-names" option
927 - REGTESTS: abortonclose: Fix some race conditions
928 - MINOR: ssl: Add 'ssl-provider-path' global option
929 - CLEANUP: http_ana: Make use of the return value of stream_generate_unique_id()
930 - BUG/MINOR: spoe: Fix error handling in spoe_init_appctx()
931 - CLEANUP: peers: Remove unreachable code in peer_session_create()
932 - CLEANUP: httpclient: Remove useless test on ss_dst in httpclient_applet_init()
933 - BUG/MEDIUM: quic: fix Rx buffering
934 - OPTIM: quic: realign empty Rx buffer
935 - BUG/MINOR: ncbuf: fix ncb_is_empty()
936 - MINOR: ncbuf: refactor ncb_advance()
937 - BUG/MINOR: mux-quic: update session's idle delay before stream creation
938 - MINOR: h3: do not wait a complete frame for demuxing
939 - MINOR: h3: flag demux as full on HTX full
940 - MEDIUM: mux-quic: implement recv on io-cb
941 - MINOR: mux-quic: remove qcc_decode_qcs() call in XPRT
942 - MINOR: mux-quic: reorganize flow-control frames emission
943 - MINOR: mux-quic: implement MAX_STREAM_DATA emission
944 - MINOR: mux-quic: implement MAX_DATA emission
945 - BUG/MINOR: mux-quic: support nul buffer with qc_free_ncbuf()
946 - MINOR: mux-quic: free RX buf if empty
947 - BUG/MEDIUM: config: Reset outline buffer size on realloc error in readcfgfile()
948 - BUG/MINOR: check: Reinit the buffer wait list at the end of a check
949 - MEDIUM: check: No longer shutdown the connection in .wake callback function
950 - REORG: check: Rename and export I/O callback function
951 - MEDIUM: check: Use the CS to handle subscriptions for read/write events
952 - BUG/MINOR: quic: break for error on sendto
953 - MINOR: quic: abort on unlisted errno on sendto()
954 - MINOR: quic: detect EBADF on sendto()
955 - BUG/MEDIUM: quic: fix initialization for local/remote TPs
956 - CLEANUP: quic: adjust comment/coding style for TPs init
957 - BUG/MINOR: cfgparse: abort earlier in case of allocation error
958 - MINOR: quic: Dump initial derived secrets
959 - MINOR: quic_tls: Add quic_tls_derive_retry_token_secret()
960 - MINOR: quic_tls: Add quic_tls_decrypt2() implementation
961 - MINOR: quic: Retry implementation
962 - MINOR: cfgparse: Update for "cluster-secret" keyword for QUIC Retry
963 - MINOR: quic: Move quic_lstnr_dgram_dispatch() out of xprt_quic.c
964 - BUILD: stats: Missing headers inclusions from stats.h
965 - MINOR: quic_stats: Add a new stats module for QUIC
966 - MINOR: quic: Attach proxy QUIC stats counters to the QUIC connection
967 - BUG/MINOR: quic: Fix potential memory leak during QUIC connection allocations
968 - MINOR: quic: QUIC stats counters handling
969 - MINOR: quic: Add tune.quic.retry-threshold keyword
970 - MINOR: quic: Dynamic Retry implementation
971 - MINOR: quic/mux-quic: define CONNECTION_CLOSE send API
972 - MINOR: mux-quic: emit FLOW_CONTROL_ERROR
973 - MINOR: mux-quic: emit STREAM_LIMIT_ERROR
974 - MINOR: mux-quic: close connection on error if different data at offset
975 - BUG/MINOR: peers: fix error reporting of "bind" lines
976 - CLEANUP: config: improve address parser error report for unmatched protocols
977 - CLEANUP: config: provide cleare hints about unsupported QUIC addresses
978 - MINOR: protocol: replace ctrl_type with xprt_type and clarify it
979 - MINOR: listener: provide a function to process all of a bind_conf's arguments
980 - MINOR: config: use the new bind_parse_args_list() to parse a "bind" line
981 - CLEANUP: listener: add a comment about what the BC_SSL_O_* flags are for
982 - MINOR: listener: add a new "options" entry in bind_conf
983 - CLEANUP: listener: replace all uses of bind_conf->is_ssl with BC_O_USE_SSL
984 - CLEANUP: listener: replace bind_conf->generate_cers with BC_O_GENERATE_CERTS
985 - CLEANUP: listener: replace bind_conf->quic_force_retry with BC_O_QUIC_FORCE_RETRY
986 - CLEANUP: listener: store stream vs dgram at the bind_conf level
987 - MINOR: listener: detect stream vs dgram conflict during parsing
988 - MINOR: listener: set the QUIC xprt layer immediately after parsing the args
989 - MINOR: listener/ssl: set the SSL xprt layer only once the whole config is known
990 - MINOR: connection: add flag MX_FL_FRAMED to mark muxes relying on framed xprt
991 - MINOR: config: detect and report mux and transport incompatibilities
992 - MINOR: listener: automatically select a QUIC mux with a QUIC transport
993 - MINOR: listener: automatically enable SSL if a QUIC transport is found
994 - BUG/MINOR: quic: Fixe a typo in qc_idle_timer_task()
995 - BUG/MINOR: quic: Missing <conn_opening> stats counter decrementation
996 - BUILD/MINOR: cpuset fix build for FreeBSD 13.1
997 - CI: determine actual OpenSSL version dynamically
998
Willy Tarreau37033252022-05-14 16:05:50 +02009992022/05/14 : 2.6-dev10
1000 - MINOR: ssl: ignore dotfiles when loading a dir w/ ca-file
1001 - MEDIUM: ssl: ignore dotfiles when loading a dir w/ crt
1002 - BUG/MINOR: ssl: Fix typos in crl-file related CLI commands
1003 - MINOR: compiler: add a new macro to set an attribute on an enum when possible
1004 - BUILD: stats: conditionally mark obsolete stats states as deprecated
1005 - BUILD: ssl: work around bogus warning in gcc 12's -Wformat-truncation
1006 - BUILD: debug: work around gcc-12 excessive -Warray-bounds warnings
1007 - BUILD: listener: shut report of possible null-deref in listener_accept()
1008 - BUG/MEDIUM: ssl: fix the gcc-12 broken fix :-(
1009 - DOC: install: update gcc version requirements
1010 - BUILD: makefile: add -Wfatal-errors to the default flags
1011 - BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).
1012 - BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket
1013 - BUG/MINOR: mux-h2: mark the stream as open before processing it not after
1014 - MINOR: mux-h2: report a trace event when failing to create a new stream
1015 - DOC: configuration: add the httpclient keywords to the global keywords index
1016 - MINOR: quic: Add a debug counter for sendto() errors
1017 - BUG/MINOR: quic: Dropped peer transport parameters
1018 - BUG/MINOR: quic: Wrong unit for ack delay for incoming ACK frames
1019 - MINOR: quic: Congestion controller event trace fix (loss)
1020 - MINOR: quic: Add correct ack delay values to ACK frames
1021 - MINOR: config: Add "cluster-secret" new global keyword
1022 - MINOR: quic-tls: Add quic_hkdf_extract_and_expand() for HKDF
1023 - MINOR: quic: new_quic_cid() code moving
1024 - MINOR: quic: Initialize stateless reset tokens with HKDF secrets
1025 - MINOR: qc_new_conn() rework for stateless reset
1026 - MINOR: quic: Stateless reset token copy to transport parameters
1027 - MINOR: quic: Send stateless reset tokens
1028 - MINOR: quic: Short packets always embed a trailing AEAD TAG
1029 - CLEANUP: quic: wrong use of eb*entry() macro
1030 - CLEANUP: quic: Useless use of pointer for quic_hkdf_extract()
1031 - CLEANUP: quic_tls: QUIC_TLS_IV_LEN defined two times
1032 - MINOR: ncbuf: define non-contiguous buffer
1033 - MINOR: ncbuf: complete API and define block interal abstraction
1034 - MINOR: ncbuf: optimize storage for the last gap
1035 - MINOR: ncbuf: implement insertion
1036 - MINOR: ncbuf: define various insertion modes
1037 - MINOR: ncbuf: implement advance
1038 - MINOR: ncbuf: write unit tests
1039 - BUG/MEDIUM: lua: fix argument handling in data removal functions
1040 - DOC/MINOR: fix typos in the lua-api document
1041 - BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized
1042 - MINOR: mux-h1: Add global option accpet payload for any HTTP/1.0 requests
1043 - CLEANUP: mux-h1: Fix comments and error messages for global options
1044 - MINOR: conn_stream: make cs_set_error() work on the endpoint instead
1045 - CLEANUP: mux-h1: always take the endp from the h1s not the cs
1046 - CLEANUP: mux-h2: always take the endp from the h2s not the cs
1047 - CLEANUP: mux-pt: always take the endp from the context not the cs
1048 - CLEANUP: mux-fcgi: always take the endp from the fstrm not the cs
1049 - CLEANUP: mux-quic: always take the endp from the qcs not the cs
1050 - CLEANUP: applet: use the appctx's endp instead of cs->endp
1051 - MINOR: conn_stream: add a pointer back to the cs from the endpoint
1052 - MINOR: mux-h1: remove the now unneeded h1s->cs
1053 - MINOR: mux-h2: make sure any h2s always has an endpoint
1054 - MINOR: mux-h2: remove the now unneeded conn_stream from the h2s
1055 - MINOR: mux-fcgi: make sure any stream always has an endpoint
1056 - MINOR: mux-fcgi: remove the now unneeded conn_stream from the fcgi_strm
1057 - MINOR: mux-quic: remove the now unneeded conn_stream from the qcs
1058 - MINOR: mux-pt: remove the now unneeded conn_stream from the context
1059 - CLEANUP: muxes: make mux->attach/detach take a conn_stream endpoint
1060 - MINOR: applet: replace cs_applet_shut() with appctx_shut()
1061 - MINOR: applet: add appctx_strm() and appctx_cs() to access common fields
1062 - CLEANUP: applet: remove the unneeded appctx->owner
1063 - CLEANUP: conn_stream: merge cs_new_from_{mux,applet} into cs_new_from_endp()
1064 - MINOR: ext-check: indicate the transport and protocol of a server
1065 - BUG/MEDIUM: mux-quic: fix a thinko in the latest cs/endpoint cleanup
1066 - MINOR: tools: improve error message accuracy in str2sa_range
1067 - MINOR: config: make sure never to mix dgram and stream protocols on a bind line
1068 - BUG/MINOR: ncbuf: fix coverity warning on uninit sz_data
1069 - MINOR: xprt_quic: adjust flow-control according to bufsize
1070 - MEDIUM: mux-quic/h3/hq-interop: use ncbuf for bidir streams
1071 - MEDIUM: mux-quic/h3/qpack: use ncbuf for uni streams
1072 - CLEANUP: mux-quic: remove unused fields for Rx
1073 - CLEANUP: quic: remove unused quic_rx_strm_frm
1074
Willy Tarreaue9797962022-05-08 11:44:15 +020010752022/05/08 : 2.6-dev9
1076 - MINOR: mux-quic: support full request channel buffer
1077 - BUG/MINOR: h3: fix parsing of unknown frame type with null length
1078 - CLEANUP: backend: make alloc_{bind,dst}_address() idempotent
1079 - MEDIUM: stream: remove the confusing SF_ADDR_SET flag
1080 - MINOR: conn_stream: remove the now unused CS_FL_ADDR_*_SET flags
1081 - CLEANUP: protocol: make sure the connect_* functions always receive a dst
1082 - MINOR: connection: get rid of the CO_FL_ADDR_*_SET flags
1083 - MINOR: session: get rid of the now unused SESS_FL_ADDR_*_SET flags
1084 - CLEANUP: mux: Useless xprt_quic-t.h inclusion
1085 - MINOR: quic: Make the quic_conn be aware of the number of streams
1086 - BUG/MINOR: quic: Dropped retransmitted STREAM frames
1087 - BUG/MINOR: mux_quic: Dropped packet upon retransmission for closed streams
1088 - MEDIUM: httpclient: remove url2sa to use a more flexible parser
1089 - MEDIUM: httpclient: http-request rules for resolving
1090 - MEDIUM: httpclient: allow address and port change for resolving
1091 - CLEANUP: httpclient: remove the comment about resolving
1092 - MINOR: httpclient: handle unix and other socket types in dst
1093 - MINOR: httpclient: rename dash by dot in global option
1094 - MINOR: init: exit() after pre-check upon error
1095 - MINOR: httpclient: cleanup the error handling in init
1096 - MEDIUM: httpclient: hard-error when SSL is configured
1097 - MINOR: httpclient: allow to configure the ca-file
1098 - MINOR: httpclient: configure the resolvers section to use
1099 - MINOR: httpclient: allow ipv4 or ipv6 preference for resolving
1100 - DOC: configuration: httpclient global option
1101 - MINOR: conn-stream: Add mask from flags set by endpoint or app layer
1102 - BUG/MEDIUM: conn-stream: Only keep app layer flags of the endpoint on reset
1103 - BUG/MEDIUM: mux-fcgi: Be sure to never set EOM flag on an empty HTX message
1104 - BUG/MEDIUM: mux-h1: Be able to handle trailers when C-L header was specified
1105 - DOC: config: Update doc for PR/PH session states to warn about rewrite failures
1106 - MINOR: resolvers: cleanup alert/warning in parse-resolve-conf
1107 - MINOR: resolvers: move the resolv.conf parser in parse_resolv_conf()
1108 - MINOR: resolvers: resolvers_new() create a resolvers with default values
1109 - BUILD: debug: unify the definition of ha_backtrace_to_stderr()
1110 - BUG/MINOR: tcp/http: release the expr of set-{src,dst}[-port]
1111 - MEDIUM: resolvers: create a "default" resolvers section at startup
1112 - DOC: resolvers: default resolvers section
1113 - BUG/MINOR: startup: usage() when no -cc arguments
1114 - BUG/MEDIUM: resolvers: make "show resolvers" properly yield
1115 - BUG/MEDIUM: cli: make "show cli sockets" really yield
1116 - BUG/MINOR: proxy/cli: don't enumerate internal proxies on "show backend"
1117 - BUG/MINOR: map/cli: protect the backref list during "show map" errors
1118 - BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init
1119 - BUG/MINOR: ssl/cli: fix "show ssl ca-file/crl-file" not to mix cli+ssl contexts
1120 - BUG/MINOR: ssl/cli: fix "show ssl ca-file <name>" not to mix cli+ssl contexts
1121 - BUG/MINOR: ssl/cli: fix "show ssl crl-file" not to mix cli+ssl contexts
1122 - BUG/MINOR: ssl/cli: fix "show ssl cert" not to mix cli+ssl contexts
1123 - CLEANUP: ssl/cli: do not loop on unknown states in "add ssl crt-list" handler
1124 - MINOR: applet: reserve some generic storage in the applet's context
1125 - CLEANUP: applet: make appctx_new() initialize the whole appctx
1126 - CLEANUP: stream/cli: take the "show sess" context definition out of the appctx
1127 - CLEANUP: stream/cli: stop using appctx->st2 for the dump state
1128 - CLEANUP: stream/cli: remove the unneeded init state from "show sess"
1129 - CLEANUP: stream/cli: remove the unneeded STATE_FIN state from "show sess"
1130 - CLEANUP: stream/cli: remove the now unneeded dump state from "show sess"
1131 - CLEANUP: proxy/cli: take the "show errors" context definition out of the appctx
1132 - CLEANUP: stick-table/cli: take the "show table" context definition out of the appctx
1133 - CLEANUP: stick-table/cli: stop using appctx->st2 for the dump state
1134 - CLEANUP: stick-table/cli: remove the unneeded STATE_INIT for "show table"
1135 - CLEANUP: map/cli: take the "show map" context definition out of the appctx
1136 - CLEANUP: map/cli: stop using cli.i0/i1 to store the generation numbers
1137 - CLEANUP: map/cli: stop using appctx->st2 for the dump state
1138 - CLEANUP: map/cli: always detach the backref from the list after "show map"
1139 - CLEANUP: peers/cli: take the "show peers" context definition out of the appctx
1140 - CLEANUP: peers/cli: stop using appctx->st2 for the dump state
1141 - CLEANUP: peers/cli: remove unneeded state STATE_INIT
1142 - CLEANUP: cli: initialize the whole appctx->ctx, not just the stats part
1143 - CLEANUP: promex: make the applet use its own context
1144 - CLEANUP: promex: stop using appctx->st2
1145 - CLEANUP: stats/cli: take the "show stat" context definition out of the appctx
1146 - CLEANUP: stats/cli: stop using appctx->st2
1147 - CLEANUP: hlua/cli: take the hlua_cli context definition out of the appctx
1148 - CLEANUP: ssl/cli: use a local context for "show cafile"
1149 - CLEANUP: ssl/cli: use a local context for "show crlfile"
1150 - CLEANUP: ssl/cli: use a local context for "show ssl cert"
1151 - CLEANUP: ssl/cli: use a local context for "commit ssl cert"
1152 - CLEANUP: ssl/cli: stop using appctx->st2 for "commit ssl cert"
1153 - CLEANUP: ssl/cli: use a local context for "set ssl cert"
1154 - CLEANUP: ssl/cli: use a local context for "set ssl cafile"
1155 - CLEANUP: ssl/cli: use a local context for "set ssl crlfile"
1156 - CLEANUP: ssl/cli: use a local context for "commit ssl {ca|crl}file"
1157 - CLEANUP: ssl/cli: stop using appctx->st2 for "commit ssl ca/crl"
1158 - CLEANUP: ssl/cli: stop using ctx.cli.i0/i1/p0 for "show tls-keys"
1159 - CLEANUP: ssl/cli: add a new "dump_entries" field to "show_keys_ref"
1160 - CLEANUP: ssl/cli: make "show tlskeys" not use appctx->st2 anymore
1161 - CLEANUP: ssl/cli: make "show ssl ocsp-response" not use cli.p0 anymore
1162 - CLEANUP: ssl/cli: make "{show|dump} ssl crtlist" use its own context
1163 - CLEANUP: ssl/cli: make "add ssl crtlist" use its own context
1164 - CLEANUP: ssl/cli: make "add ssl crtlist" not use st2 anymore
1165 - CLEANUP: dns: stop abusing the sink forwarder's context
1166 - CLEANUP: sink: use the generic context to store the forwarder's context
1167 - CLEANUP: activity/cli: make "show profiling" not use ctx.cli anymore
1168 - CLEANUP: debug/cli: make "debug dev fd" not use ctx.cli anymore
1169 - CLEANUP: debug/cli: make "debug dev memstats" not use ctx.cli anymore
1170 - CLEANUP: ring: pass the ring watch flags to ring_attach_cli(), not in ctx.cli
1171 - CLEANUP: ring/cli: use a locally-defined context instead of using ctx.cli
1172 - CLEANUP: resolvers/cli: make "show resolvers" use a locally-defined context
1173 - CLEANUP: resolvers/cli: remove the unneeded appctx->st2 from "show resolvers"
1174 - CLEANUP: cache/cli: make use of a locally defined context for "show cache"
1175 - CLEANUP: proxy/cli: make use of a locally defined context for "show servers"
1176 - CLEANUP: proxy/cli: get rid of appctx->st2 in "show servers"
1177 - CLEANUP: proxy/cli: make "show backend" only use the generic context
1178 - CLEANUP: cli: make "show fd" use its own context
1179 - CLEANUP: cli: make "show env" use its own context
1180 - CLEANUP: cli: simplify the "show cli sockets" I/O handler
1181 - CLEANUP: cli: make "show cli sockets" use its own context
1182 - CLEANUP: httpclient/cli: use a locally-defined context instead of ctx.cli
1183 - CLEANUP: httpclient: do not use the appctx.ctx anymore
1184 - CLEANUP: peers: do not use appctx.ctx anymore
1185 - CLEANUP: spoe: do not use appctx.ctx anymore
1186 - BUILD: applet: mark the CLI's generic variables as deprecated
1187 - BUILD: applet: mark the appctx's st2 variable as deprecated
1188 - CLEANUP: cache: take the context out of appctx.ctx
1189 - MEDIUM: lua: move the cosocket storage outside of appctx.ctx
1190 - MINOR: lua: move the tcp service storage outside of appctx.ctx
1191 - MINOR: lua: move the http service context out of appctx.ctx
1192 - CLEANUP: cli: move the status print context into its own context
1193 - CLEANUP: stats: rename the stats state values an mark the old ones deprecated
1194 - DOC: internal: document the new cleaner approach to the appctx
1195 - MINOR: tcp: socket translate TCP_KEEPIDLE for macOs equivalent
1196 - DOC: fix typo "ant" for "and" in INSTALL
1197 - CI: dynamically determine actual version of h2spec
1198
Willy Tarreau026fef92022-04-30 14:17:51 +020011992022/04/30 : 2.6-dev8
1200 - BUG/MINOR: quic: fix use-after-free with trace on ACK consume
1201 - BUG/MINOR: rules: Forbid captures in defaults section if used by a backend
1202 - BUG/MEDIUM: rules: Be able to use captures defined in defaults section
1203 - BUG/MINOR: rules: Fix check_capture() function to use the right rule arguments
1204 - BUG/MINOR: http-act: make release_http_redir() more robust
1205 - BUG/MINOR: sample: add missing use_backend/use-server contexts in smp_resolve_args
1206 - MINOR: sample: don't needlessly call c_none() in sample_fetch_as_type()
1207 - MINOR: sample: make the bool type cast to bin
1208 - MEDIUM: backend: add new "balance hash <expr>" algorithm
1209 - MINOR: init: add global setting "fd-hard-limit" to bound system limits
1210 - BUILD: pollers: use an initcall to register the pollers
1211 - BUILD: xprt: use an initcall to register the transport layers
1212 - BUILD: thread: use initcall instead of a constructor
1213 - BUILD: http: remove the two unused constructors in rules and ana
1214 - CLEANUP: compression: move the default setting of maxzlibmem to defaults
1215 - MINOR: tree-wide: always consider EWOULDBLOCK in addition to EAGAIN
1216 - BUG/MINOR: connection: "connection:close" header added despite 'close-spread-time'
1217 - MINOR: fd: add functions to set O_NONBLOCK and FD_CLOEXEC
1218 - CLEANUP: tree-wide: use fd_set_nonblock() and fd_set_cloexec()
1219 - CLEANUP: tree-wide: remove 25 occurrences of unneeded fcntl.h
1220 - REGTESTS: fix the race conditions in be2dec.vtc ad field.vtc
1221 - REGTESTS: webstats: remove unused stats socket in /tmp
1222 - MEDIUM: httpclient: disable SSL when the ca-file couldn't be loaded
1223 - BUG/MINOR: httpclient/lua: error when the httpclient_start() fails
1224 - BUG/MINOR: ssl: free the cafile entries on deinit
1225 - BUG/MINOR: ssl: memory leak when trying to load a directory with ca-file
1226 - MEDIUM: httpclient: re-enable the verify by default
1227 - BUG/MEDIUM: ssl/cli: fix yielding in show_cafile_detail
1228 - BUILD: compiler: properly distinguish weak and global symbols
1229 - MINOR: connection: Add way to disable active connection closing during soft-stop
1230 - BUG/MEDIUM: http-ana: Fix memleak in redirect rules with ignore-empty option
1231 - CLEANUP: Destroy `http_err_chunks` members during deinit
1232 - BUG/MINOR: resolvers: Fix memory leak in resolvers_deinit()
1233 - MINOR: Call deinit_and_exit(0) for `haproxy -vv`
1234 - BUILD: fd: disguise the fd_set_nonblock/cloexec result
1235 - BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()
1236 - MINOR: ssl: add a new global option "tune.ssl.hard-maxrecord"
1237 - CLEANUP: errors: also call deinit_errors_buffers() on deinit()
1238 - CLEANUP: chunks: release trash also in deinit
1239 - CLEANUP: deinit: release the pre-check callbacks
1240 - CLEANUP: deinit: release the config postparsers
1241 - CLEANUP: listeners/deinit: release accept queue tasklets on deinit
1242 - CLEANUP: connections/deinit: destroy the idle_conns tasks
1243 - BUG/MINOR: mux-quic: fix build in release mode
1244 - MINOR: mux-quic: adjust comment on emission function
1245 - MINOR: mux-quic: remove unused bogus qcc_get_stream()
1246 - BUG/MINOR: mux-quic: fix leak if cs alloc failure
1247 - MINOR: mux-quic: count local flow-control stream limit on reception
1248 - BUG/MINOR: h3: fix incomplete POST requests
1249 - BUG/MEDIUM: h3: fix use-after-free on mux Rx buffer wrapping
1250 - MINOR: mux-quic: partially copy Rx frame if almost full buf
1251 - MINOR: h3: change frame demuxing API
1252 - MINOR: mux-quic: add a app-layer context in qcs
1253 - MINOR: h3: implement h3 stream context
1254 - MINOR: h3: support DATA demux if buffer full
1255 - MINOR: quic: decode as much STREAM as possible
1256 - MINOR: quic: Improve qc_prep_pkts() flexibility
1257 - MINOR: quic: Prepare quic_frame struct duplication
1258 - MINOR: quic: Do not retransmit frames from coalesced packets
1259 - MINOR: quic: Add traces about TX frame memory releasing
1260 - MINOR: quic: process_timer() rework
1261 - MEDIUM: quic: New functions for probing rework
1262 - MEDIUM: quic: Retransmission functions rework
1263 - MEDIUM: quic: qc_requeue_nacked_pkt_tx_frms() rework
1264 - MINOR: quic: old data distinction for qc_send_app_pkt()
1265 - MINOR: quic: Mark packets as probing with old data
1266 - MEDIUM: quic: Mark copies of acknowledged frames as acknowledged
1267 - MEDIUM: quic: Enable the new datagram probing process
1268 - MINOR: quic: Do not send ACK frames when probing
1269 - BUG/MINOR: quic: Wrong returned status by qc_build_frms()
1270 - BUG/MINOR: quic: Avoid sending useless PADDING frame
1271 - BUG/MINOR: quic: Traces fix about remaining frames upon packet build failure
1272 - MINOR: quic: Wake up the mux to probe with new data
1273 - BUG/MEDIUM: quic: Possible crash on STREAM frame loss
1274 - BUG/MINOR: quic: Missing Initial packet length check
1275 - CLEANUP: quic: Rely on the packet length set by qc_lstnr_pkt_rcv()
1276 - MINOR: quic: Drop 0-RTT packets if not allowed
1277 - BUG/MINOR: httpclient/ssl: use the correct verify constant
1278 - BUG/MEDIUM: conn-stream: Don't erase endpoint flags on reset
1279 - BUG/MEDIUM: httpclient: Fix loop consuming HTX blocks from the response channel
1280 - BUG/MINOR: httpclient: Count metadata in size to transfer via htx_xfer_blks()
1281 - MINOR: httpclient: Don't use co_set_data() to decrement output
1282 - BUG/MINOR: conn_stream: do not confirm a connection from the frontend path
1283 - MEDIUM: quic: do not ACK packet with STREAM if MUX not present
1284 - MEDIUM: quic: do not ack packet with invalid STREAM
1285 - MINOR: quic: Drop 0-RTT packets without secrets
1286 - CLEANUP: quic: Remaining fprintf() debug trace
1287 - MINOR: quic: moving code for QUIC loss detection
1288 - BUG/MINOR: quic: Missing time threshold multiplifier for loss delay computation
1289 - CI: github actions: update LibreSSL to 3.5.2
1290 - SCRIPTS: announce-release: add URL of dev packages
1291
Willy Tarreau3e69fcc2022-04-23 04:38:36 +020012922022/04/23 : 2.6-dev7
1293 - BUILD: calltrace: fix wrong include when building with TRACE=1
1294 - MINOR: ssl: Use DH parameters defined in RFC7919 instead of hard coded ones
1295 - MEDIUM: ssl: Disable DHE ciphers by default
1296 - BUILD: ssl: Fix compilation with OpenSSL 1.0.2
1297 - MINOR: mux-quic: split xfer and STREAM frames build
1298 - REORG: quic: use a dedicated module for qc_stream_desc
1299 - MINOR: quic-stream: use distinct tree nodes for quic stream and qcs
1300 - MINOR: quic-stream: add qc field
1301 - MEDIUM: quic: implement multi-buffered Tx streams
1302 - MINOR: quic-stream: refactor ack management
1303 - MINOR: quic: limit total stream buffers per connection
1304 - MINOR: mux-quic: implement immediate send retry
1305 - MINOR: cfg-quic: define tune.quic.conn-buf-limit
1306 - MINOR: ssl: Add 'show ssl providers' cli command and providers list in -vv option
1307 - REGTESTS: ssl: Update error messages that changed with OpenSSLv3.1.0-dev
1308 - BUG/MEDIUM: quic: Possible crash with released mux
1309 - BUG/MINOR: mux-quic: unsubscribe on release
1310 - BUG/MINOR: mux-quic: handle null timeout
1311 - BUG/MEDIUM: logs: fix http-client's log srv initialization
1312 - BUG/MINOR: mux-quic: remove dead code in qcs_xfer_data()
1313 - DEV: stream: Fix conn-streams dump in full stream message
1314 - CLEANUP: conn-stream: Rename cs_conn_close() and cs_conn_drain_and_close()
1315 - CLEANUP: conn-stream: Rename cs_applet_release()
1316 - MINOR: conn-stream: Rely on endpoint shutdown flags to shutdown an applet
1317 - BUG/MINOR: cache: Disable cache if applet creation fails
1318 - BUG/MINOR: backend: Don't allow to change backend applet
1319 - BUG/MEDIUM: conn-stream: Set back CS to RDY state when the appctx is created
1320 - MINOR: stream: Don't needlessly detach server endpoint on early client abort
1321 - MINOR: conn-stream: Make cs_detach_* private and use cs_destroy() from outside
1322 - MINOR: init: add the pre-check callback
1323 - MEDIUM: httpclient: change the init sequence
1324 - MEDIUM: httpclient/ssl: verify required
1325 - MINOR: httpclient/mworker: disable in the master process
1326 - MEDIUM: httpclient/ssl: verify is configurable and disabled by default
1327 - BUG/MAJOR: connection: Never remove connection from idle lists outside the lock
1328 - BUG/MEDIUM: mux-quic: fix stalled POST requets
1329 - BUG/MINOR: mux-quic: fix POST with abortonclose
1330 - MINOR: task: add a new task_instant_wakeup() function
1331 - MEDIUM: queue: use tasklet_instant_wakeup() to wake tasks
1332 - DOC: remove my name from the config doc
1333
Willy Tarreaua8b10652022-04-16 12:15:47 +020013342022/04/16 : 2.6-dev6
1335 - CLEANUP: connection: reduce the with of the mux dump output
1336 - CI: Update to actions/checkout@v3
1337 - CI: Update to actions/cache@v3
1338 - DOC: adjust QUIC instruction in INSTALL
1339 - BUG/MINOR: stats: define the description' background color in dark color scheme
1340 - BUILD: ssl: add USE_ENGINE and disable the openssl engine by default
1341 - BUILD: makefile: pass USE_ENGINE to cflags
1342 - BUILD: xprt-quic: replace ERR_func_error_string() with ERR_peek_error_func()
1343 - DOC: install: document the fact that SSL engines are not enabled by default
1344 - CI: github actions: disable -Wno-deprecated
1345 - BUILD: makefile: silence unbearable OpenSSL deprecation warnings
1346 - MINOR: sock: check configured limits at the sock layer, not the listener's
1347 - MINOR: connection: add a new flag CO_FL_FDLESS on fd-less connections
1348 - MINOR: connection: add conn_fd() to retrieve the FD only when it exists
1349 - MINOR: stream: only dump connections' FDs when they are valid
1350 - MINOR: connection: use conn_fd() when displaying connection errors
1351 - MINOR: connection: skip FD-based syscalls for FD-less connections
1352 - MEDIUM: connection: panic when calling FD-specific functions on FD-less conns
1353 - MINOR: mux-quic: properly set the flags and name fields
1354 - MINOR: connection: rearrange conn_get_src/dst to be a bit more extensible
1355 - MINOR: protocol: add get_src() and get_dst() at the protocol level
1356 - MINOR: quic-sock: provide a pair of get_src/get_dst functions
1357 - MEDIUM: ssl: improve retrieval of ssl_sock_ctx and SSL detection
1358 - MEDIUM: ssl: stop using conn->xprt_ctx to access the ssl_sock_ctx
1359 - MEDIUM: xprt-quic: implement get_ssl_sock_ctx()
1360 - MEDIUM: quic: move conn->qc into conn->handle
1361 - BUILD: ssl: fix build warning with previous changes to ssl_sock_ctx
1362 - BUILD: ssl: add an unchecked version of __conn_get_ssl_sock_ctx()
1363 - MINOR: ssl: refine the error testing for fc_err and fc_err_str
1364 - BUG/MINOR: sock: do not double-close the accepted socket on the error path
1365 - CI: cirrus: switch to FreeBSD-13.0
1366 - MINOR: log: add '~' to frontend when the transport layer provides SSL
1367 - BUILD/DEBUG: lru: fix printf format in debug code
1368 - BUILD: peers: adjust some printf format to silence cppcheck
1369 - BUILD/DEBUG: hpack-tbl: fix format string in standalone debug code
1370 - BUILD/DEBUG: hpack: use unsigned int in printf format in debug code
1371 - BUILD: halog: fix some incorrect signs in printf formats for integers
1372 - BUG/MINOR: h3: fix build with DEBUG_H3
1373 - BUG/MINOR: mux-h2: do not send GOAWAY if SETTINGS were not sent
1374 - BUG/MINOR: cache: do not display expired entries in "show cache"
1375 - BUG/MINOR: mux-h1: Don't release unallocated CS on error path
1376 - MINOR: applet: Make .init callback more generic
1377 - MINOR: conn-stream: Add flags to set the type of the endpoint
1378 - MEDIUM: applet: Set the appctx owner during allocation
1379 - MAJOR: conn-stream: Invert conn-stream endpoint and its context
1380 - REORG: Initialize the conn-stream by hand in cs_init()
1381 - MEDIUM: conn-stream: Add an endpoint structure in the conn-stream
1382 - MINOR: conn-stream: Move some CS flags to the endpoint
1383 - MEDIUM: conn-stream: Be able to pass endpoint to create a conn-stream
1384 - MEDIUM: conn-stream: Pre-allocate endpoint to create CS from muxes and applets
1385 - REORG: applet: Uninline appctx_new function
1386 - MAJOR: conn-stream: Share endpoint struct between the CS and the mux/applet
1387 - MEDIUM: conn-stream: Move remaning flags from CS to endpoint
1388 - MINOR: mux-pt: Rely on the endpoint instead of the conn-stream when possible
1389 - MINOR: conn-stream: Add ISBACK conn-stream flag
1390 - MINOR: conn-stream: Add header file with util functions related to conn-streams
1391 - MEDIUM: tree-wide: Use CS util functions instead of SI ones
1392 - MINOR: stream-int/txn: Move buffer for L7 retries in the HTTP transaction
1393 - CLEANUP: http-ana: Remove http_alloc_txn() function
1394 - MINOR: stream-int/stream: Move conn_retries counter in the stream
1395 - MINOR: stream: Simplify retries counter calculation
1396 - MEDIUM: stream-int/conn-stream: Move src/dst addresses in the conn-stream
1397 - MINOR: stream-int/conn-stream: Move half-close timeout in the conn-stream
1398 - MEDIUM: stream-int/stream: Use connect expiration instead of SI expiration
1399 - MINOR: stream-int/conn-stream: Report error to the CS instead of the SI
1400 - MEDIUM: conn-stream: Use endpoint error instead of conn-stream error
1401 - MINOR: channel: Use conn-streams as channel producer and consumer
1402 - MINOR: stream-int: Remove SI_FL_KILL_CON to rely on conn-stream endpoint only
1403 - MINOR: mux-h2/mux-fcgi: Fully rely on CS_EP_KILL_CONN
1404 - MINOR: stream-int: Remove SI_FL_NOLINGER/NOHALF to rely on CS flags instead
1405 - MINOR: stream-int: Remove SI_FL_DONT_WAKE to rely on CS flags instead
1406 - MINOR: stream-int: Remove SI_FL_INDEP_STR to rely on CS flags instead
1407 - MINOR: stream-int: Remove SI_FL_SRC_ADDR to rely on stream flags instead
1408 - CLEANUP: stream-int: Remove unused SI_FL_CLEAN_ABRT flag
1409 - MINOR: stream: Only save previous connection state for the server side
1410 - MEDIUM: stream-int: Move SI err_type in the stream
1411 - MEDIUM: stream-int/conn-stream: Move stream-interface state in the conn-stream
1412 - MINOR: stream-int/stream: Move si_retnclose() in the stream scope
1413 - MINOR: stream-int/backend: Move si_connect() in the backend scope
1414 - MINOR: stream-int/conn-stream: Move si_conn_ready() in the conn-stream scope
1415 - MINOR: conn-stream/connection: Move SHR/SHW modes in the connection scope
1416 - MEDIUM: conn-stream: Be prepared to fail to attach a cs to a mux
1417 - MEDIUM: stream-int/conn-stream: Handle I/O subscriptions in the conn-stream
1418 - MINOR: conn-stream: Rename CS functions dedicated to connections
1419 - MINOR: stream-int/conn-stream: Move si_shut* and si_chk* in conn-stream scope
1420 - MEDIUM: stream-int/conn-stream: Move si_ops in the conn-stream scope
1421 - MINOR: applet: Use the CS to register and release applets instead of SI
1422 - MINOR: connection: unconst mux's get_fist_cs() callback function
1423 - MINOR: stream-int/connection: Move conn_si_send_proxy() in the connection scope
1424 - REORG: stream-int: Export si_cs_recv(), si_cs_send() and si_cs_process()
1425 - REORG: stream-int: Move si_is_conn_error() in the header file
1426 - REORG: conn-stream: Move cs_shut* and cs_chk* in cs_utils
1427 - REORG: conn-stream: Move cs_app_ops in conn_stream.c
1428 - MINOR: stream-int-conn-stream: Move si_update_* in conn-stream scope
1429 - MINOR: stream-int/stream: Move si_update_both in stream scope
1430 - MEDIUM: conn-stream/applet: Add a data callback for applets
1431 - MINOR: stream-int/conn-stream: Move stream_int_read0() in the conn-stream scope
1432 - MINOR: stream-int/conn-stream: Move stream_int_notify() in the conn-stream scope
1433 - MINOR: stream-int/conn-stream: Move si_cs_io_cb() in the conn-stream scope
1434 - MINOR: stream-int/conn-stream: Move si_sync_recv/send() in conn-stream scope
1435 - MINOR: conn-stream: Move si_conn_cb in the conn-stream scope
1436 - MINOR: stream-int/conn-stream Move si_is_conn_error() in the conn-stream scope
1437 - MINOR: stream-int/conn-stream: Move si_alloc_ibuf() in the conn-stream scope
1438 - CLEANUP: stream-int: Remove unused SI functions
1439 - MEDIUM: stream-int/conn-stream: Move blocking flags from SI to CS
1440 - MEDIUM: stream-int/conn-stream: Move I/O functions to conn-stream
1441 - REORG: stream-int/conn-stream: Move remaining functions to conn-stream
1442 - MINOR: stream: Use conn-stream to report server error
1443 - MINOR: http-ana: Use CS to perform L7 retries
1444 - MEDIUM: stream: Don't use the stream-int anymore in process_stream()
1445 - MINOR: conn-stream: Remove the stream-interface from the conn-stream
1446 - DEV: flags: No longer dump SI flags
1447 - CLEANUP: tree-wide: Remove any ref to stream-interfaces
1448 - CLEANUP: conn-stream: Don't export internal functions
1449 - DOC: conn-stream: Add comments on functions of the new CS api
1450 - MEDIUM: check: Use a new conn-stream for each health-check run
1451 - CLEANUP: muxes: Remove MX_FL_CLEAN_ABRT flag
1452 - MINOR: conn-stream: Use a dedicated function to conditionally remove a CS
1453 - CLEANUP: conn-stream: rename cs_register_applet() to cs_applet_create()
1454 - MINOR: muxes: Improve show_fd callbacks to dump endpoint flags
1455 - MINOR: mux-h1: Rely on the endpoint instead of the conn-stream when possible
1456 - BUG/MINOR: quic: Avoid starting the mux if no ALPN sent by the client
1457 - BUILD: debug: mark the __start_mem_stats/__stop_mem_stats symbols as weak
1458 - BUILD: initcall: mark the __start_i_* symbols as weak, not global
1459 - BUG/MINOR: mux-h2: do not use timeout http-keep-alive on backend side
1460 - BUG/MINOR: mux-h2: use timeout http-request as a fallback for http-keep-alive
1461 - MINOR: muxes: Don't expect to have a mux without connection in destroy callback
1462 - MINOR: muxes: Don't handle proto upgrade for muxes not supporting it
1463 - MINOR: muxes: Don't expect to call release function with no mux defined
1464 - MINOR: conn-stream: Use unsafe functions to get conn/appctx in cs_detach_endp
1465 - BUG/MEDIUM: mux-h1: Don't request more room on partial trailers
1466 - BUILD: http-client: Avoid dead code when compiled without SSL support
1467 - BUG/MINOR: mux-quic: prevent a crash in session_free on mux.destroy
1468 - BUG/MINOR: quic-sock: do not double free session on conn init failure
1469 - BUG/MINOR: quic: fix return value for error in start
1470 - MINOR: quic: emit CONNECTION_CLOSE on app init error
1471 - BUILD: sched: workaround crazy and dangerous warning in Clang 14
1472 - BUILD: compiler: use a more portable set of asm(".weak") statements
1473 - BUG/MEDIUM: stream: do not abort connection setup too early
1474 - CLEANUP: extcheck: do not needlessly preset the server's address/port
1475 - MINOR: extcheck: fill in the server's UNIX socket address when known
1476 - BUG/MEDIUM: connection: Don't crush context pointer location if it is a CS
1477 - BUG/MEDIUM: quic: properly clean frames on stream free
1478 - BUG/MEDIUM: fcgi-app: Use http_msg flags to know if C-L header can be added
1479 - BUG/MEDIUM: compression: Don't forget to update htx_sl and http_msg flags
1480 - MINOR: tcp_sample: clarifying samples support per os, for further expansion.
1481 - MINOR: tcp_sample: extend support for get_tcp_info to macOs.
1482 - SCRIPTS: announce-release: update the doc's URL
1483 - DOC: lua: update a few doc URLs
1484 - SCRIPTS: announce-release: add shortened links to pending issues
1485
Willy Tarreaud3b4cd12022-04-09 11:31:40 +020014862022/04/09 : 2.6-dev5
1487 - DOC: reflect H2 timeout changes
1488 - BUG/MEDIUM: mux-fcgi: Properly handle return value of headers/trailers parsing
1489 - BUG/MEDIUM: mux-h1: Properly detect full buffer cases during message parsing
1490 - BUG/MINOR: log: Initialize the list element when allocating a new log server
1491 - BUG/MINOR: samples: add missing context names for sample fetch functions
1492 - MINOR: management: add some basic keyword dump infrastructure
1493 - MINOR: config: add a function to dump all known config keywords
1494 - MINOR: filters: extend flt_dump_kws() to dump to stdout
1495 - MINOR: services: extend list_services() to dump to stdout
1496 - MINOR: cli: add a new keyword dump function
1497 - MINOR: acl: add a function to dump the list of known ACL keywords
1498 - MINOR: samples: add a function to list register sample fetch keywords
1499 - MINOR: sample: list registered sample converter functions
1500 - MINOR: tools: add strordered() to check whether strings are ordered
1501 - MINOR: action: add a function to dump the list of actions for a ruleset
1502 - MINOR: config: alphanumerically sort config keywords output
1503 - MINOR: sample: alphanumerically sort sample & conv keyword dumps
1504 - MINOR: acl: alphanumerically sort the ACL dump
1505 - MINOR: cli: alphanumerically sort the dump of supported commands
1506 - MINOR: filters: alphabetically sort the list of filter names
1507 - MINOR: services: alphabetically sort service names
1508 - MEDIUM: httpclient/lua: be stricter with httpclient parameters
1509 - MINOR: ssl: split the cert commit io handler
1510 - MINOR: ssl: move the cert_exts and the CERT_TYPE enum
1511 - MINOR: ssl: simplify the certificate extensions array
1512 - MINOR: ssl: export ckch_inst_rebuild()
1513 - MINOR: ssl: add "crt" in the cert_exts array
1514 - MINOR: ssl/lua: CertCache.set() allows to update an SSL certificate file
1515 - BUILD: ssl/lua: CacheCert needs OpenSSL
1516 - DOC: lua: CertCache class documentation
1517 - BUG/MEDIUM: quic: do not use qcs from quic_stream on ACK parsing
1518 - MINOR: mux-quic: return qcs instance from qcc_get_qcs
1519 - MINOR: mux-quic: reorganize qcs free
1520 - MINOR: mux-quic: define release app-ops
1521 - BUG/MINOR: h3: release resources on close
1522 - BUG/MINOR: mux-quic: ensure to free all qcs on MUX release
1523 - CLEANUP: quic: complete comment on qcs_try_to_consume
1524 - MINOR: quic: implement stream descriptor for transport layer
1525 - MEDIUM: quic: move transport fields from qcs to qc_conn_stream
1526 - MEDIUM: mux-quic: remove qcs tree node
1527 - BUG/MINOR: cli/stream: fix "shutdown session" to iterate over all threads
1528 - DOC: management: add missing dot in 9.4.1
1529 - BUG/MAJOR: mux_pt: always report the connection error to the conn_stream
1530 - DOC: remove double blanks in configuration.txt
1531 - CI: github actions: update OpenSSL to 3.0.2
1532 - BUG/MEDIUM: quic: Possible crash in ha_quic_set_encryption_secrets()
1533 - CLEANUP: quic: Remove all atomic operations on quic_conn struct
1534 - CLEANUP: quic: Remove all atomic operations on packet number spaces
1535 - MEDIUM: quic: Send ACK frames asap
1536 - BUG/MINOR: quic: Missing probing packets when coalescing
1537 - BUG/MINOR: quic: Discard Initial packet number space only one time
1538 - MINOR: quic: Do not display any timer value from process_timer()
1539 - BUG/MINOR: quic: Do not probe from an already probing packet number space
1540 - BUG/MINOR: quic: Non duplicated frames upon fast retransmission
1541 - BUG/MINOR: quic: Too much prepared retransmissions due to anti-amplification
1542 - MINOR: quic: Useless call to SSL_CTX_set_default_verify_paths()
1543 - MINOR: quic: Add traces about list of frames
1544 - BUG/MINOR: h3: Missing wait event struct field initialization
1545 - BUG/MINOR: quic: QUIC TLS secrets memory leak
1546 - BUG/MINOR: quic: Missing ACK range deallocations
1547 - BUG/MINOR: quic: Missing TX packet deallocations
1548 - CLEANUP: hpack: be careful about integer promotion from uint8_t
1549 - OPTIM: hpack: read 32 bits at once when possible.
1550 - MEDIUM: ssl: allow loading of a directory with the ca-file directive
1551 - BUG/MINOR: ssl: continue upon error when opening a directory w/ ca-file
1552 - MINOR: ssl: ca-file @system-ca loads the system trusted CA
1553 - DOC: configuration: add the ca-file changes
1554 - MINOR: sample: converter: Add add_item convertor
1555 - BUG/MINOR: ssl: handle X509_get_default_cert_dir() returning NULL
1556 - BUG/MINOR: ssl/cli: Remove empty lines from CLI output
1557 - MINOR: httpclient: enable request buffering
1558 - MEDIUM: httpclient: enable l7-retry
1559 - BUG/MINOR: httpclient: end callback in applet release
1560 - MINOR: quic: Add draining connection state.
1561 - MINOR: quic: Add closing connection state
1562 - BUG/MEDIUM: quic: ensure quic-conn survives to the MUX
1563 - CLEANUP: quic: use static qualifer on quic_close
1564 - CLEANUP: mux-quic: remove unused QC_CF_CC_RECV
1565 - BUG/MINOR: fix memleak on quic-conn streams cleaning
1566 - MINOR: mux-quic: factorize conn-stream attach
1567 - MINOR: mux-quic: adjust timeout to accelerate closing
1568 - MINOR: mux-quic: define is_active app-ops
1569 - MINOR: mux-quic: centralize send operations in qc_send
1570 - MEDIUM: mux-quic: report CO_FL_ERROR on send
1571 - MEDIUM: mux-quic: report errors on conn-streams
1572 - MEDIUM: quic: report closing state for the MUX
1573 - BUG/MINOR: fcgi-app: Don't add C-L header on response to HEAD requests
1574 - BUG/MEDIUM: stats: Be sure to never set EOM flag on an empty HTX message
1575 - BUG/MEDIUM: hlua: Don't set EOM flag on an empty HTX message in HTTP applet
1576 - BUG/MEDIUM: promex: Be sure to never set EOM flag on an empty HTX message
1577 - BUG/MEDIUM: mux-h1: Set outgoing message to DONE when payload length is reached
1578 - BUG/MINOR: http_client: Don't add input data on an empty request buffer
1579 - BUG/MEDIUM: http-conv: Fix url_enc() to not crush const samples
1580 - BUG/MEDIUM: http-act: Don't replace URI if path is not found or invalid
1581 - CLEANUP: mux-quic: remove uneeded TODO in qc_detach
1582 - BUG/MEDIUM: mux-quic: properly release conn-stream on detach
1583 - BUG/MINOR: quic: set the source not the destination address on accept()
1584 - BUG/MEDIUM: quic: Possible crash from quic_free_arngs()
1585 - MINOR: quic_tls: Add reusable cipher contexts to QUIC TLS contexts
1586 - MINOR: quic_tls: Stop hardcoding cipher IV lengths
1587 - CLEANUP: quic: Do not set any cipher/group from ssl_quic_initial_ctx()
1588 - MINOR: quic: Add short packet key phase bit values to traces
1589 - MINOR: quic_tls: Make key update use of reusable cipher contexts
1590 - BUG/MINOR: opentracing: setting the return value in function flt_ot_var_set()
1591 - BUG/BUILD: opentracing: fixed OT_DEFINE variable setting
1592 - EXAMPLES: opentracing: refined shell scripts for testing filter performance
1593 - DOC: opentracing: corrected comments in function descriptions
1594 - CLEANUP: opentracing: removed unused function flt_ot_var_unset()
1595 - CLEANUP: opentracing: removed unused function flt_ot_var_get()
1596 - Revert "MINOR: opentracing: change the scope of the variable 'ot.uuid' from 'sess' to 'txn'"
1597 - MINOR: opentracing: only takes the variables lock on shared entries
1598 - CLEANUP: opentracing: added flt_ot_smp_init() function
1599 - CLEANUP: opentracing: added variable to store variable length
1600 - MINOR: opentracing: improved normalization of context variable names
1601 - DEBUG: opentracing: show return values of all functions in the debug output
1602 - CLEANUP: opentracing: added FLT_OT_PARSE_INVALID_enum enum
1603 - DEBUG: opentracing: display the contents of the err variable after setting
1604 - MAJOR: opentracing: reenable usage of vars to transmit opentracing context
1605 - Revert "BUILD: opentracing: display warning in case of using OT_USE_VARS at compile time"
1606 - MEDIUM: global: Add a "close-spread-time" option to spread soft-stop on time window
1607
Willy Tarreau0541c2b2022-03-26 08:31:33 +010016082022/03/26 : 2.6-dev4
1609 - BUG/MEDIUM: httpclient: don't consume data before it was analyzed
1610 - CLEANUP: htx: remove unused co_htx_remove_blk()
1611 - BUG/MINOR: httpclient: consume partly the blocks when necessary
1612 - BUG/MINOR: httpclient: remove the UNUSED block when parsing headers
1613 - BUG/MEDIUM: httpclient: must manipulate head, not first
1614 - REGTESTS: fix the race conditions in be2hex.vtc
1615 - BUG/MEDIUM: quic: Blocked STREAM when retransmitted
1616 - BUG/MAJOR: quic: Possible crash with full congestion control window
1617 - BUG/MINOR: httpclient/lua: stuck when closing without data
1618 - BUG/MEDIUM: applet: Don't call .release callback function twice
1619 - BUG/MEDIUM: cli/debug: Properly get the stream-int in all debug I/O handlers
1620 - BUG/MEDIUM: sink: Properly get the stream-int in appctx callback functions
1621 - DEV: udp: switch parser to getopt() instead of positional arguments
1622 - DEV: udp: add support for random packet corruption
1623 - MINOR: server: export server_parse_sni_expr() function
1624 - BUG/MINOR: httpclient: send the SNI using the host header
1625 - BUILD: httpclient: fix build without SSL
1626 - BUG/MINOR: server/ssl: free the SNI sample expression
1627 - BUG/MINOR: logs: fix logsrv leaks on clean exit
1628 - MINOR: actions: add new function free_act_rule() to free a single rule
1629 - BUG/MINOR: tcp-rules: completely free incorrect TCP rules on error
1630 - BUG/MINOR: http-rules: completely free incorrect TCP rules on error
1631 - BUG/MINOR: httpclient: only check co_data() instead of HTTP_MSG_DATA
1632 - BUG/MINOR: httpclient: process the response when received before the end of the request
1633 - BUG/MINOR: httpclient: CF_SHUTW_NOW should be tested with channel_is_empty()
1634 - CI: github actions: switch to LibreSSL-3.5.1
1635 - BUG/MEDIUM: mux-h1: only turn CO_FL_ERROR to CS_FL_ERROR with empty ibuf
1636 - BUG/MEDIUM: stream-int: do not rely on the connection error once established
1637 - BUG/MEDIUM: trace: avoid race condition when retrieving session from conn->owner
1638 - MEDIUM: mux-h2: slightly relax timeout management rules
1639 - BUG/MEDIUM: mux-h2: make use of http-request and keep-alive timeouts
1640 - BUG/MINOR: rules: Initialize the list element when allocating a new rule
1641 - BUG/MINOR: http-rules: Don't free new rule on allocation failure
1642 - DEV: coccinelle: Fix incorrect replacement in ist.cocci
1643 - CLEANUP: Reapply ist.cocci with `--include-headers-for-types --recursive-includes`
1644 - DEV: coccinelle: Add a new pattern to ist.cocci
1645 - CLEANUP: Reapply ist.cocci
1646 - REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+
1647 - MINOR: quic: Code factorization (TX buffer reuse)
1648 - CLEANUP: quic: "largest_acked_pn" pktns struc member moving
1649 - MEDIUM: quic: Limit the number of ACK ranges
1650 - MEDIUM: quic: Rework of the TX packets memory handling
1651 - BUG/MINOR: quic: Possible crash in parse_retry_token()
1652 - BUG/MINOR: quic: Possible leak in quic_build_post_handshake_frames()
1653 - BUG/MINOR: quic: Unsent frame because of qc_build_frms()
1654 - BUG/MINOR: mux-quic: Access to empty frame list from qc_send_frames()
1655 - BUG/MINOR: mux-quic: Missing I/O handler events initialization
1656 - BUG/MINOR: quic: Missing TX packet initializations
1657 - BUG/MINOR: quic: 1RTT packets ignored after mux was released
1658 - BUG/MINOR: quic: Incorrect peer address validation
1659 - BUG/MINOR: quic: Non initialized variable in quic_build_post_handshake_frames()
1660 - BUG/MINOR: quic: Wrong TX packet related counters handling
1661 - MEDIUM: mqtt: support mqtt_is_valid and mqtt_field_value converters for MQTTv3.1
1662 - DOC: config: Explictly add supported MQTT versions
1663 - MINOR: quic: Add traces about stream TX buffer consumption
1664 - MINOR: quic: Add traces in qc_set_timer() (scheduling)
1665 - CLEANUP: mux-quic: change comment style to not mess with git conflict
1666 - CLEANUP: mux-quic: adjust comment for coding-style
1667 - MINOR: mux-quic: complete trace when stream is not found
1668 - MINOR: mux-quic: add comments for send functions
1669 - MINOR: mux-quic: use shorter name for flow-control fields
1670 - MEDIUM: mux-quic: respect peer bidirectional stream data limit
1671 - MEDIUM: mux-quic: respect peer connection data limit
1672 - MINOR: mux-quic: support MAX_STREAM_DATA frame parsing
1673 - MINOR: mux-quic: support MAX_DATA frame parsing
1674 - BUILD: stream-int: avoid a build warning when DEBUG is empty
1675 - BUG/MINOR: quic: Wrong buffer length passed to generate_retry_token()
1676 - BUG/MINOR: tools: fix url2sa return value with IPv4
1677 - MINOR: mux-quic: convert fin on push-frame as boolean
1678 - BUILD: quic: add missing includes
1679 - REORG: quic: use a dedicated quic_loss.c
1680 - MINOR: mux-quic: declare the qmux trace module
1681 - MINOR: mux-quic: replace printfs by traces
1682 - MINOR: mux-quic: add trace event for frame sending
1683 - MINOR: mux-quic: add trace event for qcs_push_frame
1684 - MINOR: mux-quic: activate qmux traces on stdout via macro
1685 - BUILD: qpack: fix unused value when not using DEBUG_HPACK
1686 - CLEANUP: qpack: suppress by default stdout traces
1687 - CLEANUP: h3: suppress by default stdout traces
1688 - BUG/MINOR: tools: url2sa reads too far when no port nor path
1689
Willy Tarreaubc8b7a12022-03-11 18:09:24 +010016902022/03/11 : 2.6-dev3
1691 - DEBUG: rename WARN_ON_ONCE() to CHECK_IF()
1692 - DEBUG: improve BUG_ON output message accuracy
1693 - DEBUG: implement 4 levels of choices between warn and crash.
1694 - DEBUG: add two new macros to enable debugging in hot paths
1695 - DEBUG: buf: replace some sensitive BUG_ON() with BUG_ON_HOT()
1696 - DEBUG: buf: add BUG_ON_HOT() to most buffer management functions
1697 - MINOR: channel: don't use co_set_data() to decrement output
1698 - DEBUG: channel: add consistency checks using BUG_ON_HOT() in some key functions
1699 - MINOR: conn-stream: Improve API to have safe/unsafe accessors
1700 - MEDIUM: tree-wide: Use unsafe conn-stream API when it is relevant
1701 - CLEANUP: stream-int: Make si_cs_send() function static
1702 - REORG: stream-int: Uninline si_sync_recv() and make si_cs_recv() private
1703 - BUG/MEDIUM: mux-fcgi: Don't rely on SI src/dst addresses for FCGI health-checks
1704 - BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()
1705 - REGTESTS: fix the race conditions in normalize_uri.vtc
1706 - DEBUG: stream-int: Fix BUG_ON used to test appctx in si_applet_ops callbacks
1707 - BUILD: debug: fix build warning on older compilers around DEBUG_STRICT_ACTION
1708 - CLEANUP: connection: Indicate unreachability to the compiler in conn_recv_proxy
1709 - MINOR: connection: Transform safety check in PROXYv2 parsing into BUG_ON()
1710 - DOC: install: it's DEBUG_CFLAGS, not DEBUG, which is set to -g
1711 - DOC: install: describe the DEP variable
1712 - DOC: install: describe how to choose options used in the DEBUG variable
1713 - MINOR: queue: Replace if() + abort() with BUG_ON()
1714 - CLEANUP: adjust indentation in bidir STREAM handling function
1715 - MINOR: quic: simplify copy of STREAM frames to RX buffer
1716 - MINOR: quic: handle partially received buffered stream frame
1717 - MINOR: mux-quic: define flag for last received frame
1718 - BUG/MINOR: quic: support FIN on Rx-buffered STREAM frames
1719 - MEDIUM: quic: rearchitecture Rx path for bidirectional STREAM frames
1720 - REGTESTS: fix the race conditions in secure_memcmp.vtc
1721 - CLEANUP: stream: Remove useless tests on conn-stream in stream_dump()
1722 - BUILD: ssl: another build warning on LIBRESSL_VERSION_NUMBER
1723 - MINOR: quic: Ensure PTO timer is not set in the past
1724 - MINOR: quic: Post handshake I/O callback switching
1725 - MINOR: quic: Drop the packets of discarded packet number spaces
1726 - CLEANUP: quic: Useless tests in qc_try_rm_hp()
1727 - CLEANUP: quic: Indentation fix in qc_prep_pkts()
1728 - MINOR: quic: Assemble QUIC TLS flags at the same level
1729 - BUILD: conn_stream: avoid null-deref warnings on gcc 6
1730 - BUILD: connection: do not declare register_mux_proto() inline
1731 - BUILD: http_rules: do not declare http_*_keywords_registre() inline
1732 - BUILD: trace: do not declare trace_registre_source() inline
1733 - BUILD: tcpcheck: do not declare tcp_check_keywords_register() inline
1734 - DEBUG: reduce the footprint of BUG_ON() calls
1735 - BUG/MEDIUM: httpclient/lua: infinite appctx loop with POST
1736 - BUG/MINOR: pool: always align pool_heads to 64 bytes
1737 - DEV: udp: add a tiny UDP proxy for testing
1738 - DEV: udp: implement pseudo-random reordering/loss
1739 - DEV: udp: add an optional argument to set the prng seed
1740 - BUG/MINOR: quic: fix segfault on CC if mux uninitialized
1741 - BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed
1742 - CLEANUP: tree-wide: remove a few rare non-ASCII chars
1743 - CI: coverity: simplify debugging options
1744 - CLEANUP: quic: complete ABORT_NOW with a TODO comment
1745 - MINOR: quic: qc_prep_app_pkts() implementation
1746 - MINOR: quic: Send short packet from a frame list
1747 - MINOR: quic: Make qc_build_frms() build ack-eliciting frames from a list
1748 - MINOR: quic: Export qc_send_app_pkts()
1749 - MINOR: mux-quic: refactor transport parameters init
1750 - MINOR: mux-quic: complete functions to detect stream type
1751 - MINOR: mux-quic: define new unions for flow-control fields
1752 - MEDIUM: mux-quic: use direct send transport API for STREAMs
1753 - MINOR: mux-quic: retry send opportunistically for remaining frames
1754 - MEDIUM: mux-quic: implement MAX_STREAMS emission for bidir streams
1755 - BUILD: fix kFreeBSD build.
1756 - MINOR: quic: Retry on qc_build_pkt() failures
1757 - BUG/MINOR: quic: Missing recovery start timer reset
1758 - CLEANUP: quic: Remove QUIC path manipulations out of the congestion controller
1759 - MINOR: quic: Add a "slow start" callback to congestion controller
1760 - MINOR: quic: Persistent congestion detection outside of controllers
1761 - CLEANUP: quic: Remove useless definitions from quic_cc_event struct
1762 - BUG/MINOR: quic: Confusion betwen "in_flight" and "prep_in_flight" in quic_path_prep_data()
1763 - MINOR: quic: More precise window update calculation
1764 - CLEANUP: quic: Remove window redundant variable from NewReno algorithm state struct
1765 - MINOR: quic: Add quic_max_int_by_size() function
1766 - BUG/MAJOR: quic: Wrong quic_max_available_room() returned value
1767 - MINOR: pools: add a new global option "no-memory-trimming"
1768 - BUG/MINOR: add missing modes in proxy_mode_str()
1769 - BUG/MINOR: cli: shows correct mode in "show sess"
1770 - BUG/MEDIUM: quic: do not drop packet on duplicate stream/decoding error
1771 - MINOR: stats: Add dark mode support for socket rows
1772 - BUILD: fix recent build breakage of freebsd caused by kFreeBSD build fix
1773 - BUG/MINOR: httpclient: Set conn-stream/channel EOI flags at the end of request
1774 - BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
1775 - BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
1776 - BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
1777 - BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
1778 - BUG/MEDIUM: stream: Use the front analyzers for new listener-less streams
1779 - DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
1780 - BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
1781 - DEBUG: stream: Add the missing descriptions for stream trace events
1782 - DEBUG: stream: Fix stream trace message to print response buffer state
1783 - MINOR: proxy: Store monitor_uri as a `struct ist`
1784 - MINOR: proxy: Store fwdfor_hdr_name as a `struct ist`
1785 - MINOR: proxy: Store orgto_hdr_name as a `struct ist`
1786 - MEDIUM: proxy: Store server_id_hdr_name as a `struct ist`
1787 - CLEANUP: fcgi: Replace memcpy() on ist by istcat()
1788 - CLEANUP: fcgi: Use `istadv()` in `fcgi_strm_send_params`
1789 - BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
1790 - DOC: sample fetch methods: move distcc_* to the right locations
1791 - MINOR: rules: record the last http/tcp rule that gave a final verdict
1792 - MINOR: stream: add "last_rule_file" and "last_rule_line" samples
1793 - BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()
1794 - MINOR: quic: Add max_idle_timeout advertisement handling
1795 - MEDIUM: quic: Remove the QUIC connection reference counter
1796 - BUG/MINOR: quic: ACK_REQUIRED and ACK_RECEIVED flag collision
1797 - BUG/MINOR: quic: Missing check when setting the anti-amplification limit as reached
1798 - MINOR: quic: Add a function to compute the current PTO
1799 - MEDIUM: quic: Implement the idle timeout feature
1800 - BUG/MEDIUM: quic: qc_prep_app_pkts() retries on qc_build_pkt() failures
1801 - CLEANUP: quic: Comments fix for qc_prep_(app)pkts() functions
1802 - MINOR: mux-quic: prevent push frame for unidir streams
1803 - MINOR: mux-quic: improve opportunistic retry sending for STREAM frames
1804 - MINOR: quic: implement sending confirmation
1805 - MEDIUM: mux-quic: improve bidir STREAM frames sending
1806 - MEDIUM: check: do not auto configure SSL/PROXY for dynamic servers
1807 - REGTESTS: server: test SSL/PROXY with checks for dynamic servers
1808 - MEDIUM: server: remove experimental-mode for dynamic servers
1809 - BUG/MINOR: buffer: fix debugging condition in b_peek_varint()
1810
Willy Tarreau3b1d1902022-02-25 17:12:11 +010018112022/02/25 : 2.6-dev2
1812 - DOC: management: rework the Master CLI section
1813 - DOC: management: add expert and experimental mode in 9.4.1
1814 - CLEANUP: cleanup a commentary in pcli_parse_request()
1815 - BUG/MINOR: mworker/cli: don't display help on master applet
1816 - MINOR: mworker/cli: mcli-debug-mode enables every command
1817 - MINOR: mworker/cli: add flags in the prompt
1818 - BUG/MINOR: httpclient: Revisit HC request and response buffers allocation
1819 - BUG/MEDIUM: httpclient: Xfer the request when the stream is created
1820 - MINOR: httpclient: Don't limit data transfer to 1024 bytes
1821 - BUILD: ssl: adjust guard for X509_get_X509_PUBKEY(x)
1822 - REGTESTS: ssl: skip show_ssl_ocspresponse.vtc when BoringSSL is used
1823 - MINOR: quic: Do not modify a marked as consumed datagram
1824 - MINOR: quic: Wrong datagram buffer passed to quic_lstnr_dgram_dispatch()
1825 - MINOR: quic: Remove a useless test in quic_get_dgram_dcid()
1826 - BUG/MINOR: ssl: Remove empty lines from "show ssl ocsp-response <id>" output
1827 - CLEANUP: ssl: Remove unused ssl_sock_create_cert function
1828 - MINOR: ssl: Use high level OpenSSL APIs in sha2 converter
1829 - MINOR: ssl: Remove EC_KEY related calls when preparing SSL context
1830 - REGTESTS: ssl: Add test for "curves" and "ecdhe" SSL options
1831 - MINOR: ssl: Remove EC_KEY related calls when creating a certificate
1832 - REGTESTS: ssl: Add test for "generate-certificates" SSL option
1833 - MINOR: ssl: Remove call to SSL_CTX_set_tlsext_ticket_key_cb with OpenSSLv3
1834 - MINOR: ssl: Remove call to HMAC_Init_ex with OpenSSLv3
1835 - MINOR: h3: hardcode the stream id of control stream
1836 - MINOR: mux-quic: remove quic_transport_params_update
1837 - MINOR: quic: rename local tid variable
1838 - MINOR: quic: remove unused xprt rcv_buf operation
1839 - MINOR: quic: take out xprt snd_buf operation
1840 - CI: enable QUIC for Coverity scan
1841 - BUG/MINOR: mworker: does not erase the pidfile upon reload
1842 - MINOR: ssl: Remove call to ERR_func_error_string with OpenSSLv3
1843 - MINOR: ssl: Remove call to ERR_load_SSL_strings with OpenSSLv3
1844 - REGTESTS: ssl: Add tests for DH related options
1845 - MINOR: ssl: Create HASSL_DH wrapper structure
1846 - MINOR: ssl: Add ssl_sock_get_dh_from_bio helper function
1847 - MINOR: ssl: Factorize ssl_get_tmp_dh and append a cbk to its name
1848 - MINOR: ssl: Add ssl_sock_set_tmp_dh helper function
1849 - MINOR: ssl: Add ssl_sock_set_tmp_dh_from_pkey helper function
1850 - MINOR: ssl: Add ssl_new_dh_fromdata helper function
1851 - MINOR: ssl: Build local DH of right size when needed
1852 - MINOR: ssl: Set default dh size to 2048
1853 - MEDIUM: ssl: Replace all DH objects by EVP_PKEY on OpenSSLv3 (via HASSL_DH type)
1854 - MINOR: ssl: Remove calls to SSL_CTX_set_tmp_dh_callback on OpenSSLv3
1855 - MINOR: quic: Remove an RX buffer useless lock
1856 - MINOR: quic: Variable used before being checked in ha_quic_add_handshake_data()
1857 - MINOR: quic: EINTR error ignored
1858 - MINOR: quic: Potential overflow expression in qc_parse_frm()
1859 - MINOR: quic: Possible overflow in qpack_get_varint()
1860 - CLEANUP: h3: Unreachable target in h3_uqs_init()
1861 - MINOR: quic: Possible memleak in qc_new_conn()
1862 - MINOR: quic: Useless statement in quic_crypto_data_cpy()
1863 - BUG/MEDIUM: pools: ensure items are always large enough for the pool_cache_item
1864 - BUG/MINOR: pools: always flush pools about to be destroyed
1865 - CLEANUP: pools: don't needlessly set a call mark during refilling of caches
1866 - DEBUG: pools: add extra sanity checks when picking objects from a local cache
1867 - DEBUG: pools: let's add reverse mapping from cache heads to thread and pool
1868 - DEBUG: pools: replace the link pointer with the caller's address on pool_free()
1869 - BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
1870 - MINOR: quic: use a global dghlrs for each thread
1871 - BUG/MEDIUM: quic: fix crash on CC if mux not present
1872 - MINOR: qpack: fix typo in trace
1873 - BUG/MINOR: quic: fix FIN stream signaling
1874 - BUG/MINOR: h3: fix the header length for QPACK decoding
1875 - MINOR: h3: remove transfer-encoding header
1876 - MINOR: h3: add documentation on h3_decode_qcs
1877 - MINOR: h3: set properly HTX EOM/BODYLESS on HEADERS parsing
1878 - MINOR: mux-quic: implement rcv_buf
1879 - MINOR: mux-quic: set EOS on rcv_buf
1880 - MINOR: h3: set CS_FL_NOT_FIRST
1881 - MINOR: h3: report frames bigger than rx buffer
1882 - MINOR: h3: extract HEADERS parsing in a dedicated function
1883 - MINOR: h3: implement DATA parsing
1884 - MINOR: quic: Wrong smoothed rtt initialization
1885 - MINOR: quic: Wrong loss delay computation
1886 - MINOR: quic: Code never reached in qc_ssl_sess_init()
1887 - MINOR: quic: ha_quic_set_encryption_secrets without server specific code
1888 - MINOR: quic: Avoid warning about NULL pointer dereferences
1889 - MINOR: quic: Useless test in quic_lstnr_dghdlr()
1890 - MINOR: quic: Non checked returned value for cs_new() in hq_interop_decode_qcs()
1891 - MINOR: h3: Dead code in h3_uqs_init()
1892 - MINOR: quic: Non checked returned value for cs_new() in h3_decode_qcs()
1893 - MINOR: quic: Possible frame parsers array overrun
1894 - MINOR: quic: Do not retransmit too much packets.
1895 - MINOR: quic: Move quic_rxbuf_pool pool out of xprt part
1896 - MINOR: h3: report error on HEADERS/DATA parsing
1897 - BUG/MINOR: jwt: Double free in deinit function
1898 - BUG/MINOR: jwt: Missing pkey free during cleanup
1899 - BUG/MINOR: jwt: Memory leak if same key is used in multiple jwt_verify calls
1900 - BUG/MINOR: httpclient/cli: display junk characters in vsn
1901 - MINOR: h3: remove unused return value on decode_qcs
1902 - BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
1903 - BUG/MAJOR: spoe: properly detach all agents when releasing the applet
1904 - REGTESTS: server: close an occasional race on dynamic_server_ssl.vtc
1905 - REGTESTS: peers: leave a bit more time to peers to synchronize
1906 - BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change
1907 - BUG/MINOR: mux-h2: update the session's idle delay before creating the stream
1908 - BUG/MINOR: httpclient: reinit flags in httpclient_start()
1909 - BUG/MINOR: mailers: negotiate SMTP, not ESMTP
1910 - MINOR: httpclient: sets an alternative destination
1911 - MINOR: httpclient/lua: add 'dst' optionnal field
1912 - BUG/MINOR: ssl: Add missing return value check in ssl_ocsp_response_print
1913 - BUG/MINOR: ssl: Fix leak in "show ssl ocsp-response" CLI command
1914 - BUG/MINOR: ssl: Missing return value check in ssl_ocsp_response_print
1915 - CLEANUP: httpclient/cli: fix indentation alignment of the help message
1916 - BUG/MINOR: tools: url2sa reads ipv4 too far
1917 - BUG/MEDIUM: httpclient: limit transfers to the maximum available room
1918 - DEBUG: buffer: check in __b_put_blk() whether the buffer room is respected
1919 - MINOR: mux-quic: fix a possible null dereference in qc_timeout_task
1920 - BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message
1921 - BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
1922 - BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
1923 - DEBUG: stream-int: Check CS_FL_WANT_ROOM is not set with an empty input buffer
1924 - MINOR: quic: do not modify offset node if quic_rx_strm_frm in tree
1925 - MINOR: h3: fix compiler warning variable set but not used
1926 - MINOR: mux-quic: fix uninitialized return on qc_send
1927 - MINOR: quic: fix handling of out-of-order received STREAM frames
1928 - MINOR: pools: mark most static pool configuration variables as read-mostly
1929 - CLEANUP: pools: remove the now unused pool_is_crowded()
1930 - REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks
1931 - BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
1932 - MINOR: httpclient/lua: ability to set a server timeout
1933 - BUG/MINOR: httpclient/lua: missing pop for new timeout parameter
1934 - DOC: httpclient/lua: fix the type of the dst parameter
1935 - CLEANUP: httpclient: initialize the client in stage INIT not REGISTER
1936 - CLEANUP: muxes: do not use a dynamic trash in list_mux_protos()
1937 - CLEANUP: vars: move the per-process variables initialization to vars.c
1938 - CLEANUP: init: remove the ifdef on HAPROXY_MEMMAX
1939 - MINOR: pools: disable redundant poisonning on pool_free()
1940 - MINOR: pools: introduce a new pool_debugging global variable
1941 - MINOR: pools: switch the fail-alloc test to runtime only
1942 - MINOR: pools: switch DEBUG_DONT_SHARE_POOLS to runtime
1943 - MINOR: pools: add a new debugging flag POOL_DBG_COLD_FIRST
1944 - MINOR: pools: add a new debugging flag POOL_DBG_INTEGRITY
1945 - MINOR: pools: make the global pools a runtime option.
1946 - MEDIUM: pools: replace CONFIG_HAP_POOLS with a runtime "NO_CACHE" flag.
1947 - MINOR: pools: store the allocated size for each pool
1948 - MINOR: pools: get rid of POOL_EXTRA
1949 - MINOR: pools: replace DEBUG_POOL_TRACING with runtime POOL_DBG_CALLER
1950 - MINOR: pools: replace DEBUG_MEMORY_POOLS with runtime POOL_DBG_TAG
1951 - MINOR: pools: add a debugging flag for memory poisonning option
1952 - MEDIUM: initcall: move STG_REGISTER earlier
1953 - MEDIUM: init: split the early initialization in its own function
1954 - MINOR: init: extract args parsing to their own function
1955 - MEDIUM: init: handle arguments earlier
1956 - MINOR: pools: delegate parsing of command line option -dM to a new function
1957 - MINOR: pools: support setting debugging options using -dM
1958 - BUILD: makefile: enable both DEBUG_STRICT and DEBUG_MEMORY_POOLS by default
1959 - CI: github: enable pool debugging by default
1960 - DOC: Fix usage/examples of deprecated ACLs
1961 - DOC: internal: update the pools API to mention boot-time settings
1962 - DOC: design: add design thoughts for later simplification of the pools
1963 - DOC: design: commit the temporary design notes on thread groups
1964 - MINOR: stream-int: Handle appctx case first when releasing the endpoint
1965 - MINOR: connection: Be prepared to handle conn-stream with no connection
1966 - MINOR: stream: Handle appctx case first when creating a new stream
1967 - MINOR: connection: Add a function to detach a conn-stream from the connection
1968 - MINOR: stream-int: Add function to reset a SI endpoint
1969 - MINOR: stream-int: Add function to attach a connection to a SI
1970 - MINOR: stream-int: Be able to allocate a CS without connection
1971 - MEDIUM: stream: No longer release backend conn-stream on connection retry
1972 - MEDIUM: stream: Allocate backend CS when the stream is created
1973 - REORG: conn_stream: move conn-stream stuff in dedicated files
1974 - MEDIUM: conn-stream: No longer access connection field directly
1975 - MEDIUM: conn-stream: Be prepared to use an appctx as conn-stream endpoint
1976 - MAJOR: conn_stream/stream-int: move the appctx to the conn-stream
1977 - MEDIUM: applet: Set the conn-stream as appctx owner instead of the stream-int
1978 - MEDIUM: conn_stream: Add a pointer to the app object into the conn-stream
1979 - MINOR: stream: Add pointer to front/back conn-streams into stream struct
1980 - MINOR: stream: Slightly rework stream_new to separate CS/SI initialization
1981 - MINOR: stream-int: Always access the stream-int via the conn-stream
1982 - MINOR: backend: Always access the stream-int via the conn-stream
1983 - MINOR: stream: Always access the stream-int via the conn-stream
1984 - MINOR: http-ana: Always access the stream-int via the conn-stream
1985 - MINOR: cli: Always access the stream-int via the conn-stream
1986 - MINOR: log: Always access the stream-int via the conn-stream
1987 - MINOR: frontend: Always access the stream-int via the conn-stream
1988 - MINOR: proxy: Always access the stream-int via the conn-stream
1989 - MINOR: peers: Always access the stream-int via the conn-stream
1990 - MINOR: debug: Always access the stream-int via the conn-stream
1991 - MINOR: hlua: Always access the stream-int via the conn-stream
1992 - MINOR: cache: Always access the stream-int via the conn-stream
1993 - MINOR: dns: Always access the stream-int via the conn-stream
1994 - MINOR: http-act: Always access the stream-int via the conn-stream
1995 - MINOR: httpclient: Always access the stream-int via the conn-stream
1996 - MINOR: tcp-act: Always access the stream-int via the conn-stream
1997 - MINOR: sink: Always access the stream-int via the conn-stream
1998 - MINOR: conn-stream: Rename cs_detach() to cs_detach_endp()
1999 - CLEANUP: conn-stream: Don't export conn-stream pool
2000 - MAJOR: stream/conn_stream: Move the stream-interface into the conn-stream
2001 - CLEANUP: stream-int: rename si_reset() to si_init()
2002 - MINOR: conn-stream: Release a CS when both app and endp are detached
2003 - MINOR: stream: Don't destroy conn-streams but detach app and endp
2004 - MAJOR: check: Use a persistent conn-stream for health-checks
2005 - CLEANUP: conn-stream: Remove cs_destroy()
2006 - CLEANUP: backend: Don't export connect_server anymore
2007 - BUG/MINOR: h3/hq_interop: Fix CS and stream creation
2008 - BUILD: tree-wide: Avoid warnings about undefined entities retrieved from a CS
2009 - BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()
2010 - BUG/MEDIUM: quic: fix received ACK stream calculation
2011 - BUILD: stream: fix build warning with older compilers
2012 - BUG/MINOR: debug: fix get_tainted() to properly read an atomic value
2013 - DEBUG: move the tainted stuff to bug.h for easier inclusion
2014 - DEBUG: cleanup back trace generation
2015 - DEBUG: cleanup BUG_ON() configuration
2016 - DEBUG: mark ABORT_NOW() as unreachable
2017 - DBEUG: add a new WARN_ON() macro
2018 - DEBUG: make the _BUG_ON() macro return the condition
2019 - DEBUG: add a new WARN_ON_ONCE() macro
2020 - DEBUG: report BUG_ON() and WARN_ON() in the tainted flags
2021 - MINOR: quic: adjust buffer handling for STREAM transmission
2022 - MINOR: quic: liberate the TX stream buffer after ACK processing
2023 - MINOR: quic: add a TODO for a memleak frame on ACK consume
2024
Willy Tarreau2454d6e2022-02-01 18:06:59 +010020252022/02/01 : 2.6-dev1
2026 - BUG/MINOR: cache: Fix loop on cache entries in "show cache"
2027 - BUG/MINOR: httpclient: allow to replace the host header
2028 - BUG/MINOR: lua: don't expose internal proxies
2029 - MEDIUM: mworker: seamless reload use the internal sockpairs
2030 - BUG/MINOR: lua: remove loop initial declarations
2031 - BUG/MINOR: mworker: does not add the -sf in wait mode
2032 - BUG/MEDIUM: mworker: FD leak of the eventpoll in wait mode
2033 - MINOR: quic: do not reject PADDING followed by other frames
2034 - REORG: quic: add comment on rare thread concurrence during CID alloc
2035 - CLEANUP: quic: add comments on CID code
2036 - MEDIUM: quic: handle CIDs to rattach received packets to connection
2037 - MINOR: qpack: support litteral field line with non-huff name
2038 - MINOR: quic: activate QUIC traces at compilation
2039 - MINOR: quic: use more verbose QUIC traces set at compile-time
2040 - MEDIUM: pool: refactor malloc_trim/glibc and jemalloc api addition detections.
2041 - MEDIUM: pool: support purging jemalloc arenas in trim_all_pools()
2042 - BUG/MINOR: mworker: deinit of thread poller was called when not initialized
2043 - BUILD: pools: only detect link-time jemalloc on ELF platforms
2044 - CI: github actions: add the output of $CC -dM -E-
2045 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
2046 - BUILD: evports: remove a leftover from the dead_fd cleanup
2047 - MINOR: quic: Set "no_application_protocol" alert
2048 - MINOR: quic: More accurate immediately close.
2049 - MINOR: quic: Immediately close if no transport parameters extension found
2050 - MINOR: quic: Rename qc_prep_hdshk_pkts() to qc_prep_pkts()
2051 - MINOR: quic: Possible crash when inspecting the xprt context
2052 - MINOR: quic: Dynamically allocate the secrete keys
2053 - MINOR: quic: Add a function to derive the key update secrets
2054 - MINOR: quic: Add structures to maintain key phase information
2055 - MINOR: quic: Optional header protection key for quic_tls_derive_keys()
2056 - MINOR: quic: Add quic_tls_key_update() function for Key Update
2057 - MINOR: quic: Enable the Key Update process
2058 - MINOR: quic: Delete the ODCIDs asap
2059 - BUG/MINOR: vars: Fix the set-var and unset-var converters
2060 - MEDIUM: pool: Following up on previous pool trimming update.
2061 - BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message
2062 - BUG/MINOR: mux-h1: Fix splicing for messages with unknown length
2063 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers
2064 - MINOR: mux-h1: register a stats module
2065 - MINOR: mux-h1: add counters instance to h1c
2066 - MINOR: mux-h1: count open connections/streams on stats
2067 - MINOR: mux-h1: add stat for total count of connections/streams
2068 - MINOR: mux-h1: add stat for total amount of bytes received and sent
2069 - REGTESTS: h1: Add a script to validate H1 splicing support
2070 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context
2071 - BUG/MEDIUM: resolvers: Detach query item on response error
2072 - MEDIUM: resolvers: No longer store query items in a list into the response
2073 - BUG/MAJOR: segfault using multiple log forward sections.
2074 - BUG/MEDIUM: h1: Properly reset h1m flags when headers parsing is restarted
2075 - BUG/MINOR: resolvers: Don't overwrite the error for invalid query domain name
2076 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH
2077 - BUG/MEDIUM: sample: Fix memory leak in sample_conv_jwt_member_query
2078 - DOC: spoe: Clarify use of the event directive in spoe-message section
2079 - DOC: config: Specify %Ta is only available in HTTP mode
2080 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types
2081 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode
2082 - MINOR: quic: fix segfault on CONNECTION_CLOSE parsing
2083 - MINOR: h3: add BUG_ON on control receive function
2084 - MEDIUM: xprt-quic: finalize app layer initialization after ALPN nego
2085 - MINOR: h3: remove duplicated FIN flag position
2086 - MAJOR: mux-quic: implement a simplified mux version
2087 - MEDIUM: mux-quic: implement release mux operation
2088 - MEDIUM: quic: detect the stream FIN
2089 - MINOR: mux-quic: implement subscribe on stream
2090 - MEDIUM: mux-quic: subscribe on xprt if remaining data after send
2091 - MEDIUM: mux-quic: wake up xprt on data transferred
2092 - MEDIUM: mux-quic: handle when sending buffer is full
2093 - MINOR: quic: RX buffer full due to wrong CRYPTO data handling
2094 - MINOR: quic: Race issue when consuming RX packets buffer
2095 - MINOR: quic: QUIC encryption level RX packets race issue
2096 - MINOR: quic: Delete remaining RX handshake packets
2097 - MINOR: quic: Remove QUIC TX packet length evaluation function
2098 - MINOR: hq-interop: fix tx buffering
2099 - MINOR: mux-quic: remove uneeded code to check fin on TX
2100 - MINOR: quic: add HTX EOM on request end
2101 - BUILD: mux-quic: fix compilation with DEBUG_MEM_STATS
2102 - MINOR: http-rules: Add capture action to http-after-response ruleset
2103 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id
2104 - MINOR: mux-quic: do not release qcs if there is remaining data to send
2105 - MINOR: quic: notify the mux on CONNECTION_CLOSE
2106 - BUG/MINOR: mux-quic: properly initialize flow control
2107 - MINOR: quic: Compilation fix for quic_rx_packet_refinc()
2108 - MINOR: h3: fix possible invalid dereference on htx parsing
2109 - DOC: config: retry-on list is space-delimited
2110 - DOC: config: fix error-log-format example
2111 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
2112 - MINOR: hq-interop: refix tx buffering
2113 - REGTESTS: ssl: use X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY for cert check
2114 - MINOR: cli: "show version" displays the current process version
2115 - CLEANUP: cfgparse: modify preprocessor guards around numa detection code
2116 - MEDIUM: cfgparse: numa detect topology on FreeBSD.
2117 - BUILD: ssl: unbreak the build with newer libressl
2118 - MINOR: vars: Move UPDATEONLY flag test to vars_set_ifexist
2119 - MINOR: vars: Set variable type to ANY upon creation
2120 - MINOR: vars: Delay variable content freeing in var_set function
2121 - MINOR: vars: Parse optional conditions passed to the set-var converter
2122 - MINOR: vars: Parse optional conditions passed to the set-var actions
2123 - MEDIUM: vars: Enable optional conditions to set-var converter and actions
2124 - DOC: vars: Add documentation about the set-var conditions
2125 - REGTESTS: vars: Add new test for conditional set-var
2126 - MINOR: quic: Attach timer task to thread for the connection.
2127 - CLEANUP: quic_frame: Remove a useless suffix to STOP_SENDING
2128 - MINOR: quic: Add traces for STOP_SENDING frame and modify others
2129 - CLEANUP: quic: Remove cdata_len from quic_tx_packet struct
2130 - MINOR: quic: Enable TLS 0-RTT if needed
2131 - MINOR: quic: No TX secret at EARLY_DATA encryption level
2132 - MINOR: quic: Add quic_set_app_ops() function
2133 - MINOR: ssl_sock: Set the QUIC application from ssl_sock_advertise_alpn_protos.
2134 - MINOR: quic: Make xprt support 0-RTT.
2135 - MINOR: qpack: Missing check for truncated QPACK fields
2136 - CLEANUP: quic: Comment fix for qc_strm_cpy()
2137 - MINOR: hq_interop: Stop BUG_ON() truncated streams
2138 - MINOR: quic: Do not mix packet number space and connection flags
2139 - CLEANUP: quic: Shorten a litte bit the traces in lstnr_rcv_pkt()
2140 - MINOR: mux-quic: fix trace on stream creation
2141 - CLEANUP: quic: fix spelling mistake in a trace
2142 - CLEANUP: quic: rename quic_conn conn to qc in quic_conn_free
2143 - MINOR: quic: add missing lock on cid tree
2144 - MINOR: quic: rename constant for haproxy CIDs length
2145 - MINOR: quic: refactor concat DCID with address for Initial packets
2146 - MINOR: quic: compare coalesced packets by DCID
2147 - MINOR: quic: refactor DCID lookup
2148 - MINOR: quic: simplify the removal from ODCID tree
2149 - REGTESTS: vars: Remove useless ssl tunes from conditional set-var test
2150 - MINOR: ssl: Remove empty lines from "show ssl ocsp-response" output
2151 - MINOR: quic: Increase the RX buffer for each connection
2152 - MINOR: quic: Add a function to list remaining RX packets by encryption level
2153 - MINOR: quic: Stop emptying the RX buffer asap.
2154 - MINOR: quic: Do not expect to receive only one O-RTT packet
2155 - MINOR: quic: Do not forget STREAM frames received in disorder
2156 - MINOR: quic: Wrong packet refcount handling in qc_pkt_insert()
2157 - DOC: fix misspelled keyword "resolve_retries" in resolvers
2158 - CLEANUP: quic: rename quic_conn instances to qc
2159 - REORG: quic: move mux function outside of xprt
2160 - MINOR: quic: add reference to quic_conn in ssl context
2161 - MINOR: quic: add const qualifier for traces function
2162 - MINOR: trace: add quic_conn argument definition
2163 - MINOR: quic: use quic_conn as argument to traces
2164 - MINOR: quic: add quic_conn instance in traces for qc_new_conn
2165 - MINOR: quic: Add stream IDs to qcs_push_frame() traces
2166 - MINOR: quic: unchecked qc_retrieve_conn_from_cid() returned value
2167 - MINOR: quic: Wrong dropped packet skipping
2168 - MINOR: quic: Handle the cases of overlapping STREAM frames
2169 - MINOR: quic: xprt traces fixes
2170 - MINOR: quic: Drop asap Retry or Version Negotiation packets
2171 - MINOR: pools: work around possibly slow malloc_trim() during gc
2172 - DEBUG: ssl: make sure we never change a servername on established connections
2173 - MINOR: quic: Add traces for RX frames (flow control related)
2174 - MINOR: quic: Add CONNECTION_CLOSE phrase to trace
2175 - REORG: quic: remove qc_ prefix on functions which not used it directly
2176 - BUG/MINOR: quic: upgrade rdlock to wrlock for ODCID removal
2177 - MINOR: quic: remove unnecessary call to free_quic_conn_cids()
2178 - MINOR: quic: store ssl_sock_ctx reference into quic_conn
2179 - MINOR: quic: remove unnecessary if in qc_pkt_may_rm_hp()
2180 - MINOR: quic: replace usage of ssl_sock_ctx by quic_conn
2181 - MINOR: quic: delete timer task on quic_close()
2182 - MEDIUM: quic: implement refcount for quic_conn
2183 - BUG/MINOR: quic: fix potential null dereference
2184 - BUG/MINOR: quic: fix potential use of uninit pointer
2185 - BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch
2186 - BUG/MEDIUM: peers: properly skip conn_cur from incoming messages
2187 - CI: Github Actions: do not show VTest failures if build failed
2188 - BUILD: opentracing: display warning in case of using OT_USE_VARS at compile time
2189 - MINOR: compat: detect support for dl_iterate_phdr()
2190 - MINOR: debug: add ability to dump loaded shared libraries
2191 - MINOR: debug: add support for -dL to dump library names at boot
2192 - BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server
2193 - REGTESTS: ssl: fix ssl_default_server.vtc
2194 - BUG/MINOR: ssl: free the fields in srv->ssl_ctx
2195 - BUG/MEDIUM: ssl: free the ckch instance linked to a server
2196 - REGTESTS: ssl: update of a crt with server deletion
2197 - BUILD/MINOR: cpuset FreeBSD 14 build fix.
2198 - MINOR: pools: always evict oldest objects first in pool_evict_from_local_cache()
2199 - DOC: pool: document the purpose of various structures in the code
2200 - CLEANUP: pools: do not use the extra pointer to link shared elements
2201 - CLEANUP: pools: get rid of the POOL_LINK macro
2202 - MINOR: pool: allocate from the shared cache through the local caches
2203 - CLEANUP: pools: group list updates in pool_get_from_cache()
2204 - MINOR: pool: rely on pool_free_nocache() in pool_put_to_shared_cache()
2205 - MINOR: pool: make pool_is_crowded() always true when no shared pools are used
2206 - MINOR: pool: check for pool's fullness outside of pool_put_to_shared_cache()
2207 - MINOR: pool: introduce pool_item to represent shared pool items
2208 - MINOR: pool: add a function to estimate how many may be released at once
2209 - MEDIUM: pool: compute the number of evictable entries once per pool
2210 - MINOR: pools: prepare pool_item to support chained clusters
2211 - MINOR: pools: pass the objects count to pool_put_to_shared_cache()
2212 - MEDIUM: pools: centralize cache eviction in a common function
2213 - MEDIUM: pools: start to batch eviction from local caches
2214 - MEDIUM: pools: release cached objects in batches
2215 - OPTIM: pools: reduce local pool cache size to 512kB
2216 - CLEANUP: assorted typo fixes in the code and comments This is 29th iteration of typo fixes
2217 - CI: github actions: update OpenSSL to 3.0.1
2218 - BUILD/MINOR: tools: solaris build fix on dladdr.
2219 - BUG/MINOR: cli: fix _getsocks with musl libc
2220 - BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
2221 - MINOR: quic: Wrong traces after rework
2222 - MINOR: quic: Add trace about in flight bytes by packet number space
2223 - MINOR: quic: Wrong first packet number space computation
2224 - MINOR: quic: Wrong packet number space computation for PTO
2225 - MINOR: quic: Wrong loss time computation in qc_packet_loss_lookup()
2226 - MINOR: quic: Wrong ack_delay compution before calling quic_loss_srtt_update()
2227 - MINOR: quic: Remove nb_pto_dgrams quic_conn struct member
2228 - MINOR: quic: Wrong packet number space trace in qc_prep_pkts()
2229 - MINOR: quic: Useless test in qc_prep_pkts()
2230 - MINOR: quic: qc_prep_pkts() code moving
2231 - MINOR: quic: Speeding up Handshake Completion
2232 - MINOR: quic: Probe Initial packet number space more often
2233 - MINOR: quic: Probe several packet number space upon timer expiration
2234 - MINOR: quic: Comment fix.
2235 - MINOR: quic: Improve qc_prep_pkts() flexibility
2236 - MINOR: quic: Do not drop secret key but drop the CRYPTO data
2237 - MINOR: quic: Prepare Handshake packets asap after completed handshake
2238 - MINOR: quic: Flag asap the connection having reached the anti-amplification limit
2239 - MINOR: quic: PTO timer too often reset
2240 - MINOR: quic: Re-arm the PTO timer upon datagram receipt
2241 - MINOR: proxy: add option idle-close-on-response
2242 - MINOR: cpuset: switch to sched_setaffinity for FreeBSD 14 and above.
2243 - CI: refactor spelling check
2244 - CLEANUP: assorted typo fixes in the code and comments
2245 - BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning
2246 - MINOR: quic: Only one CRYPTO frame by encryption level
2247 - MINOR: quic: Missing retransmission from qc_prep_fast_retrans()
2248 - MINOR: quic: Non-optimal use of a TX buffer
2249 - BUG/MEDIUM: mworker: don't use _getsocks in wait mode
2250 - BUG/MINOR: ssl: Store client SNI in SSL context in case of ClientHello error
2251 - BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data
2252 - DOC: internals: document the pools architecture and API
2253 - CI: github actions: clean default step conditions
2254 - BUILD: cpuset: fix build issue on macos introduced by previous change
2255 - MINOR: quic: Remaining TRACEs with connection as firt arg
2256 - MINOR: quic: Reset ->conn quic_conn struct member when calling qc_release()
2257 - MINOR: quic: Flag the connection as being attached to a listener
2258 - MINOR: quic: Wrong CRYPTO frame concatenation
2259 - MINOR: quid: Add traces quic_close() and quic_conn_io_cb()
2260 - REGTESTS: ssl: Fix ssl_errors regtest with OpenSSL 1.0.2
2261 - MINOR: quic: Do not dereference ->conn quic_conn struct member
2262 - MINOR: quic: fix return of quic_dgram_read
2263 - MINOR: quic: add config parse source file
2264 - MINOR: quic: implement Retry TLS AEAD tag generation
2265 - MEDIUM: quic: implement Initial token parsing
2266 - MINOR: quic: define retry_source_connection_id TP
2267 - MEDIUM: quic: implement Retry emission
2268 - MINOR: quic: free xprt tasklet on its thread
2269 - BUG/MEDIUM: connection: properly leave stopping list on error
2270 - MINOR: pools: enable pools with DEBUG_FAIL_ALLOC as well
2271 - MINOR: quic: As server, skip 0-RTT packet number space
2272 - MINOR: quic: Do not wakeup the I/O handler before the mux is started
2273 - BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
2274 - CI: github actions: use cache for OpenTracing
2275 - BUG/MINOR: httpclient: don't send an empty body
2276 - BUG/MINOR: httpclient: set default Accept and User-Agent headers
2277 - BUG/MINOR: httpclient/lua: don't pop the lua stack when getting headers
2278 - BUILD/MINOR: fix solaris build with clang.
2279 - BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl
2280 - CI: refactor OpenTracing build script
2281 - DOC: management: mark "set server ssl" as deprecated
2282 - MEDIUM: cli: yield between each pipelined command
2283 - MINOR: channel: add new function co_getdelim() to support multiple delimiters
2284 - BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
2285 - MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change
2286 - MINOR: quic: Retransmit the TX frames in the same order
2287 - MINOR: quic: Remove the packet number space TX MT_LIST
2288 - MINOR: quic: Splice the frames which could not be added to packets
2289 - MINOR: quic: Add the number of TX bytes to traces
2290 - CLEANUP: quic: Replace <nb_pto_dgrams> by <probe>
2291 - MINOR: quic: Send two ack-eliciting packets when probing packet number spaces
2292 - MINOR: quic: Probe regardless of the congestion control
2293 - MINOR: quic: Speeding up handshake completion
2294 - MINOR: quic: Release RX Initial packets asap
2295 - MINOR: quic: Release asap TX frames to be transmitted
2296 - MINOR: quic: Probe even if coalescing
2297 - BUG/MEDIUM: cli: Never wait for more data on client shutdown
2298 - BUG/MEDIUM: mcli: do not try to parse empty buffers
2299 - BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
2300 - BUG/MINOR: stream: make the call_rate only count the no-progress calls
2301 - MINOR: quic: do not use quic_conn after dropping it
2302 - MINOR: quic: adjust quic_conn refcount decrement
2303 - MINOR: quic: fix race-condition on xprt tasklet free
2304 - MINOR: quic: free SSL context on quic_conn free
2305 - MINOR: quic: Add QUIC_FT_RETIRE_CONNECTION_ID parsing case
2306 - MINOR: quic: Wrong packet number space selection
2307 - DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY
2308 - MINOR: quic: add missing include in quic_sock
2309 - MINOR: quic: fix indentation in qc_send_ppkts
2310 - MINOR: quic: remove dereferencement of connection when possible
2311 - MINOR: quic: set listener accept cb on parsing
2312 - MEDIUM: quic/ssl: add new ex data for quic_conn
2313 - MINOR: quic: initialize ssl_sock_ctx alongside the quic_conn
2314 - MINOR: ssl: fix build in release mode
2315 - MINOR: pools: partially uninline pool_free()
2316 - MINOR: pools: partially uninline pool_alloc()
2317 - MINOR: pools: prepare POOL_EXTRA to be split into multiple extra fields
2318 - MINOR: pools: extend pool_cache API to pass a pointer to a caller
2319 - DEBUG: pools: add new build option DEBUG_POOL_TRACING
2320 - DEBUG: cli: add a new "debug dev fd" expert command
2321 - MINOR: fd: register the write side of the poller pipe as well
2322 - CI: github actions: use cache for SSL libs
2323 - BUILD: debug/cli: condition test of O_ASYNC to its existence
2324 - BUILD: pools: fix build error on DEBUG_POOL_TRACING
2325 - MINOR: quic: refactor header protection removal
2326 - MINOR: quic: handle app data according to mux/connection layer status
2327 - MINOR: quic: refactor app-ops initialization
2328 - MINOR: receiver: define a flag for local accept
2329 - MEDIUM: quic: flag listener for local accept
2330 - MINOR: quic: do not manage connection in xprt snd_buf
2331 - MINOR: quic: remove wait handshake/L6 flags on init connection
2332 - MINOR: listener: add flags field
2333 - MINOR: quic: define QUIC flag on listener
2334 - MINOR: quic: create accept queue for QUIC connections
2335 - MINOR: listener: define per-thr struct
2336 - MAJOR: quic: implement accept queue
2337 - CLEANUP: mworker: simplify mworker_free_child()
2338 - BUILD/DEBUG: lru: update the standalone code to support the revision
2339 - DEBUG: lru: use a xorshift generator in the testing code
2340 - BUG/MAJOR: compiler: relax alignment constraints on certain structures
2341 - BUG/MEDIUM: fd: always align fdtab[] to 64 bytes
2342 - MINOR: quic: No DCID length for datagram context
2343 - MINOR: quic: Comment fix about the token found in Initial packets
2344 - MINOR: quic: Get rid of a struct buffer in quic_lstnr_dgram_read()
2345 - MINOR: quic: Remove the QUIC haproxy server packet parser
2346 - MINOR: quic: Add new defintion about DCIDs offsets
2347 - MINOR: quic: Add a list to QUIC sock I/O handler RX buffer
2348 - MINOR: quic: Allocate QUIC datagrams from sock I/O handler
2349 - MINOR: proto_quic: Allocate datagram handlers
2350 - MINOR: quic: Pass CID as a buffer to quic_get_cid_tid()
2351 - MINOR: quic: Convert quic_dgram_read() into a task
2352 - CLEANUP: quic: Remove useless definition
2353 - MINOR: proto_quic: Wrong allocations for TX rings and RX bufs
2354 - MINOR: quic: Do not consume the RX buffer on QUIC sock i/o handler side
2355 - MINOR: quic: Do not reset a full RX buffer
2356 - MINOR: quic: Attach all the CIDs to the same connection
2357 - MINOR: quic: Make usage of by datagram handler trees
2358 - MEDIUM: da: new optional data file download scheduler service.
2359 - MEDIUM: da: update doc and build for new scheduler mode service.
2360 - MEDIUM: da: update module to handle schedule mode.
2361 - MINOR: quic: Drop Initial packets with wrong ODCID
2362 - MINOR: quic: Wrong RX buffer tail handling when no more contiguous data
2363 - MINOR: quic: Iterate over all received datagrams
2364 - MINOR: quic: refactor quic CID association with threads
2365 - BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
2366 - DEV: flags: Add missing flags
2367 - BUG/MINOR: sink: Use the right field in appctx context in release callback
2368 - MINOR: sock: move the unused socket cleaning code into its own function
2369 - BUG/MEDIUM: mworker: close unused transferred FDs on load failure
2370 - BUILD: atomic: make the old HA_ATOMIC_LOAD() support const pointers
2371 - BUILD: cpuset: do not use const on the source of CPU_AND/CPU_ASSIGN
2372 - BUILD: checks: fix inlining issue on set_srv_agent_[addr,port}
2373 - BUILD: vars: avoid overlapping field initialization
2374 - BUILD: server-state: avoid using not-so-portable isblank()
2375 - BUILD: mux_fcgi: avoid aliasing of a const struct in traces
2376 - BUILD: tree-wide: mark a few numeric constants as explicitly long long
2377 - BUILD: tools: fix warning about incorrect cast with dladdr1()
2378 - BUILD: task: use list_to_mt_list() instead of casting list to mt_list
2379 - BUILD: mworker: include tools.h for platforms without unsetenv()
2380 - BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
2381 - MINOR: mworker: set the master side of ipc_fd in the worker to -1
2382 - MINOR: mworker: allocate and initialize a mworker_proc
2383 - CI: Consistently use actions/checkout@v2
2384 - REGTESTS: Remove REQUIRE_VERSION=1.8 from all tests
2385 - MINOR: mworker: sets used or closed worker FDs to -1
2386 - MINOR: quic: Try to accept 0-RTT connections
2387 - MINOR: quic: Do not try to treat 0-RTT packets without started mux
2388 - MINOR: quic: Do not try to accept a connection more than one time
2389 - MINOR: quic: Initialize the connection timer asap
2390 - MINOR: quic: Do not use connection struct xprt_ctx too soon
2391 - Revert "MINOR: mworker: sets used or closed worker FDs to -1"
2392 - BUILD: makefile: avoid testing all -Wno-* options when not needed
2393 - BUILD: makefile: validate support for extra warnings by batches
2394 - BUILD: makefile: only compute alternative options if required
2395 - DEBUG: fd: make sure we never try to insert/delete an impossible FD number
2396 - MINOR: mux-quic: add comment
2397 - MINOR: mux-quic: properly initialize qcc flags
2398 - MINOR: mux-quic: do not consider CONNECTION_CLOSE for the moment
2399 - MINOR: mux-quic: create a timeout task
2400 - MEDIUM: mux-quic: delay the closing with the timeout
2401 - MINOR: mux-quic: release idle conns on process stopping
2402 - MINOR: listener: replace the listener's spinlock with an rwlock
2403 - BUG/MEDIUM: listener: read-lock the listener during accept()
2404 - MINOR: mworker/cli: set expert/experimental mode from the CLI
2405
Willy Tarreau73dec762021-11-23 15:50:11 +010024062021/11/23 : 2.6-dev0
2407 - MINOR: version: it's development again
2408
Willy Tarreauf2e08332021-11-23 15:40:21 +010024092021/11/23 : 2.5.0
2410 - BUILD: SSL: add quictls build to scripts/build-ssl.sh
2411 - BUILD: SSL: add QUICTLS to build matrix
2412 - CLEANUP: sock: Wrap `accept4_broken = 1` into additional parenthesis
2413 - BUILD: cli: clear a maybe-unused warning on some older compilers
2414 - BUG/MEDIUM: cli: make sure we can report a warning from a bind keyword
2415 - BUG/MINOR: ssl: make SSL counters atomic
2416 - CLEANUP: assorted typo fixes in the code and comments
2417 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
2418 - MINOR: version: mention that it's stable now
2419
Willy Tarreaua99cdfb2021-11-19 19:30:04 +010024202021/11/19 : 2.5-dev15
2421 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
2422 - CLEANUP: peers: Remove useless test on peer variable in peer_trace()
2423 - DOC: log: Add comments to specify when session's listener is defined or not
2424 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
2425 - REGTESTS: ssl_crt-list_filters: feature cmd incorrectly set
2426 - DOC: internals: document the list API
2427 - BUG/MINOR: h3: ignore unknown frame types
2428 - MINOR: quic: redirect app_ops snd_buf through mux
2429 - MEDIUM: quic: inspect ALPN to install app_ops
2430 - MINOR: quic: support hq-interop
2431 - MEDIUM: quic: send version negotiation packet on unknown version
2432 - BUG/MEDIUM: mworker: cleanup the listeners when reexecuting
2433 - DOC: internals: document the scheduler API
2434 - BUG/MINOR: quic: fix version negotiation packet generation
2435 - CLEANUP: ssl: fix wrong #else commentary
2436 - MINOR: config: support default values for environment variables
2437 - SCRIPTS: run-regtests: reduce the number of processes needed to check options
2438 - SCRIPT: run-regtests: avoid several calls to grep to test for features
2439 - SCRIPT: run-regtests: avoid calling awk to compute the version
2440 - REGTEST: set retries count to zero for all tests that expect at 503
2441 - REGTESTS: make tcp-check_min-recv fail fast
2442 - REGTESTS: extend the default I/O timeouts and make them overridable
2443 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
2444 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
2445 - REGTESTS: ssl: test the TLS resumption
2446 - BUILD: makefile: stop opening sub-shells for each and every command
2447 - BUILD: makefile: reorder objects by build time
2448 - BUG/MEDIUM: mux-h2: always process a pending shut read
2449 - MINOR: quic_sock: missing CO_FL_ADDR_TO_SET flag
2450 - MINOR: quic: Possible wrong connection identification
2451 - MINOR: quic: Correctly pad UDP datagrams
2452 - MINOR: quic: Support transport parameters draft TLS extension
2453 - MINOR: quic: Anti-amplification implementation
2454 - MINOR: quic: Wrong Initial packet connection initialization
2455 - MINOR: quic: Wrong ACK range building
2456 - MINOR: quic: Update some QUIC protocol errors
2457 - MINOR: quic: Send CONNECTION_CLOSE frame upon TLS alert
2458 - MINOR: quic: Wrong largest acked packet number parsing
2459 - MINOR: quic: Add minimalistic support for stream flow control frames
2460 - MINOR: quic: Wrong value for version negotiation packet 'Unused' field
2461 - MINOR: quic: Support draft-29 QUIC version
2462 - BUG/MINOR: quic: fix segfault on trace for version negotiation
2463 - BUG/MINOR: hq-interop: fix potential NULL dereference
2464 - BUILD: quic: fix potential NULL dereference on xprt_quic
2465 - DOC: lua: documentation about the httpclient API
2466 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
2467 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
2468 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
2469 - MINOR: shctx: add a few BUG_ON() for consistency checks
2470
Willy Tarreaud83f6e62021-11-14 16:04:57 +010024712021/11/14 : 2.5-dev14
2472 - DEV: coccinelle: Remove unused `expression e`
2473 - DEV: coccinelle: Add rule to use `istend()` where possible
2474 - CLEANUP: Apply ist.cocci
2475 - CLEANUP: Re-apply xalloc_size.cocci
2476 - CLEANUP: halog: make the default usage message fit in small screens
2477 - MINOR: h3/qpack: fix gcc11 warnings
2478 - MINOR: mux-quic: fix gcc11 warning
2479 - MINOR: h3: fix potential NULL dereference
2480 - MINOR: quic: Fix potential null pointer dereference
2481 - CLEANUP: halog: remove unused strl2ui()
2482 - OPTIM: halog: improve field parser speed for modern compilers
2483 - OPTIM: halog: skip fields 64 bits at a time when supported
2484 - DEV: coccinelle: Add rule to use `isttrim()` where possible
2485 - CLEANUP: Apply ist.cocci
2486 - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_memcat()`
2487 - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`
2488 - CLEANUP: Apply ist.cocci
2489 - CLEANUP: chunk: Remove duplicated chunk_Xcat implementation
2490 - CLEANUP: chunk: remove misleading chunk_strncat() function
2491 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
2492 - Revert "DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`"
2493 - DOC: stats: fix location of the text representation
2494 - DOC: internals: document the IST API
2495 - BUG/MINOR: httpclient/lua: rcv freeze when no request payload
2496 - BUG/MEDIUM: httpclient: channel_add_input() must use htx->data
2497 - MINOR: promex: backend aggregated server check status
2498 - DOC: config: Fix typo in ssl_fc_unique_id description
2499 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
2500 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
2501 - DOC: config: Be more explicit in "allow" actions description
2502 - DOC: lua: Be explicit with the Reply object limits
2503 - MINOR: mux-h1: Slightly Improve H1 traces
2504 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
2505 - CLEANUP: mworker: remove any relative PID reference
2506 - MEDIUM: mworker: reexec in waitpid mode after successful loading
2507 - MINOR: mworker: clarify starting/failure messages
2508 - MINOR: mworker: only increment the number of reload in wait mode
2509 - MINOR: mworker: implement a reload failure counter
2510 - MINOR: mworker: ReloadFailed shown depending on failedreload
2511 - MINOR: mworker: change the way we set PROC_O_LEAVING
2512 - BUG/MINOR: mworker: doesn't launch the program postparser
2513 - DOC: management: edit the "show proc" example to show the current output
2514 - BUG/MEDIUM: httpclient/cli: free of unallocated hc->req.uri
2515 - REGTESTS: httpclient/lua: add greater body values
2516 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
2517 - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
2518 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
2519 - BUILD: makefile: simplify detection of libatomic
2520
Willy Tarreau08d32202021-11-06 09:25:57 +010025212021/11/06 : 2.5-dev13
2522 - SCRIPTS: git-show-backports: re-enable file-based filtering
2523 - MINOR: jwt: Make invalid static JWT algorithms an error in `jwt_verify` converter
2524 - MINOR: mux-h2: add trace on extended connect usage
2525 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
2526 - MINOR: stream/mux: implement websocket stream flag
2527 - MINOR: connection: implement function to update ALPN
2528 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
2529 - MEDIUM: server/backend: implement websocket protocol selection
2530 - MINOR: server: add ws keyword
2531 - BUG/MINOR: resolvers: fix sent messages were counted twice
2532 - BUG/MINOR: resolvers: throw log message if trash not large enough for query
2533 - MINOR: resolvers/dns: split dns and resolver counters in dns_counter struct
2534 - MEDIUM: resolvers: rename dns extra counters to resolvers extra counters
2535 - BUG/MINOR: jwt: Fix jwt_parse_alg incorrectly returning JWS_ALG_NONE
2536 - DOC: add QUIC instruction in INSTALL
2537 - CLEANUP: halog: Remove dead stores
2538 - DEV: coccinelle: Add ha_free.cocci
2539 - CLEANUP: Apply ha_free.cocci
2540 - DEV: coccinelle: Add rule to use `istnext()` where possible
2541 - CLEANUP: Apply ist.cocci
2542 - REGTESTS: Use `feature cmd` for 2.5+ tests (2)
2543 - DOC: internals: move some API definitions to an "api" subdirectory
2544 - MINOR: quic: Allocate listener RX buffers
2545 - CLEANUP: quic: Remove useless code
2546 - MINOR: quic: Enhance the listener RX buffering part
2547 - MINOR: quic: Remove a useless lock for CRYPTO frames
2548 - MINOR: quic: Use QUIC_LOCK QUIC specific lock label.
2549 - MINOR: backend: Get client dst address to set the server's one only if needful
2550 - MINOR: compression: Warn for 'compression offload' in defaults sections
2551 - MEDIUM: connection: rename fc_conn_err and bc_conn_err to fc_err and bc_err
2552 - DOC: configuration: move the default log formats to their own section
2553 - MINOR: ssl: make the ssl_fc_sni() sample-fetch function always available
2554 - MEDIUM: log: add the client's SNI to the default HTTPS log format
2555 - DOC: config: add an example of reasonably complete error-log-format
2556 - DOC: config: move error-log-format before custom log format
2557
Willy Tarreau35dc13f2021-11-02 18:05:41 +010025582021/11/02 : 2.5-dev12
2559 - MINOR: httpclient: support payload within a buffer
2560 - MINOR: httpclient/lua: support more HTTP methods
2561 - MINOR: httpclient/lua: return an error when it can't generate the request
2562 - CLEANUP: lua: Remove any ambiguities about lua txn execution context flags
2563 - BUG/MEDIUM: lua: fix invalid return types in hlua_http_msg_get_body
2564 - CLEANUP: connection: No longer export make_proxy_line_v1/v2 functions
2565 - CLEANUP: tools: Use const address for get_net_port() and get_host_port()
2566 - CLEANUP: lua: Use a const address to retrieve info about a connection
2567 - MINOR: connection: Add function to get src/dst without updating the connection
2568 - MINOR: session: Add src and dst addresses to the session
2569 - MINOR: stream-int: Add src and dst addresses to the stream-interface
2570 - MINOR: frontend: Rely on client src and dst addresses at stream level
2571 - MINOR: log: Rely on client addresses at the appropriate level to log messages
2572 - MINOR: session: Rely on client source address at session level to log error
2573 - MINOR: http-ana: Rely on addresses at stream level to set xff and xot headers
2574 - MINOR: http-fetch: Rely on addresses at stream level in HTTP sample fetches
2575 - MINOR: mux-fcgi: Rely on client addresses at stream level to set default params
2576 - MEDIUM: tcp-sample: Rely on addresses at the appropriate level in tcp samples
2577 - MEDIUM: connection: Rely on addresses at stream level to make proxy line
2578 - MEDIUM: backend: Rely on addresses at stream level to init server connection
2579 - MEDIUM: connection: Assign session addresses when PROXY line is received
2580 - MEDIUM: connection: Assign session addresses when NetScaler CIP proto is parsed
2581 - MEDIUM: tcp-act: Set addresses at the apprioriate level in set-(src/dst) actions
2582 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
2583 - DOC: config: Fix alphabetical order of fc_* samples
2584 - MINOR: tcp-sample: Add samples to get original info about client connection
2585 - REGTESTS: Add script to test client src/dst manipulation at different levels
2586 - MINOR: stream: Use backend stream-interface dst address instead of target_addr
2587 - BUILD: log: Fix compilation without SSL support
2588 - DEBUG: protocol: yell loudly during registration of invalid sock_domain
2589 - MINOR: protocols: add a new protocol type selector
2590 - MINOR: protocols: make use of the protocol type to select the protocol
2591 - MINOR: protocols: replace protocol_by_family() with protocol_lookup()
2592 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
2593 - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_hmac()
2594 - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_rsa_ecdsa()
2595 - DEV: coccinelle: Add realloc_leak.cocci
2596 - CLEANUP: hlua: Remove obsolete branch in `hlua_alloc()`
2597 - BUILD: atomic: prefer __atomic_compare_exchange_n() for __ha_cas_dw()
2598 - BUILD: atomic: fix build on mac/arm64
2599 - MINOR: atomic: remove the memcpy() call and dependency on string.h
2600 - MINOR: httpclient: request streaming with a callback
2601 - MINOR: httpclient/lua: handle the streaming into the lua applet
2602 - REGTESTS: lua: test httpclient with body streaming
2603 - DOC: halog: Move the `-qry` parameter into the correct section in help text
2604 - MINOR: halog: Rename -qry to -query
2605 - CLEANUP: halog: Use consistent indentation in help()
2606 - BUG/MINOR: halog: Add missing newlines in die() messages
2607 - MINOR: halog: Add support for extracting captures using -hdr
2608 - DOC: Typo fixed "it" should be "is"
2609 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
2610 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
2611 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
2612 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
2613 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
2614 - BUG/MINOR: http: http_auth_bearer fetch does not work on custom header name
2615 - BUG/MINOR: httpclient/lua: misplaced luaL_buffinit()
2616 - BUILD/MINOR: cpuset freebsd build fix
2617 - BUG/MINOR: httpclient: use a placeholder value for Host header
2618 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
2619 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
2620 - MINOR: stream: Improve dump of bogus streams
2621 - DOC/peers: some grammar fixes for peers 2.1 spec
2622 - MEDIUM: vars: make the var() sample fetch function really return type ANY
2623 - MINOR: vars: add "set-var" for "tcp-request connection" rules.
2624
Willy Tarreaub4d0cd02021-10-22 19:40:44 +020026252021/10/22 : 2.5-dev11
2626 - DEV: coccinelle: Add strcmp.cocci
2627 - CLEANUP: Apply strcmp.cocci
2628 - CI: Add `permissions` to GitHub Actions
2629 - CI: Clean up formatting in GitHub Action definitions
2630 - MINOR: add ::1 to predefined LOCALHOST acl
2631 - CLEANUP: assorted typo fixes in the code and comments
2632 - CLEANUP: Consistently `unsigned int` for bitfields
2633 - MEDIUM: resolvers: lower-case labels when converting from/to DNS names
2634 - MEDIUM: resolvers: replace bogus resolv_hostname_cmp() with memcmp()
2635 - MINOR: jwt: Empty the certificate tree during deinit
2636 - MINOR: jwt: jwt_verify returns negative values in case of error
2637 - MINOR: jwt: Do not rely on enum order anymore
2638 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
2639 - MINOR: httpclient/cli: access should be only done from expert mode
2640 - DOC: management: doc about the CLI httpclient
2641 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
2642 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
2643 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
2644 - CLEANUP: dns: always detach the appctx from the dns session on release
2645 - DEBUG: dns: add a few more BUG_ON at sensitive places
2646 - BUG/MAJOR: resolvers: add other missing references during resolution removal
2647 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
2648 - BUILD: resolvers: avoid a possible warning on null-deref
2649 - BUG/MEDIUM: resolvers: always check a valid item in query_list
2650 - CLEANUP: always initialize the answer_list
2651 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
2652 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
2653 - MEDIUM: resolvers: use a kill list to preserve the list consistency
2654 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
2655 - BUG/MEDIUM: checks: fix the starting thread for external checks
2656 - MEDIUM: resolvers: replace the answer_list with a (flat) tree
2657 - MEDIUM: resolvers: hash the records before inserting them into the tree
2658 - BUG/MAJOR: buf: fix varint API post- vs pre- increment
2659 - OPTIM: resolvers: move the eb32 node before the data in the answer_item
2660 - MINOR: list: add new macro LIST_INLIST_ATOMIC()
2661 - OPTIM: dns: use an atomic check for the list membership
2662 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
2663 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
2664 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
2665 - MINOR: mux-h2: perform a full cycle shutdown+drain on close
2666 - CLEANUP: resolvers: get rid of single-iteration loop in resolv_get_ip_from_response()
2667 - MINOR: quic: Increase the size of handshake RX UDP datagrams
2668 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
2669 - MINOR: memprof: report the delta between alloc and free on realloc()
2670 - MINOR: memprof: add one pointer size to the size of allocations
2671 - BUILD: fix compilation on NetBSD
2672 - MINOR: backend: add traces for idle connections reuse
2673 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
2674 - MINOR: backend: improve perf with tcp proxies skipping idle conns
2675 - MINOR: connection: remove unneeded memset 0 for idle conns
2676
Willy Tarreauf2b1b4d2021-10-16 15:24:22 +020026772021/10/16 : 2.5-dev10
2678 - MINOR: initcall: Rename __GLOBL and __GLOBL1.
2679 - MINOR: rules: add a new function new_act_rule() to allocate act_rules
2680 - MINOR: rules: add a file name and line number to act_rules
2681 - MINOR: stream: report the current rule in "show sess all" when known
2682 - MINOR: stream: report the current filter in "show sess all" when known
2683 - CLEANUP: stream: Properly indent current_rule line in "show sess all"
2684 - BUG/MINOR: lua: Fix lua error handling in `hlua_config_prepend_path()`
2685 - CI: github: switch to OpenSSL 3.0.0
2686 - REGTESTS: ssl: Fix references to removed option in test description
2687 - MINOR: ssl: Add ssllib_name_startswith precondition
2688 - REGTESTS: ssl: Fix ssl_errors test for OpenSSL v3
2689 - REGTESTS: ssl: Reenable ssl_errors test for OpenSSL only
2690 - REGTESTS: ssl: Use mostly TLSv1.2 in ssl_errors test
2691 - MEDIUM: mux-quic: rationalize tx buffers between qcc/qcs
2692 - MEDIUM: h3: properly manage tx buffers for large data
2693 - MINOR: mux-quic: standardize h3 settings sending
2694 - CLEANUP: h3: remove dead code
2695 - MINOR: mux-quic: implement standard method to detect if qcc is dead
2696 - MEDIUM: mux-quic: defer stream shut if remaining tx data
2697 - MINOR: mux: remove last occurences of qcc ring buffer
2698 - MINOR: quic: handle CONNECTION_CLOSE frame
2699 - REGTESTS: ssl: re-enable set_ssl_cert_bundle.vtc
2700 - MINOR: ssl: add ssl_fc_is_resumed to "option httpslog"
2701 - MINOR: http: Add http_auth_bearer sample fetch
2702 - MINOR: jwt: Parse JWT alg field
2703 - MINOR: jwt: JWT tokenizing helper function
2704 - MINOR: jwt: Insert public certificates into dedicated JWT tree
2705 - MINOR: jwt: jwt_header_query and jwt_payload_query converters
2706 - MEDIUM: jwt: Add jwt_verify converter to verify JWT integrity
2707 - REGTESTS: jwt: Add tests for the jwt_verify converter
2708 - BUILD: jwt: fix declaration of EVP_KEY in jwt-h.h
2709 - MINOR: proto_tcp: use chunk_appendf() to ouput socket setup errors
2710 - MINOR: proto_tcp: also report the attempted MSS values in error message
2711 - MINOR: inet: report the faulty interface name in "bind" errors
2712 - MINOR: protocol: report the file and line number for binding/listening errors
2713 - MINOR: protocol: uniformize protocol errors
2714 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
2715 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
2716 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
2717 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
2718 - MEDIUM: listeners: split the thread mask between receiver and bind_conf
2719 - MINOR: listeners: add clone_listener() to duplicate listeners at boot time
2720 - MEDIUM: listener: add the "shards" bind keyword
2721 - BUG/MEDIUM: resolvers: use correct storage for the target address
2722 - MINOR: resolvers: merge address and target into a union "data"
2723 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
2724 - BUG/MEDIUM: jwt: fix base64 decoding error detection
2725 - BUG/MINOR: jwt: use CRYPTO_memcmp() to compare HMACs
2726 - DOC: jwt: fix a typo in the jwt_verify() keyword description
2727 - BUG/MEDIUM: sample/jwt: fix another instance of base64 error detection
2728 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
2729 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
2730 - DOC: config: Move 'tcp-response content' at the right place
2731 - BUG/MINOR: proxy: Use .disabled field as a bitfield as documented
2732 - MINOR: proxy: Introduce proxy flags to replace disabled bitfield
2733 - MINOR: sample/arg: Be able to resolve args found in defaults sections
2734 - MEDIUM: proxy: Warn about ambiguous use of named defaults sections
2735 - MINOR: proxy: Be able to reference the defaults section used by a proxy
2736 - MINOR: proxy: Add PR_FL_READY flag on fully configured and usable proxies
2737 - MINOR: config: Finish configuration for referenced default proxies
2738 - MINOR: config: No longer remove previous anonymous defaults section
2739 - MINOR: tcpcheck: Support 2-steps args resolution in defaults sections
2740 - MEDIUM: rules/acl: Parse TCP/HTTP rules and acls defined in defaults sections
2741 - MEDIUM: tcp-rules: Eval TCP rules defined in defaults sections
2742 - MEDIUM: http-ana: Eval HTTP rules defined in defaults sections
2743 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
2744 - REGTESTS: Add scripts to test support of TCP/HTTP rules in defaults sections
2745 - DOC: config: Add documentation about TCP/HTTP rules in defaults section
2746 - DOC: config: Rework and uniformize how TCP/HTTP rules are documented
2747 - BUG/MINOR: proxy: Release ACLs and TCP/HTTP rules of default proxies
2748 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
2749 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
2750 - BUG/MINOR: listener: fix incorrect return on out-of-memory
2751 - BUG/MINOR: listener: add an error check for unallocatable trash
2752 - CLEANUP: listeners: remove unreachable code in clone_listener()
2753
Willy Tarreau4c67bd62021-10-08 18:22:24 +020027542021/10/08 : 2.5-dev9
2755 - head-truc
2756 - REGTESTS: lua: test the httpclient:get() feature
2757 - Revert "head-truc"
2758 - BUG/MEDIUM: httpclient: replace ist0 by istptr
2759 - MINOR: config: use a standard parser for the "nbthread" keyword
2760 - CLEANUP: init: remove useless test against MAX_THREADS in affinity loop
2761 - MEDIUM: init: de-uglify the per-thread affinity setting
2762 - MINOR: init: extract the setup and end of threads to their own functions
2763 - MINOR: log: Try to get the status code when MUX_EXIT_STATUS is retrieved
2764 - MINOR: mux-h1: Set error code if possible when MUX_EXIT_STATUS is returned
2765 - MINOR: mux-h1: Be able to set custom status code on parsing error
2766 - MEDIUM: mux-h1: Reject HTTP/1.0 GET/HEAD/DELETE requests with a payload
2767 - MEDIUM: h1: Force close mode for invalid uses of T-E header
2768 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
2769 - MINOR: http: Add 422-Unprocessable-Content error message
2770 - MINOR: h1: Change T-E header parsing to fail if chunked encoding is found twice
2771 - BUG/MEDIUM: mux-h1/mux-fcgi: Reject messages with unknown transfer encoding
2772 - REGTESTS: Add script to validate T-E header parsing
2773 - REORG: pools: move default settings to defaults.h
2774 - DOC: peers: fix doc "enable" statement on "peers" sections
2775 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
2776 - MINOR: ssl: Set connection error code in case of SSL read or write fatal failure
2777 - MINOR: ssl: Rename ssl_bc_hsk_err to ssl_bc_err
2778 - MINOR: ssl: Store the last SSL error code in case of read or write failure
2779 - REGTESTS: ssl: enable show_ssl_ocspresponse.vtc again
2780 - REGTESTS: ssl: enable ssl_crt-list_filters.vtc again
2781 - BUG/MEDIUM: lua: fix wakeup condition from sleep()
2782 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
2783 - MINOR: arg: Be able to forbid unresolved args when building an argument list
2784 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
2785 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
2786 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
2787 - REGTESTS: ssl: show_ssl_ocspresponse w/ freebsd won't use base64
2788 - REGTESTS: ssl: wrong feature cmd in show_ssl_ocspresponse.vtc
2789 - CLEANUP: tasks: remove the long-unused work_lists
2790 - MINOR: task: provide 3 task_new_* wrappers to simplify the API
2791 - MINOR: time: uninline report_idle() and move it to task.c
2792 - REORG: sched: move idle time calculation from time.h to task.h
2793 - REORG: sched: move the stolen CPU time detection to sched_entering_poll()
2794 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
2795 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
2796 - MINOR: httpclient: destroy() must free the headers and the ists
2797 - MINOR: httpclient: set HTTPCLIENT_F_ENDED only in release
2798 - MINOR: httpclient: stop_and_destroy() ask the applet to autokill
2799 - MINOR: httpclient: test if started during stop_and_destroy()
2800 - MINOR: httpclient/lua: implement garbage collection
2801 - BUG/MEDIUM: httpclient/lua: crash because of b_xfer and get_trash_chunk()
2802 - MINOR: httpclient: destroy checks if a client was started but not stopped
2803 - BUG/MINOR: httpclient/lua: does not process headers when failed
2804 - MINOR: httpclient/lua: supports headers via named arguments
2805 - CLEANUP: server: always include the storage for SSL settings
2806 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
2807 - CLEANUP: sample: uninline sample_conv_var2smp_str()
2808 - MINOR: sample: provide a generic var-to-sample conversion function
2809 - BUG/MEDIUM: sample: properly verify that variables cast to sample
2810 - BUILD: action: add the relevant structures for function arguments
2811 - BUILD: extcheck: needs to include stream-t.h
2812 - BUILD: hlua: needs to include stream-t.h
2813 - BUILD: stats: define several missing structures in stats.h
2814 - BUILD: resolvers: define missing types in resolvers.h
2815 - BUILD: httpclient: include missing ssl_sock-t
2816 - BUILD: sample: include openssl-compat
2817 - BUILD: http_ana: need to include proxy-t to get redirect_rule
2818 - BUILD: http_rules: requires http_ana-t.h for REDIRECT_*
2819 - BUILD: vars: need to include xxhash
2820 - BUILD: peers: need to include eb{32/mb/pt}tree.h
2821 - BUILD: ssl_ckch: include ebpttree.h in ssl_ckch.c
2822 - BUILD: compiler: add the container_of() and container_of_safe() macros
2823 - BUILD: idleconns: include missing ebmbtree.h at several places
2824 - BUILD: connection: connection.h needs list.h and server.h
2825 - BUILD: tree-wide: add missing http_ana.h from many places
2826 - BUILD: cfgparse-ssl: add missing errors.h
2827 - BUILD: tcp_sample: include missing errors.h and session-t.h
2828 - BUILD: mworker: mworker-prog needs time.h for the 'now' variable
2829 - BUILD: tree-wide: add several missing activity.h
2830 - BUILD: compat: fix -Wundef on SO_REUSEADDR
2831 - CLEANUP: pools: pools-t.h doesn't need to include thread-t.h
2832 - REORG: pools: uninline the UAF allocator and force-inline the rest
2833 - REORG: thread: uninline the lock-debugging code
2834 - MINOR: thread/debug: replace nsec_now() with now_mono_time()
2835 - CLEANUP: remove some unneeded includes from applet-t.h
2836 - REORG: listener: move bind_conf_alloc() and listener_state_str() to listener.c
2837 - CLEANUP: listeners: do not include openssl-compat
2838 - CLEANUP: servers: do not include openssl-compat
2839 - REORG: ssl: move ssl_sock_is_ssl() to connection.h and rename it
2840 - CLEANUP: mux_fcgi: remove dependency on ssl_sock
2841 - CLEANUP: ssl/server: move ssl_sock_set_srv() to srv_set_ssl() in server.c
2842 - REORG: ssl-sock: move the sslconns/totalsslconns counters to global
2843 - REORG: sample: move the crypto samples to ssl_sample.c
2844 - REORG: sched: moved samp_time and idle_time to task.c as well
2845 - REORG: time/ticks: move now_ms and global_now_ms definitions to ticks.h
2846 - CLEANUP: tree-wide: remove unneeded include time.h in ~20 files
2847 - REORG: activity: uninline activity_count_runtime()
2848 - REORG: acitvity: uninline sched_activity_entry()
2849 - CLEANUP: stream: remove many unneeded includes from stream-t.h
2850 - CLEANUP: stick-table: no need to include socket nor in.h
2851 - MINOR: connection: use uint64_t for the hashes
2852 - REORG: connection: move the hash-related stuff to connection.c
2853 - REORG: connection: uninline conn_notify_mux() and conn_delete_from_tree()
2854 - REORG: server: uninline the idle conns management functions
2855 - REORG: ebtree: split structures into their own file ebtree-t.h
2856 - CLEANUP: tree-wide: only include ebtree-t from type files
2857 - REORG: connection: move the largest inlines from connection.h to connection.c
2858 - CLEANUP: connection: do not include http_ana!
2859 - CLEANUP: connection: remove unneeded tcpcheck-t.h and use only session-t.h
2860 - REORG: connection: uninline the rest of the alloc/free stuff
2861 - REORG: task: uninline the loop time measurement code
2862 - CLEANUP: time: move a few configurable defines to defaults.h
2863 - CLEANUP: fd: do not include time.h
2864 - REORG: fd: uninline compute_poll_timeout()
2865 - CLENAUP: wdt: use ha_tkill() instead of accessing pthread directly
2866 - REORG: thread: move the thread init/affinity/stop to thread.c
2867 - REORG: thread: move ha_get_pthread_id() to thread.c
2868 - MINOR: thread: use a dedicated static pthread_t array in thread.c
2869 - CLEANUP: thread: uninline ha_tkill/ha_tkillall/ha_cpu_relax()
2870 - DOC: configuration: add clarification on escaping in keyword arguments
2871 - BUG/MINOR: task: fix missing include with DEBUG_TASK
2872 - MINOR: pools: report the amount used by thread caches in "show pools"
2873 - MINOR: quic: Distinguish packet and SSL read enc. level in traces
2874 - MINOR: quic: Add a function to dump SSL stack errors
2875 - MINOR: quic: BUG_ON() SSL errors.
2876 - MINOR: quic: Fix SSL error issues (do not use ssl_bio_and_sess_init())
2877 - BUG/MEDIUM: mux-quic: reinsert all streams in by_id tree
2878 - BUG/MAJOR: xprt-quic: do not queue qc timer if not set
2879 - MINOR: mux-quic: release connection if no more bidir streams
2880 - BUG/MAJOR: quic: remove qc from receiver cids tree on free
2881 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
2882 - MINOR: qpack: do not encode invalid http status code
2883 - MINOR: qpack: support non-indexed http status code encoding
2884 - MINOR: qpack: fix memory leak on huffman decoding
2885 - CLEANUP: mux-quic: remove unused code
2886 - BUG/MINOR: quic: fix includes for compilation
2887 - BUILD: connection: avoid a build warning on FreeBSD with SO_USER_COOKIE
2888 - BUILD: init: avoid a build warning on FreeBSD with USE_PROCCTL
2889 - REORG: time: move time-keeping code and variables to clock.c
2890 - REORG: clock: move the updates of cpu/mono time to clock.c
2891 - MINOR: activity: get the run_time from the clock updates
2892 - CLEANUP: clock: stop exporting before_poll and after_poll
2893 - REORG: clock: move the clock_id initialization to clock.c
2894 - REORG: clock/wdt: move wdt timer initialization to clock.c
2895 - MINOR: clock: move the clock_ids to clock.c
2896 - MINOR: wdt: move wd_timer to wdt.c
2897 - CLEANUP: wdt: do not remap SI_TKILL to SI_LWP, test the values directly
2898 - REORG: thread/sched: move the task_per_thread stuff to thread_ctx
2899 - REORG: thread/clock: move the clock parts of thread_info to thread_ctx
2900 - REORG: thread/sched: move the thread_info flags to the thread_ctx
2901 - REORG: thread/sched: move the last dynamic thread_info to thread_ctx
2902 - MINOR: thread: make "ti" a const pointer and clean up thread_info a bit
2903 - MINOR: threads: introduce a minimalistic notion of thread-group
2904 - MINOR: global: add a new "thread-groups" directive
2905 - MINOR: global: add a new "thread-group" directive
2906 - MINOR: threads: make tg point to the current thread's group
2907 - MEDIUM: threads: automatically assign threads to groups
2908 - MINOR: threads: set the group ID and its bit in the thread group
2909 - MINOR: threads: set the tid, ltid and their bit in thread_cfg
2910 - MEDIUM: threads: replace ha_set_tid() with ha_set_thread()
2911 - MINOR: threads: add the current group ID in thread-local "tgid" variable
2912 - MINOR: debug: report the group and thread ID in the thread dumps
2913 - MEDIUM: listeners: support the definition of thread groups on bind lines
2914 - MINOR: threads: add a new function to resolve config groups and masks
2915 - MEDIUM: config: resolve relative threads on bind lines to absolute ones
2916 - MEDIUM: stick-table: never learn the "conn_cur" value from peers
2917
Willy Tarreau538f3e02021-09-24 15:52:17 +020029182021/09/24 : 2.5-dev8
2919 - BUILD: compiler: fixed a missing test on defined(__GNUC__)
2920 - BUILD: halog: fix a -Wundef warning on non-glibc systems
2921 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
2922 - BUG/MINOR: compat: make sure __WORDSIZE is always defined
2923 - BUILD: sample: fix format warning on 32-bit archs in sample_conv_be2dec_check()
2924 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
2925 - MINOR: pools: automatically disable malloc_trim() with external allocators
2926 - MINOR: pools: report it when malloc_trim() is enabled
2927 - DOC: Add .mailmap
2928 - CLEANUP: tree-wide: fix prototypes for functions taking no arguments.
2929 - CLEANUP: Remove prototype for non-existent thread_get_default_count()
2930 - CLEANUP: acl: Remove unused variable when releasing an acl expression
2931 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
2932 - DOC: update Tim's address in .mailmap
2933 - MINOR: pools: use mallinfo2() when available instead of mallinfo()
2934 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
2935 - DOC: management: certificate files must be sanitized before injection
2936 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
2937 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
2938 - BUG/MINOR: cli/payload: do not search for args inside payload
2939 - BUILD: sockpair: do not set unused flag
2940 - BUILD: proto_uxst: do not set unused flag
2941 - BUILD: fd: remove unused variable totlen in fd_write_frag_line()
2942 - MINOR: applet: remove the thread mask from appctx_new()
2943 - REORG: threads: move ha_get_pthread_id() to tinfo.h
2944 - CLEANUP: Apply ist.cocci
2945 - DEV: coccinelle: Add ist.cocci
2946 - CLEANUP: Apply bug_on.cocci
2947 - DEV: coccinelle: Add xalloc_size.cocci
2948 - DEV: coccinelle: Add bug_on.cocci
2949 - CLEANUP: Apply xalloc_size.cocci
2950 - DEV: coccinelle: Add xalloc_cast.cocci
2951 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
2952 - MINOR: httpclient: add the EOH when no headers where provided
2953 - CLEANUP: Include check.h in flt_spoe.c
2954 - CLEANUP: Remove unreachable `break` from parse_time_err()
2955 - BUG/MINOR: server: allow 'enable health' only if check configured
2956 - BUG/MINOR: server: alloc dynamic srv ssl ctx if proxy uses ssl chk rule
2957 - MINOR: server: enable more keywords for ssl checks for dynamic servers
2958 - MINOR: server: enable more check related keywords for dynamic servers
2959 - REORG: server: move slowstart init outside of checks
2960 - MINOR: server: enable slowstart for dynamic server
2961 - MEDIUM: listener: deprecate "process" in favor of "thread" on bind lines
2962 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
2963 - BUG/MINOR: quic: Possible NULL pointer dereferencing when dumping streams.
2964 - MINOR: quic: Move transport parmaters to anynomous struct.
2965 - MINOR: mux_quic: Add QUIC mux layer.
2966 - MINOR: connection: Add callbacks definitions for QUIC.
2967 - MINOR: quic: Attach QUIC mux connection objet to QUIC connection.
2968 - MINOR: quic: Add a new definition to store STREAM frames.
2969 - MINOR: h3: Add HTTP/3 definitions.
2970 - MINOR: qpack: Add QPACK compression.
2971 - MINOR: quic_sock: Finalize the QUIC connections.
2972 - MINOR: quic: Disable the action of ->rcv_buf() xprt callback
2973 - MINOR: quic: Add callbacks for (un)scribing to QUIC xprt.
2974 - MINOR: quic: Variable-length integer encoding/decoding into/from buffer struct.
2975 - BUG/MINOR: quic: Wrong ->accept() error handling
2976 - MINOR: quic: Add a wrapper function to update transport parameters.
2977 - MINOR: quic: Update the streams transport parameters.
2978 - MINOR: quic: Avoid header collisions
2979 - MINOR: quic: Replace max_packet_size by max_udp_payload size.
2980 - MINOR: quic: Enable some quic, h3 and qpack modules compilation.
2981 - MINOR: quic: Move an SSL func call from QUIC I/O handler to the xprt init.
2982 - MINOR: quic: Initialize the session before starting the xprt.
2983 - BUG/MINOR: quic: Do not check the acception of a new conn from I/O handler.
2984 - MINOR: quic: QUIC conn initialization from I/O handler
2985 - MINOR: quic: Remove header protection for conn with context
2986 - MINOR: quic: Derive the initial secrets asap
2987 - MINOR: quic: Remove header protection also for Initial packets
2988 - BUG/MINOR: quic: Wrong memory free in quic_update_ack_ranges_list()
2989 - MINOR: quic: quic_update_ack_ranges_list() code factorization
2990 - MINOR: quic: Useless test in quic_update_ack_ranges_list()
2991 - MINOR: quic: Remove a useless variable in quic_update_ack_ranges_list()
2992 - BUG/MINOR: quic: Missing cases treatement when updating ACK ranges
2993 - CLEAUNUP: quic: Usage of a useless variable in qc_treat_rx_pkts()
2994 - BUG/MINOR: quic: Wrong RX packet reference counter usage
2995 - MINOR: quic: Do not stop the packet parsing too early in qc_treat_rx_packets()
2996 - MINOR: quic: Add a lock for RX packets
2997 - MINOR: quic: Move the connection state
2998 - MINOR: quic: Replace quic_conn_ctx struct by ssl_sock_ctx struct
2999 - MINOR: quic: Replace the RX list of packet by a thread safety one.
3000 - MINOR: quic: Replace the RX unprotected packet list by a thread safety one.
3001 - MINOR: quic: Add useful traces for I/O dgram handler
3002 - MINOR: quic: Do not wakeup the xprt task on ACK receipt
3003 - MINOR: quic: Connection allocations rework
3004 - MINOR: quic: Move conn_prepare() to ->accept_conn() callback
3005 - MINOR: quic: Make qc_lstnr_pkt_rcv() be thread safe.
3006 - MINOR: quic: Add a ring buffer implementation for QUIC
3007 - MINOR: quic: Prefer x25519 as ECDH preferred parametes.
3008 - MINOR: quic: Add the QUIC v1 initial salt.
3009 - BUG/MINOR: quic: Too much reduced computed space to build handshake packets
3010 - MINOR: net_helper: add functions for pointers
3011 - MINOR: quic: Add ring buffer definition (struct qring) for QUIC
3012 - MINOR: proto_quic: Allocate TX ring buffers for listeners
3013 - MINOR: quic: Initialize pointers to TX ring buffer list
3014 - MINOR: quic: Make use of TX ring buffers to send QUIC packets
3015 - MINOR: quic_tls: Make use of the QUIC V1 salt.
3016 - MINOR: quic: Remove old TX buffer implementation
3017 - MINOR: Add function for TX packets reference counting
3018 - MINOR: quic: Add TX packets at the very last time to their tree.
3019 - MINOR: quic: Unitialized mux context upon Client Hello message receipt.
3020 - MINOR: quic: Missing encryption level rx.crypto member initialization and lock.
3021 - MINOR: quic: Rename ->rx.rwlock of quic_enc_level struct to ->rx.pkts_rwlock
3022 - MINOR: quic: Make qc_treat_rx_pkts() be thread safe.
3023 - MINOR: quic: Make ->tx.frms quic_pktns struct member be thread safe
3024 - MINOR: quic: Replace quic_tx_frm struct by quic_frame struct
3025 - MINOR: quic: Add a mask for TX frame builders and their authorized packet types
3026 - MINOR: quic: Add a useful function to compute any frame length.
3027 - MINOR: quic: Add the QUIC connection state to traces
3028 - MINOR: quic: Store post handshake frame in ->pktns.tx.frms MT_LIST
3029 - MINOR: quic: Add the packet type to quic_tx_packet struct
3030 - MINOR: quic: Modify qc_do_build_hdshk_pkt() to accept any packet type
3031 - MINOR: quic: Atomically handle packet number space ->largest_acked_pn variable
3032 - MINOR: quic: Modify qc_build_cfrms() to support any frame
3033 - MINOR: quic: quic_conn_io_cb() task rework
3034 - MINOR: quic: Make qc_build_hdshk_pkt() atomically consume a packet number
3035 - MINOR: quic: qc_do_build_hdshk_pkt() does not need to pass a copy of CRYPTO frame
3036 - MINOR: quic: Remove Application level related functions
3037 - MINOR: quic: Rename functions which do not build only Handshake packets
3038 - MINOR: quic: Make circular buffer internal buffers be variable-sized.
3039 - MINOR: quic: Add a pool for TX ring buffer internal buffer
3040 - MINOR: quic: Make use of the last cbuf API when initializing TX ring buffers
3041 - MINOR: quic: Missing acks encoded size updates.
3042 - MINOR: quic: Evaluate the packet lengths in advance
3043 - MINOR: quic: Update the TLS extension for QUIC transport parameters
3044 - MINOR: quic: Fix handshake state debug strings
3045 - MINOR: quic: Atomically get/set the connection state
3046 - MINOR: quic: Missing QUIC encryption level for qc_build_pkt()
3047 - MINOR: quic: Coalesce Application level packets with Handshake packets.
3048 - MINOR: quic: Wrong flags handling for acks
3049 - MINOR: quic: Missing case when discarding HANDSHAKE secrets
3050 - MINOR: quic: Post handshake packet building improvements
3051 - MINOR: quic: Prepare Application level packet asap.
3052 - MINOR: h3: Send h3 settings asap
3053 - MINOR: quic: Wrong STREAM frame length computing
3054 - MINOR: quic: Wrong short packet minimum length
3055 - MINOR: quic: Prepare STREAM frames to fill QUIC packets
3056 - MINOR: h3: change default settings
3057 - MINOR: quic-enc: fix varint encoding
3058 - MINOR: qpack: fix wrong comment
3059 - MINOR: qpack: generate headers list on decoder
3060 - MINOR: h3: parse headers to htx
3061 - MINOR: h3: allocate stream on headers
3062 - MEDIUM: mux-quic: implement ring buffer on stream tx
3063 - MINOR: mux-quic: send SETTINGS on uni stream
3064 - MINOR: h3: define snd_buf callback and divert mux ops
3065 - MINOR: mux-quic: define FIN stream flag
3066 - MINOR: qpack: create qpack-enc module
3067 - MINOR: qpack: encode headers functions
3068 - MINOR: h3: encode htx headers to QPACK
3069 - MINOR: h3: send htx data
3070 - MINOR: h3/mux: detect fin on last h3 frame of the stream
3071 - MINOR: quic: Shorten some handshakes
3072 - MINOR: quic: Make QUIC-TLS support at least two initial salts
3073 - MINOR: quic: Attach the QUIC connection to a thread.
3074 - MINOR: quic: Missing active_connection_id_limit default value
3075 - MINOR: quic_sock: Do not flag QUIC connections as being set
3076 - MINOR: buf: Add b_force_xfer() function
3077 - MINOR: quic: Make use of buffer structs to handle STREAM frames
3078 - MINOR: mux_quic: move qc_process() code to qc_send()
3079 - MINOR: quic: Add a typedef for unsigned long long
3080 - MINOR: quic: Confusion between TX/RX for the frame builders
3081 - MINOR: quic: Wrong packet flags settings during frame building
3082 - MINOR: quic: Constantness fixes for frame builders/parsers.
3083 - MINOR: quic_tls: Client/serveur state reordering
3084 - MINOR: quic: Wrong packet loss detection due to wrong pktns order
3085 - MINOR: quic: Wrong packet number space selection in quic_loss_pktns()
3086 - MINOR: quic: Initial packet number spaced not discarded
3087 - MINOR: quic: Add useful trace about pktns discarding
3088 - MINOR: mux_quic: Export the mux related flags
3089 - MINOR: quic: Implement quic_conn_subscribe()
3090 - MINOR: quic: Wake up the mux upon ACK receipt
3091 - MINOR: quic: Stream FIN bit fix in qcs_push_frame()
3092 - MINOR: quic: Implement qc_process_mux()
3093 - MINOR: quic: Wake up the xprt from mux
3094 - CLEANUP: quic: Remove useless inline functions
3095 - MINOR: quic: RX packets memory leak
3096 - MINOR: quic: Possible endless loop in qc_treat_rx_pkts()
3097 - MINOR: quic: Crash upon too big packets receipt
3098 - MINOR: quic: define close handler
3099 - MEDIUM: quic: implement mux release/conn free
3100 - MINOR: quic: fix qcc subs initialization
3101 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
3102 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
3103 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
3104 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
3105 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
3106 - MINOR: htx: Add an HTX flag to know when a message is fragmented
3107 - MINOR: htx: Add a function to know if the free space wraps
3108 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
3109 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
3110 - BUG/MINOR: http-ana: increment internal_errors counter on response error
3111 - MINOR: stats: Enable dark mode on stat web page
3112 - CLEANUP: stats: Fix some alignment mistakes
3113 - MINOR: httpclient: httpclient_data() returns the available data
3114 - MINOR: httpclient: httpclient_ended() returns 1 if the client ended
3115 - MINOR: httpclient/lua: httpclient:get() API in lua
3116 - MINOR: httpclient/lua: implement the headers in the response object
3117 - BUG/MINOR: httpclient/lua: return an error on argument check
3118 - CLEANUP: slz: Mark `reset_refs` as static
3119
Willy Tarreau4b3a9fe2021-09-12 11:36:38 +020031202021/09/12 : 2.5-dev7
3121 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
3122 - CLEANUP: htx: remove comments about "must be < 256 MB"
3123 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
3124 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
3125 - MINOR: proxy: add a global "grace" directive to postpone soft-stop
3126 - MINOR: vars: rename vars_init() to vars_init_head()
3127 - CLEANUP: vars: rename sample_clear_stream() to var_unset()
3128 - REORG: vars: remerge sample_store{,_stream}() into var_set()
3129 - MEDIUM: vars: make the ifexist variant of set-var only apply to the proc scope
3130 - MINOR: vars: add a VF_CREATEONLY flag for creation
3131 - MINOR: vars: support storing empty sample data with a variable
3132 - MINOR: vars: store flags into variables and add VF_PERMANENT
3133 - MEDIUM: vars: make var_clear() only reset VF_PERMANENT variables
3134 - MEDIUM: vars: pre-create parsed SCOPE_PROC variables as permanent ones
3135 - MINOR: vars: preset a random seed to hash variables names
3136 - MEDIUM: vars: replace the global name index with a hash
3137 - CLEANUP: vars: remove the now unused var_names array
3138 - MINOR: vars: centralize the lock/unlock into static inlines
3139 - OPTIM: vars: only takes the variables lock on shared entries
3140 - OPTIM: vars: remove internal bookkeeping for vars_global_size
3141 - OPTIM: vars: do not keep variables usage stats if no limit is set
3142 - BUILD: fix dragonfly build again on __read_mostly
3143 - CI: Github Actions: temporarily disable Opentracing
3144 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
3145 - MINOR: htx: Skip headers with no value when adding a header list to a message
3146 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
3147 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
3148 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
3149 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
3150 - CLEANUP: Add haproxy/xxhash.h to avoid modifying import/xxhash.h
3151 - CLEANUP: ebmbtree: Replace always-taken elseif by else
3152 - CLEANUP: Move XXH3 macro from haproxy/compat.h to haproxy/xxhash.h
3153 - BUILD: opentracing: exclude the use of haproxy variables for the OpenTracing context
3154 - BUG/MINOR: opentracing: enable the use of http headers without a set value
3155 - CLEANUP: opentracing: use the haproxy function to generate uuid
3156 - MINOR: opentracing: change the scope of the variable 'ot.uuid' from 'sess' to 'txn'
3157 - CI: Github Actions: re-enable Opentracing
3158 - CLEANUP: opentracing: simplify the condition on the empty header
3159 - BUG/MEDIUM lua: Add missing call to RESET_SAFE_LJMP in hlua_filter_new()
3160
Willy Tarreauf653e832021-09-03 15:19:56 +020031612021/09/03 : 2.5-dev6
3162 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
3163 - BUG/MINOR: tools: Fix loop condition in dump_text()
3164 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
3165 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
3166 - BUILD: tools: properly guard __GLIBC__ with defined()
3167 - BUILD: globally enable -Wundef
3168 - MINOR: log: Remove log-error-via-logformat option
3169 - MINOR: log: Add new "error-log-format" option
3170 - BUG/MAJOR: queue: better protect a pendconn being picked from the proxy
3171 - CLEANUP: Add missing include guard to signal.h
3172 - MINOR: ssl: Add new ssl_bc_hsk_err sample fetch
3173 - MINOR: connection: Add a connection error code sample fetch for backend side
3174 - REGTESTS: ssl: Add tests for bc_conn_err and ssl_bc_hsk_err sample fetches
3175 - MINOR: http-rules: add a new "ignore-empty" option to redirects.
3176 - CI: Github Actions: temporarily disable BoringSSL builds
3177 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
3178 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
3179 - MINOR: sample: add missing ARGC_ entries
3180 - BUG/MINOR: vars: properly set the argument parsing context in the expression
3181 - DOC: configuration: remove wrong tcp-request examples in tcp-response
3182 - MEDIUM: vars: add a new "set-var-fmt" action
3183 - BUG/MEDIUM: vars: run over the correct list in release_store_rules()
3184 - BUG/MINOR: vars: truncate the variable name in error reports about scope.
3185 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
3186 - CLEANUP: vars: name the temporary proxy "CFG" instead of "CLI" for global vars
3187 - MINOR: log: make log-format expressions completely usable outside of req/resp
3188 - MINOR: vars: add a "set-var-fmt" directive to the global section
3189 - MEDIUM: vars: also support format strings in CLI's "set var" command
3190 - CLEANUP: vars: factor out common code from vars_get_by_{desc,name}
3191 - MINOR: vars: make vars_get_by_* support an optional default value
3192 - MINOR: vars: make the vars() sample fetch function support a default value
3193 - BUILD: ot: add argument for default value to vars_get_by_name()
3194
Willy Tarreau446344c2021-08-28 13:46:11 +020031952021/08/28 : 2.5-dev5
3196 - MINOR: httpclient: initialize the proxy
3197 - MINOR: httpclient: implement a simple HTTP Client API
3198 - MINOR: httpclient/cli: implement a simple client over the CLI
3199 - MINOR: httpclient/cli: change the User-Agent to "HAProxy"
3200 - MEDIUM: ssl: Keep a reference to the client's certificate for use in logs
3201 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
3202 - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
3203 - MINOR: server: check if srv is NULL in free_server()
3204 - MINOR: proxy: check if p is NULL in free_proxy()
3205 - BUG/MEDIUM: cfgparse: do not allocate IDs to automatic internal proxies
3206 - BUG/MINOR: http_client: make sure to preset the proxy's default settings
3207 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
3208 - REGTESTS: abortonclose: after retries, 503 is expected, not close
3209 - REGTESTS: server: fix agent-check syntax and expectation
3210 - BUG/MINOR: httpclient: fix uninitialized sl variable
3211 - BUG/MINOR: httpclient/cli: change the appctx test in the callbacks
3212 - BUG/MINOR: httpclient: check if hdr_num is not 0
3213 - MINOR: httpclient: cleanup the include files
3214 - MINOR: hlua: take the global Lua lock inside a global function
3215 - MINOR: tools: add FreeBSD support to get_exec_path()
3216 - BUG/MINOR: systemd: ExecStartPre must use -Ws
3217 - MINOR: systemd: remove the ExecStartPre line in the unit file
3218 - MINOR: ssl: add an openssl version string parser
3219 - MINOR: cfgcond: implements openssl_version_atleast and openssl_version_before
3220 - CLEANUP: ssl: remove useless check on p in openssl_version_parser()
3221 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
3222 - BUG/MINOR: httpclient: remove deinit of the httpclient
3223 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
3224 - MINOR: httpclient: set verify none on the https server
3225 - MINOR: httpclient: add the server to the proxy
3226 - BUG/MINOR: httpclient: fix Host header
3227 - BUILD: httpclient: fix build without OpenSSL
3228 - CI: github-actions: remove obsolete options
3229 - CLEANUP: assorted typo fixes in the code and comments
3230 - MINOR: proc: setting the process to produce a core dump on FreeBSD.
3231 - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
3232 - MINOR: server: return the next srv instance on free_server
3233 - BUG/MINOR: stats: use refcount to protect dynamic server on dump
3234 - MEDIUM: server: extend refcount for all servers
3235 - MINOR: server: define non purgeable server flag
3236 - MINOR: server: mark referenced servers as non purgeable
3237 - MINOR: server: mark servers referenced by LUA script as non purgeable
3238 - MEDIUM: server: allow to remove servers at runtime except non purgeable
3239 - BUG/MINOR: base64: base64urldec() ignores padding in output size check
3240 - REGTEST: add missing lua requirements on server removal test
3241 - REGTEST: fix haproxy required version for server removal test
3242 - BUG/MINOR: proxy: don't dump servers of internal proxies
3243 - REGTESTS: Use `feature cmd` for 2.5+ tests
3244 - REGTESTS: Remove REQUIRE_VERSION=1.5 from all tests
3245 - BUG/MINOR: resolvers: mark servers with name-resolution as non purgeable
3246 - MINOR: compiler: implement an ONLY_ONCE() macro
3247 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
3248 - MEDIUM: ssl: Capture more info from Client Hello
3249 - MINOR: sample: Expose SSL captures using new fetchers
3250 - MINOR: sample: Add be2dec converter
3251 - MINOR: sample: Add be2hex converter
3252 - MEDIUM: config: Deprecate tune.ssl.capture-cipherlist-size
3253 - BUG/MINOR: time: fix idle time computation for long sleeps
3254 - MINOR: time: add report_idle() to report process-wide idle time
3255 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
3256 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
3257 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
3258 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
3259 - IMPORT: slz: silence a build warning with -Wundef
3260 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
3261
Willy Tarreau08d0f232021-08-17 14:08:55 +020032622021/08/17 : 2.5-dev4
3263 - MINOR: log: rename 'dontloglegacyconnerr' to 'log-error-via-logformat'
3264 - MINOR: doc: rename conn_status in `option httsplog`
3265 - MINOR: proxy: disabled takes a stopping and a disabled state
3266 - MINOR: stats: shows proxy in a stopped state
3267 - BUG/MINOR: server: fix race on error path of 'add server' CLI if track
3268 - CLEANUP: thread: fix fantaisist indentation of thread_harmless_till_end()
3269 - MINOR: threads: make thread_release() not wait for other ones to complete
3270 - MEDIUM: threads: add a stronger thread_isolate_full() call
3271 - MEDIUM: servers: make the server deletion code run under full thread isolation
3272 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
3273 - MINOR: activity/fd: remove the dead_fd counter
3274 - MAJOR: fd: get rid of the DWCAS when setting the running_mask
3275 - CLEANUP: fd: remove the now unused fd_set_running()
3276 - CLEANUP: fd: remove the now unneeded fd_mig_lock
3277 - BUG/MINOR: server: update last_change on maint->ready transitions too
3278 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
3279 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
3280 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
3281 - MINOR: server: unmark deprecated on enable health/agent cli
3282 - MEDIUM: task: implement tasklet kill
3283 - MINOR: server: initialize fields for dynamic server check
3284 - MINOR: check: allocate default check ruleset for every backends
3285 - MINOR: check: export check init functions
3286 - MINOR: check: do not increment global maxsock at runtime
3287 - MINOR: server: implement a refcount for dynamic servers
3288 - MEDIUM: check: implement check deletion for dynamic servers
3289 - MINOR: check: enable safe keywords for dynamic servers
3290 - MEDIUM: server: implement check for dynamic servers
3291 - MEDIUM: server: implement agent check for dynamic servers
3292 - REGTESTS: server: add dynamic check server test
3293 - MINOR: doc: specify ulimit-n usage for dynamic servers
3294 - REGTESTS: server: fix dynamic server with checks test
3295 - CI: travis-ci: temporarily disable arm64 builds
3296 - BUG/MINOR: check: test if server is not null in purge
3297 - MINOR: global: define MODE_STOPPING
3298 - BUG/MINOR: server: do not use refcount in free_server in stopping mode
3299 - ADMIN: dyncookie: implement a simple dynamic cookie calculator
3300 - BUG/MINOR: check: do not reset check flags on purge
3301 - BUG/MINOR: check: fix leak on add dynamic server with agent-check error
3302 - BUG/MEDIUM: check: fix leak on agent-check purge
3303 - BUG/MEDIUM: server: support both check/agent-check on a dynamic instance
3304 - BUG/MINOR: buffer: fix buffer_dump() formatting
3305 - MINOR: channel: remove an htx block from a channel
3306 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
3307 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
3308 - MINOR: lua: Add a flag on lua context to know the yield capability at run time
3309 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
3310 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
3311 - MINOR: filters/lua: Release filters before the lua context
3312 - MINOR: lua: Add a function to get a reference on a table in the stack
3313 - MEDIUM: lua: Process buffer data using an offset and a length
3314 - MEDIUM: lua: Improve/revisit the lua api to manipulate channels
3315 - DOC: Improve the lua documentation
3316 - MEDIUM: filters/lua: Add support for dummy filters written in lua
3317 - MINOR: lua: Add a function to get a filter attached to a channel class
3318 - MINOR: lua: Add flags on the lua TXN to know the execution context
3319 - MEDIUM: filters/lua: Be prepared to filter TCP payloads
3320 - MEDIUM: filters/lua: Support declaration of some filter callback functions in lua
3321 - MEDIUM: filters/lua: Add HTTPMessage class to help HTTP filtering
3322 - MINOR: filters/lua: Add request and response HTTP messages in the lua TXN
3323 - MINOR: filters/lua: Support the HTTP filtering from filters written in lua
3324 - DOC: config: Fix 'http-response send-spoe-group' documentation
3325 - BUG/MINOR: lua: Properly check negative offset in Channel/HttpMessage functions
3326 - BUG/MINOR: lua: Properly catch alloc errors when parsing lua filter directives
3327 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
3328 - MINOR: cli: delare the CLI frontend as an internal proxy
3329 - MINOR: proxy: disable warnings for internal proxies
3330 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
3331 - BUG/MINOR: lua/filters: Return right code when txn:done() is called
3332 - DOC: lua-api: Add documentation about lua filters
3333 - CI: Remove obsolete USE_SLZ=1 CI job
3334 - CLEANUP: assorted typo fixes in the code and comments
3335 - CI: github actions: relax OpenSSL-3.0.0 version comparision
3336 - BUILD: tools: get the absolute path of the current binary on NetBSD.
3337 - DOC: Minor typo fix - 'question mark' -> 'exclamation mark'
3338 - DOC/MINOR: fix typo in management document
3339 - MINOR: http: add a new function http_validate_scheme() to validate a scheme
3340 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
3341 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
3342 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
3343 - BUG/MEDIUM: h2: give :authority precedence over Host
3344 - REGTESTS: add a test to prevent h2 desync attacks
3345
Willy Tarreau8441deb2021-08-01 18:19:51 +020033462021/08/01 : 2.5-dev3
3347 - BUG/MINOR: arg: free all args on make_arg_list()'s error path
3348 - BUG/MINOR: cfgcond: revisit the condition freeing mechanism to avoid a leak
3349 - MEDIUM: proxy: remove long-broken 'option http_proxy'
3350 - CLEANUP: http_ana: Remove now unused label from http_process_request()
3351 - MINOR: deinit: always deinit the init_mutex on failed initialization
3352 - BUG/MEDIUM: cfgcond: limit recursion level in the condition expression parser
3353 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
3354 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
3355 - BUILD/MINOR: memprof fix macOs build.
3356 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
3357 - BUG/MINOR: stats: Add missing agent stats on servers
3358 - BUG/MINOR: check: fix the condition to validate a port-less server
3359 - BUILD: threads: fix pthread_mutex_unlock when !USE_THREAD
3360 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
3361 - MINOR: ssl: use __objt_* variant when retrieving counters
3362 - BUG/MINOR: systemd: must check the configuration using -Ws
3363 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
3364 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
3365 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
3366 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
3367 - MINOR: proxy: rename PR_CAP_LUA to PR_CAP_INT
3368 - MINOR: mworker: the mworker CLI proxy is internal
3369 - MINOR: stats: don't output internal proxies (PR_CAP_INT)
3370 - CLEANUP: mworker: use the proxy helper functions in mworker_cli_proxy_create()
3371 - CLEANUP: mworker: PR_CAP already initialized with alloc_new_proxy()
3372 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
3373 - MINOR: connection: Add a connection error code sample fetch
3374 - MINOR: ssl: Enable error fetches in case of handshake error
3375 - MINOR: ssl: Add new ssl_fc_hsk_err sample fetch
3376 - MINOR: ssl: Define a default https log format
3377 - MEDIUM: connection: Add option to disable legacy error log
3378 - REGTESTS: ssl: Add tests for the connection and SSL error fetches
3379 - REGTESTS: ssl: ssl_errors.vtc does not work with old openssl version
3380 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
3381 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
3382 - BUG/MINOR: select: fix excess number of dead/skip reported
3383 - BUG/MINOR: poll: fix abnormally high skip_fd counter
3384 - BUG/MINOR: pollers: always program an update for migrated FDs
3385 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
3386 - DOC: internals: document the FD takeover process
3387 - MINOR: fd: update flags only once in fd_update_events()
3388 - MINOR: poll/epoll: move detection of RDHUP support earlier
3389 - REORG: fd: uninline fd_update_events()
3390 - MEDIUM: fd: rely more on fd_update_events() to detect changes
3391 - BUG/MINOR: freq_ctr: use stricter barriers between updates and readings
3392 - MEDIUM: atomic: simplify the atomic load/store/exchange operations
3393 - MEDIUM: atomic: relax the load/store barriers on x86_64
3394 - BUILD: opentracing: fixed build when using pkg-config utility
3395
Willy Tarreaubccc91d2021-07-17 12:35:11 +020033962021/07/17 : 2.5-dev2
3397 - BUILD/MEDIUM: tcp: set-mark support for OpenBSD
3398 - DOC: config: use CREATE USER for mysql-check
3399 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
3400 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
3401 - MINOR: stick-table: make skttable_data_cast to use only std types
3402 - MEDIUM: stick-table: handle arrays of standard types into stick-tables
3403 - MEDIUM: peers: handle arrays of std types in peers protocol
3404 - DOC: stick-table: add missing documentation about gpt0 stored type
3405 - MEDIUM: stick-table: add the new array of gpt data_type
3406 - MEDIUM: stick-table: make the use of 'gpt' excluding the use of 'gpt0'
3407 - MEDIUM: stick-table: add the new arrays of gpc and gpc_rate
3408 - MEDIUM: stick-table: make the use of 'gpc' excluding the use of 'gpc0/1''
3409 - BUG/MEDIUM: sock: make sure to never miss early connection failures
3410 - BUG/MINOR: cli: fix server name output in "show fd"
3411 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
3412 - MEDIUM: stats: include disabled proxies that hold active sessions to stats
3413 - BUILD: stick-table: shut up invalid "uninitialized" warning in gcc 8.3
3414 - MINOR: http: implement http_get_scheme
3415 - MEDIUM: http: implement scheme-based normalization
3416 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
3417 - MEDIUM: h2: apply scheme-based normalization on h2 requests
3418 - REGTESTS: add http scheme-based normalization test
3419 - BUILD: http_htx: fix ci compilation error with isdigit for Windows
3420 - MINOR: http: implement http uri parser
3421 - MINOR: http: use http uri parser for scheme
3422 - MINOR: http: use http uri parser for authority
3423 - REORG: http_ana: split conditions for monitor-uri in wait for request
3424 - MINOR: http: use http uri parser for path
3425 - BUG/MEDIUM: http_ana: fix crash for http_proxy mode during uri rewrite
3426 - MINOR: mux_h2: define config to disable h2 websocket support
3427 - CLEANUP: applet: remove unused thread_mask
3428 - BUG/MINOR: ssl: Default-server configuration ignored by server
3429 - BUILD: add detection of missing important CFLAGS
3430 - BUILD: lua: silence a build warning with TCC
3431 - MINOR: srv: extract tracking server config function
3432 - MINOR: srv: do not allow to track a dynamic server
3433 - MEDIUM: server: support track keyword for dynamic servers
3434 - REGTESTS: test track support for dynamic servers
3435 - MINOR: init: verify that there is a single word on "-cc"
3436 - MINOR: init: make -cc support environment variables expansion
3437 - MINOR: arg: add a free_args() function to free an args array
3438 - CLEANUP: config: use free_args() to release args array in cfg_eval_condition()
3439 - CLEANUP: hlua: use free_args() to release args arrays
3440 - REORG: config: move the condition preprocessing code to its own file
3441 - MINOR: cfgcond: start to split the condition parser to introduce terms
3442 - MEDIUM: cfgcond: report invalid trailing chars after expressions
3443 - MINOR: cfgcond: remerge all arguments into a single line
3444 - MINOR: cfgcond: support negating conditional expressions
3445 - MINOR: cfgcond: make the conditional term parser automatically allocate nodes
3446 - MINOR: cfgcond: insert an expression between the condition and the term
3447 - MINOR: cfgcond: support terms made of parenthesis around expressions
3448 - REGTEST: make check_condition.vtc fail as soon as possible
3449 - REGTESTS: add more complex check conditions to check_conditions.vtc
3450 - BUG/MEDIUM: init: restore behavior of command-line "-m" for memory limitation
3451
Willy Tarreau96a2f502021-06-30 16:16:14 +020034522021/06/30 : 2.5-dev1
3453 - CLEANUP: ssl: Move ssl_store related code to ssl_ckch.c
3454 - MINOR: ssl: Allow duplicated entries in the cafile_tree
3455 - MEDIUM: ssl: Chain ckch instances in ca-file entries
3456 - MINOR: ssl: Add reference to default ckch instance in bind_conf
3457 - MINOR: ssl: Add helper functions to create/delete cafile entries
3458 - MEDIUM: ssl: Add a way to load a ca-file content from memory
3459 - MINOR: ssl: Add helper function to add cafile entries
3460 - MINOR: ssl: Ckch instance rebuild and cleanup factorization in CLI handler
3461 - MEDIUM: ssl: Add "set+commit ssl ca-file" CLI commands
3462 - REGTESTS: ssl: Add new ca-file update tests
3463 - MINOR: ssl: Add "abort ssl ca-file" CLI command
3464 - MINOR: ssl: Add a cafile_entry type field
3465 - MINOR: ssl: Refactorize the "show certificate details" code
3466 - MEDIUM: ssl: Add "show ssl ca-file" CLI command
3467 - MEDIUM: ssl: Add "new ssl ca-file" CLI command
3468 - MINOR: ssl: Add "del ssl ca-file" CLI command
3469 - REGTESTS: ssl: Add "new/del ssl ca-file" tests
3470 - DOC: ssl: Add documentation about CA file hot update commands
3471 - DOC: internals: update the SSL architecture schema
3472 - MINOR: ssl: Chain instances in ca-file entries
3473 - MEDIUM: ssl: Add "set+commit ssl crl-file" CLI commands
3474 - MEDIUM: ssl: Add "new+del crl-file" CLI commands
3475 - MINOR: ssl: Add "abort ssl crl-file" CLI command
3476 - MEDIUM: ssl: Add "show ssl crl-file" CLI command
3477 - REGTESTS: ssl: Add "new/del ssl crl-file" tests
3478 - REGTESTS: ssl: Add "set/commit ssl crl-file" test
3479 - DOC: ssl: Add documentation about CRL file hot update commands
3480 - BUILD/MINOR: ssl: Fix compilation with SSL enabled
3481 - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
3482 - CI: introduce scripts/build-vtest.sh for installing VTest
3483 - CLEANUP: ssl: Fix coverity issues found in CA file hot update code
3484 - CI: github actions: add OpenTracing builds
3485 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
3486 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
3487 - BUILD/MINOR: opentracing: fixed build when using clang
3488 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
3489 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
3490 - MINOR: map/acl: print the count of all the map/acl entries in "show map/acl"
3491 - CLEANUP: pattern: remove export of non-existent function pattern_delete()
3492 - MINOR: h1-htx: Update h1 parsing functions to return result as a size_t
3493 - MEDIUM: h1-htx: Adapt H1 data parsing to copy wrapping data in one call
3494 - MINOR: mux-h1/mux-fcgi: Don't needlessly loop on data parsing
3495 - MINOR: h1-htx: Move HTTP chunks parsing into a dedicated function
3496 - MEDIUM: h1-htx: Split function to parse a chunk and the loop on the buffer
3497 - MEDIUM: h1-htx: Add a function to parse contiguous small chunks
3498 - MINOR: h1-htx: Use a correlation table to speed-up small chunks parsing
3499 - MINOR: buf: Add function to realign a buffer with a specific head position
3500 - MINOR: muxes/h1-htx: Realign input buffer using b_slow_realign_ofs()
3501 - CLEANUP: mux-h1: Rename functions parsing input buf and filling output buf
3502 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
3503 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
3504 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
3505 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
3506 - MINOR: cfgparse: Fail when encountering extra arguments in macro
3507 - DOC: intro: Fix typo in starter guide
3508 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
3509 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
3510 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
3511 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
3512 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
3513 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
3514 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
3515 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
3516 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
3517 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
3518 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
3519 - BUG/MINOR: http: Missing calloc return value check in make_arg_list
3520 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
3521 - CLEANUP: http-ana: Remove useless if statement about L7 retries
3522 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
3523 - MINOR: backend: Don't release SI endpoint anymore in connect_server()
3524 - BUG/MINOR: vars: Be sure to have a session to get checks variables
3525 - DOC/MINOR: move uuid in the configuration to the right alphabetical order
3526 - CLEANUP: mux-fcgi: Don't needlessly store result of data/trailers parsing
3527 - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
3528 - MINOR: http-ana: Use -1 status for client aborts during queuing and connect
3529 - REGTESTS: Fix http_abortonclose.vtc to support -1 status for some client aborts
3530 - CLEANUP: backend: fix incorrect comments on locking conditions for lb functions
3531 - CLEANUP: reg-tests: Remove obsolete no-htx parameter for reg-tests
3532 - CI: github actions: add OpenSSL-3.0.0 builds
3533 - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
3534 - MINOR: errors: allow empty va_args for diag variadic macro
3535 - REORG: errors: split errors reporting function from log.c
3536 - CLEANUP: server: fix cosmetic of error message on sni parsing
3537 - MEDIUM: errors: implement user messages buffer
3538 - MINOR: log: do not discard stderr when starting is over
3539 - MEDIUM: errors: implement parsing context type
3540 - MINOR: errors: use user messages context in print_message
3541 - MINOR: log: display exec path on first warning
3542 - MINOR: errors: specify prefix "config" for parsing output
3543 - MINOR: log: define server user message format
3544 - REORG: server: use parsing ctx for server parsing
3545 - REORG: config: use parsing ctx for server config check
3546 - MINOR: server: use parsing ctx for server init addr
3547 - MINOR: server: use ha_alert in server parsing functions
3548 - DOC: use the req.ssl_sni in examples
3549 - CLEANUP: cfgparse: Remove duplication of `MAX_LINE_ARGS + 1`
3550 - CLEANUP: tools: Make errptr const in `parse_line()`
3551 - MINOR: haproxy: Add `-cc` argument
3552 - BUG: errors: remove printf positional args for user messages context
3553 - CI: Make matrix.py executable and add shebang
3554 - BUILD: make tune.ssl.keylog available again
3555 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
3556 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
3557 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
3558 - SCRIPTS: opentracing: enable parallel builds in build-ot.sh
3559 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
3560 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
3561 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
3562 - MINOR: ssl: Keep the actual key length in the certificate_ocsp structure
3563 - MINOR: ssl: Add new "show ssl ocsp-response" CLI command
3564 - MINOR: ssl: Add the OCSP entry key when displaying the details of a certificate
3565 - MINOR: ssl: Add the "show ssl cert foo.pem.ocsp" CLI command
3566 - REGTESTS: ssl: Add "show ssl ocsp-response" test
3567 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
3568 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
3569 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
3570 - MINOR: pools: do not maintain the lock during pool_flush()
3571 - MINOR: pools: call malloc_trim() under thread isolation
3572 - MEDIUM: pools: use a single pool_gc() function for locked and lockless
3573 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
3574 - CLEANUP: pools: remove now unused seq and pool_free_list
3575 - MEDIUM: pools: remove the locked pools implementation
3576 - BUILD: ssl: Fix compilation with BoringSSL
3577 - BUG/MEDIUM: errors: include missing obj_type file
3578 - REGTESTS: ssl: show_ssl_ocspresponce.vtc is broken with BoringSSL
3579 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
3580 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
3581 - BUG/MINOR: h1-htx: Fix a signess bug with char data type when parsing chunk size
3582 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
3583 - BUG/MINOR: resolvers: answser item list was randomly purged or errors
3584 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
3585 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
3586 - BUG/MINOR: server-state: load SRV resolution only if params match the config
3587 - MINOR: config: remove support for deprecated option "tune.chksize"
3588 - MINOR: config: completely remove support for "no option http-use-htx"
3589 - MINOR: log: remove the long-deprecated early log-format tags
3590 - MINOR: http: remove the long deprecated "set-cookie()" sample fetch function
3591 - MINOR: config: reject long-deprecated "option forceclose"
3592 - MINOR: config: remove deprecated option "http-tunnel"
3593 - MEDIUM: proxy: remove the deprecated "grace" keyword
3594 - MAJOR: config: remove parsing of the global "nbproc" directive
3595 - BUILD: init: remove initialization of multi-process thread mappings
3596 - BUILD: log: remove unused fmt_directive()
3597 - REGTESTS: Remove REQUIRE_VERSION=1.6 from all tests
3598 - REGTESTS: Remove REQUIRE_VERSION=1.7 from all tests
3599 - CI: github actions: enable alpine/musl builds
3600 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
3601 - DOC: lua: Add a warning about buffers modification in HTTP
3602 - MINOR: ssl: Use OpenSSL's ASN1_TIME convertor when available
3603 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
3604 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
3605 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
3606 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
3607 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
3608 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
3609 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
3610 - BUG/MINOR: ssl: use atomic ops to update global shctx stats
3611 - BUG/MINOR: mworker: fix typo in chroot error message
3612 - CLEANUP: global: remove unused definition of stopping_task[]
3613 - MEDIUM: init: remove the loop over processes during init
3614 - MINOR: mworker: remove the initialization loop over processes
3615 - CLEANUP: global: remove the nbproc field from the global structure
3616 - CLEANUP: global: remove pid_bit and all_proc_mask
3617 - MEDIUM: global: remove dead code from nbproc/bind_proc removal
3618 - MEDIUM: config: simplify cpu-map handling
3619 - MEDIUM: cpu-set: make the proc a single bit field and not an array
3620 - CLEANUP: global: remove unused definition of MAX_PROCS
3621 - MEDIUM: global: remove the relative_pid from global and mworker
3622 - DOC: update references to process numbers in cpu-map and bind-process
3623 - MEDIUM: config: warn about "bind-process" deprecation
3624 - CLEANUP: shctx: remove the different inter-process locking techniques
3625 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
3626 - MINOR: backend: only skip LB when there are actual connections
3627 - BUG/MINOR: mux-h1: do not skip the error response on bad requests
3628 - MINOR: connection: add helper conn_append_debug_info()
3629 - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
3630 - CLEANUP: mux-h2/traces: better align user messages
3631 - BUG/MINOR: stats: make "show stat typed desc" work again
3632 - MINOR: mux-h2: obey http-ignore-probes during the preface
3633 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
3634 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
3635 - CLEANUP: assorted typo fixes in the code and comments
3636 - CI: Replace the requirement for 'sudo' with a call to 'ulimit -n'
3637 - REGTESTS: Replace REQUIRE_VERSION=2.5 with 'haproxy -cc'
3638 - REGTESTS: Replace REQUIRE_OPTIONS with 'haproxy -cc' for 2.5+ tests
3639 - REGTESTS: Replace REQUIRE_BINARIES with 'command -v'
3640 - REGTESTS: Remove support for REQUIRE_BINARIES
3641 - CI: ssl: enable parallel builds for OpenSSL on Linux
3642 - CI: ssl: do not needlessly build the OpenSSL docs
3643 - CI: ssl: keep the old method for ancient OpenSSL versions
3644 - CLEANUP: server: a separate function for initializing the per_thr field
3645 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
3646 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
3647 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
3648 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
3649 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
3650 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
3651 - BUG/MINOR: backend: do not set sni on connection reuse
3652 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
3653 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
3654 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
3655 - MINOR: ssl: fix typo in usage for 'new ssl ca-file'
3656 - MINOR: ssl: always initialize random generator
3657 - MINOR: ssl: check allocation in ssl_sock_init_srv
3658 - MINOR: ssl: check allocation in parse ciphers/ciphersuites/verifyhost
3659 - MINOR: ssl: check allocation in parse npn/sni
3660 - MINOR: server: disable CLI 'set server ssl' for dynamic servers
3661 - MINOR: ssl: render file-access optional on server crt loading
3662 - MINOR: ssl: split parse functions for alpn/check-alpn
3663 - MINOR: ssl: support ca-file arg for dynamic servers
3664 - MINOR: ssl: support crt arg for dynamic servers
3665 - MINOR: ssl: support crl arg for dynamic servers
3666 - MINOR: ssl: enable a series of ssl keywords for dynamic servers
3667 - MINOR: ssl: support ssl keyword for dynamic servers
3668 - REGTESTS: server: test ssl support for dynamic servers
3669 - MINOR: queue: update the stream's pend_pos before queuing it
3670 - CLEANUP: Prevent channel-t.h from being detected as C++ by GitHub
3671 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
3672 - REGTESTS: fix maxconn update with agent-check
3673 - MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn
3674 - MINOR: queue: update proxy->served once out of the loop
3675 - MEDIUM: queue: refine the locking in process_srv_queue()
3676 - MINOR: lb/api: remove the locked argument from take_conn/drop_conn
3677 - MINOR: queue: create a new structure type "queue"
3678 - MINOR: proxy: replace the pendconns-related stuff with a struct queue
3679 - MINOR: server: replace the pendconns-related stuff with a struct queue
3680 - MEDIUM: queue: use a dedicated lock for the queues
3681 - MEDIUM: queue: simplify again the process_srv_queue() API
3682 - MINOR: queue: factor out the proxy/server queuing code
3683 - MINOR: queue: use atomic-ops to update the queue's index
3684 - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable
3685 - MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()
3686 - MEDIUM: queue: unlock as soon as possible
3687 - MINOR: queue: make pendconn_first() take the lock by itself
3688 - CLEANUP: backend: remove impossible case of round-robin + consistent hash
3689 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
3690 - DOC: config: Add missing actions in "tcp-request session" documentation
3691 - CLEANUP: dns: Remove a forgotten debug message
3692 - DOC: Replace issue templates by issue forms
3693 - Revert "MINOR: queue: make pendconn_first() take the lock by itself"
3694 - Revert "MEDIUM: queue: unlock as soon as possible"
3695 - Revert "MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()"
3696 - Revert "MEDIUM: queue: determine in process_srv_queue() if the proxy is usable"
3697 - Revert "MINOR: queue: use atomic-ops to update the queue's index"
3698 - Revert "MINOR: queue: factor out the proxy/server queuing code"
3699 - Revert "MEDIUM: queue: simplify again the process_srv_queue() API"
3700 - Revert "MEDIUM: queue: use a dedicated lock for the queues"
3701 - Revert "MEDIUM: queue: refine the locking in process_srv_queue()"
3702 - Revert "MINOR: queue: update proxy->served once out of the loop"
3703 - Revert "MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn"
3704 - MEDIUM: queue: update px->served and lb's take_conn once per loop
3705 - MEDIUM: queue: use a dedicated lock for the queues (v2)
3706 - MEDIUM: queue: simplify again the process_srv_queue() API (v2)
3707 - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable (v2)
3708 - MINOR: queue: factor out the proxy/server queuing code (v2)
3709 - MINOR: queue: use atomic-ops to update the queue's index (v2)
3710 - MEDIUM: queue: take the proxy lock only during the px queue accesses
3711 - MEDIUM: queue: use a trylock on the server's queue
3712 - MINOR: queue: add queue_init() to initialize a queue
3713 - MINOR: queue: add a pointer to the server and the proxy in the queue
3714 - MINOR: queue: store a pointer to the queue into the pendconn
3715 - MINOR: queue: remove the px/srv fields from pendconn
3716 - MINOR: queue: simplify pendconn_unlink() regarding srv vs px
3717 - BUG: backend: stop looking for queued connections once there's no more
3718 - BUG/MINOR: queue/debug: use the correct lock labels on the queue lock
3719 - BUG/MINOR: resolvers: Always attach server on matching record on resolution
3720 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
3721 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
3722 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
3723 - BUILD: Makefile: fix linkage for Haiku.
3724 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
3725 - MINOR: http-act/tcp-act: Add "set-log-level" for tcp content rules
3726 - MINOR: http-act/tcp-act: Add "set-nice" for tcp content rules
3727 - MINOR: http-act/tcp-act: Add "set-mark" and "set-tos" for tcp content rules
3728 - CLEANUP: tcp-act: Sort action lists
3729 - BUILD/MEDIUM: tcp: set-mark setting support for FreeBSD.
3730 - BUILD: tcp-act: avoid warning when set-mark / set-tos are not supported
3731 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
3732 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
3733 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
3734 - CLEANUP: peers: re-write intdecode function comment.
3735
Willy Tarreau1f973062021-05-14 09:36:37 +020037362021/05/14 : 2.5-dev0
3737 - MINOR: version: it's development again
3738
Willy Tarreau6cbbecf2021-05-14 09:03:30 +020037392021/05/14 : 2.4.0
3740 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
3741 - CLEANUP: cli/activity: Remove double spacing in set profiling command
3742 - CI: Build VTest with clang
3743 - CI: extend spellchecker whitelist, add "ists" as well
3744 - CLEANUP: assorted typo fixes in the code and comments
3745 - BUG/MINOR: memprof: properly account for differences for realloc()
3746 - MINOR: memprof: also report the method used by each call
3747 - MINOR: memprof: also report the totals and delta alloc-free
3748 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
3749 - BUG/MINOR: http_act: Fix normalizer names in error messages
3750 - MINOR: uri_normalizer: Add `fragment-strip` normalizer
3751 - MINOR: uri_normalizer: Add `fragment-encode` normalizer
3752 - IMPORT: slz: use the generic function for the last bytes of the crc32
3753 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
3754 - BUILD/MINOR: opentracing: fixed compilation with filter enabled
3755 - BUILD: makefile: add a few popular ARMv8 CPU targets
3756 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
3757 - REGTESTS: stick-table: add src_conn_rate test
3758 - CLEANUP: stick-table: remove a leftover of an old keyword declaration
3759 - BUG/MINOR: stats: fix lastchk metric that got accidently lost
3760 - EXAMPLES: add a "basic-config-edge" example config
3761 - EXAMPLES: add a trivial config for quick testing
3762 - DOC: management: Correct example reload command in the document
3763 - Revert "CI: Build VTest with clang"
3764 - MINOR: activity/cli: optionally support sorting by address on "show profiling"
3765 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
3766 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
3767 - DOC: config: Fix configuration example for mqtt
3768 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
3769 - BUILD: config: avoid a build warning on numa_detect_topology() without threads
3770 - DOC: update min requirements in INSTALL
3771 - IMPORT: slz: use inttypes.h instead of stdint.h
3772 - BUILD: sample: use strtoll() instead of atoll()
3773 - MINOR: version: mention that it's LTS now.
3774
Willy Tarreau46b93af2021-05-10 07:50:26 +020037752021/05/10 : 2.4-dev19
3776 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
3777 - BUG/MEDIUM: cli: prevent memory leak on write errors
3778 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
3779 - MINOR: debug: add a new "debug dev sym" command in expert mode
3780 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
3781 - CI: Github Actions: switch to LibreSSL-3.3.3
3782 - MINOR: srv: close all idle connections on shutdown
3783 - MINOR: connection: move session_list member in a union
3784 - MEDIUM: mux_h1: release idling frontend conns on soft-stop
3785 - MEDIUM: connection: close front idling connection on soft-stop
3786 - MINOR: tools: add functions to retrieve the address of a symbol
3787 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
3788 - MINOR: activity: add a "memory" entry to "profiling"
3789 - MINOR: activity: declare the storage for memory usage statistics
3790 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
3791 - MINOR: activity: clean up the show profiling io_handler a little bit
3792 - MINOR: activity: make "show profiling" support a few arguments
3793 - MINOR: activity: make "show profiling" also dump the memoery usage
3794 - MINOR: activity: add the profiling.memory global setting
3795 - BUILD: makefile: add new option USE_MEMORY_PROFILING
3796 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
3797 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
3798 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
3799 - MEDIUM: mux-h1: Don't block reads when waiting for the other side
3800 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
3801 - REGTESTS: Add script to test abortonclose option
3802 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
3803 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
3804 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
3805 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
3806 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
3807 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
3808 - BUG/MINOR: stream: Decrement server current session counter on L7 retry
3809 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
3810 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
3811 - BUG/MINOR: config: .if/.elif should also accept negative integers
3812 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
3813 - MINOR: config: keep up-to-date current file/line/section in the global struct
3814 - MINOR: config: support some pseudo-variables for file/line/section
3815 - BUILD: activity: do not include malloc.h
3816 - MINOR: arg: improve the error message on missing closing parenthesis
3817 - MINOR: global: export the build features string list
3818 - MINOR: global: add version comparison functions
3819 - MINOR: config: improve .if condition error reporting
3820 - MINOR: config: make cfg_eval_condition() support predicates with arguments
3821 - MINOR: config: add predicate "defined()" to conditional expression blocks
3822 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
3823 - MINOR: config: add predicate "feature" to detect certain built-in features
3824 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
3825 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
3826 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
3827 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
3828 - MINOR: config: add a new message directive: .diag
3829 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
3830 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
3831 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
3832 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
3833 - MINOR: global: define tainted flag
3834 - MINOR: cfgparse: add a new field flags in cfg_keyword
3835 - MINOR: cfgparse: implement experimental config keywords
3836 - MINOR: action: replace match_pfx by a keyword flags field
3837 - MINOR: action: implement experimental actions
3838 - MINOR: cli: set tainted when using CLI expert/experimental mode
3839 - MINOR: stats: report tainted on show info
3840 - MINOR: http_act: mark normalize-uri as experimental
3841 - BUILD: fix usage of ha_alert without format string
3842 - MINOR: proxy: define PR_CAP_LB
3843 - BUG/MINOR: server: do not report diag for peer servers with null weight
3844 - DOC: ssl: Extra files loading now works for backends too
3845 - ADDONS: make addons/ discoverable by git via .gitignore
3846 - DOC: ssl: Add information about crl-file option
3847 - MINOR: sample: improve error reporting on missing arg to strcmp() converter
3848 - DOC: management: mention that some fields may be emitted as floats
3849 - MINOR: tools: implement trimming of floating point numbers
3850 - MINOR: tools: add a float-to-ascii conversion function
3851 - MINOR: freq_ctr: add new functions to report float measurements
3852 - MINOR: stats: avoid excessive padding of float values with trailing zeroes
3853 - MINOR: stats: add the HTML conversion for float types
3854 - MINOR: stats: pass the appctx flags to stats_fill_info()
3855 - MINOR: stats: support an optional "float" option to "show info"
3856 - MINOR: stats: use tv_remain() to precisely compute the uptime
3857 - MINOR: stats: report uptime and start time as floats with subsecond resolution
3858 - MINOR: stats: make "show info" able to report rates as floats when asked
3859 - MINOR: config: mark tune.fd.edge-triggered as experimental
3860 - REORG: vars: move the "proc" scope variables out of the global struct
3861 - REORG: threads: move all_thread_mask() to thread.h
3862 - BUILD: wdt: include signal-t.h
3863 - BUILD: auth: include missing list.h
3864 - REORG: mworker: move proc_self from global to mworker
3865 - BUILD: ssl: ssl_utils requires chunk.h
3866 - BUILD: config: cfgparse-ssl.c needs tools.h
3867 - BUILD: wurfl: wurfl.c needs tools.h
3868 - BUILD: spoe: flt_spoe.c needs tools.h
3869 - BUILD: promex: service-prometheus.c needs tools.h
3870 - BUILD: resolvers: include tools.h
3871 - BUILD: config: include tools.h in cfgparse-listen.c
3872 - BUILD: htx: include tools.h in http_htx.c
3873 - BUILD: proxy: include tools.h in proxy.c
3874 - BUILD: session: include tools.h in session.c
3875 - BUILD: cache: include tools.h in cache.c
3876 - BUILD: sink: include tools.h in sink.c
3877 - BUILD: connection: include tools.h in connection.c
3878 - BUILD: server-state: include tools.h from server_state.c
3879 - BUILD: dns: include tools.h in dns.c
3880 - BUILD: payload: include tools.h in payload.c
3881 - BUILD: vars: include tools.h in vars.c
3882 - BUILD: compression: include tools.h in compression.c
3883 - BUILD: mworker: include tools.h from mworker.c
3884 - BUILD: queue: include tools.h from queue.c
3885 - BUILD: udp: include tools.h from proto_udp.c
3886 - BUILD: stick-table: include freq_ctr.h from stick_table.h
3887 - BUILD: server: include tools.h from server.c
3888 - BUILD: server: include missing proxy.h in server.c
3889 - BUILD: sink: include proxy.h in sink.c
3890 - BUILD: mworker: include proxy.h in mworker.c
3891 - BUILD: filters: include proxy.h in filters.c
3892 - BUILD: fcgi-app: include proxy.h in fcgi-app.c
3893 - BUILD: connection: move list_mux_proto() to connection.c
3894 - REORG: stick-table: uninline stktable_alloc_data_type()
3895 - REORG: stick-table: move composite address functions to stick_table.h
3896 - REORG: config: uninline warnifnotcap() and failifnotcap()
3897 - BUILD: task: remove unused includes from task.c
3898 - MINOR: task: stop including stream.h from task.c
3899 - BUILD: connection: stop including listener-t.h
3900 - BUILD: hlua: include proxy.h from hlua.c
3901 - BUILD: mux-h1: include proxy.h from mux-h1.c
3902 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
3903 - BUILD: listener: include proxy.h from listener.c
3904 - BUILD: http-rules: include proxy.h from http_rules.c
3905 - BUILD: thread: include log.h from thread.c
3906 - BUILD: comp: include proxy.h from flt_http_comp.c
3907 - BUILD: fd: include log.h from fd.c
3908 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
3909 - BUILD: makefile: reorder object files by build time
3910 - DOC: Fix a few grammar/spelling issues and casing of HAProxy
3911 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
3912 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
3913 - DOC: remove last occurrences of "HA-Proxy" syntax
3914 - DOC: peers: fix the protocol tag name in the doc
3915 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
3916 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
3917 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
3918 - MINOR: tools/rnd: compute the result outside of the CAS loop
3919 - BUILD: http_fetch: address a few aliasing warnings with older compilers
3920 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
3921 - BUILD: errors: include stdarg in errors.h
3922 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
3923 - MINOR: cli: make "help" support a command in argument
3924 - MINOR: cli: sort the output of the "help" keywords
3925 - CLEANUP: cli/mworker: properly align the help messages
3926 - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
3927 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
3928 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
3929 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
3930 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
3931
Willy Tarreau080347f2021-05-01 08:25:15 +020039322021/05/01 : 2.4-dev18
3933 - DOC: Fix indentation for `path-strip-dot` normalizer
3934 - DOC: Fix RFC reference for the percent-to-uppercase normalizer
3935 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
3936 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
3937 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
3938 - REORG: htx: Inline htx functions to add HTX blocks in a message
3939 - CLEANUP: assorted typo fixes in the code and comments
3940 - DOC: general: fix white spaces for HTML converter
3941 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
3942 - BUG/MINOR: cpuset: move include guard at the very beginning
3943 - BUG/MAJOR: fix build on musl with cpu_set_t support
3944 - BUG/MEDIUM: cpuset: fix build on MacOS
3945 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
3946 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
3947 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
3948 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
3949 - MEDIUM: http-ana: handle read error on server side if waiting for response
3950 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
3951 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
3952 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
3953 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
3954 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
3955 - DOC: general: fix example in set-timeout
3956 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
3957 - MINOR: config: add a new "default-path" global directive
3958 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
3959 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
3960 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
3961 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
3962 - BUG/MEDIUM: peers: reset commitupdate value in new conns
3963 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
3964 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
3965 - MINOR: peers: add informative flags about resync process for debugging
3966 - BUG/MEDIUM: time: fix updating of global_now upon clock drift
3967 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
3968 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
3969 - MINOR: server: fix doc/trace on lb algo for dynamic server creation
3970 - REGTESTS: server: fix cli_add_server due to previous trace update
3971 - REGTESTS: add minimal CLI "add map" tests
3972 - DOC: management: move "set var" to the proper place
3973 - CLEANUP: map: slightly reorder the add map function
3974 - MINOR: map: get rid of map_add_key_value()
3975 - MINOR: map: show the current and next pattern version in "show map"
3976 - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
3977 - MINOR: pattern: support purging arbitrary ranges of generations
3978 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
3979 - MINOR: map/acl: add the "prepare map/acl" CLI command
3980 - MINOR: map/acl: add the "commit map/acl" CLI command
3981 - MINOR: map/acl: make "add map/acl" support an optional version number
3982 - CLEANUP: map/cli: properly align the map/acl help
3983 - BUILD: compiler: do not use already defined __read_mostly on dragonfly
3984
Willy Tarreaubfd19d62021-04-23 19:11:10 +020039852021/04/23 : 2.4-dev17
3986 - MINOIR: mux-pt/trace: Register a new trace source with its events
3987 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
3988 - CI: travis: Drastically clean up .travis.yml
3989 - CLEANUP: pattern: make all pattern tables read-only
3990 - MINOR: trace: replace the trace() inline function with an equivalent macro
3991 - MINOR: initcall: uniformize the section names between MacOS and other unixes
3992 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
3993 - MINOR: compiler: add macros to declare section names
3994 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
3995 - MINOR: global: declare a read_mostly section
3996 - MINOR: fd: move a few read-mostly variables to their own section
3997 - MINOR: epoll: move epoll_fd to read_mostly
3998 - MINOR: kqueue: move kqueue_fd to read_mostly
3999 - MINOR: pool: move pool declarations to read_mostly
4000 - MINOR: threads: mark all_threads_mask as read_mostly
4001 - MINOR: server: move idle_conn_task to read_mostly
4002 - MINOR: protocol: move __protocol_by_family to read_mostly
4003 - MINOR: pattern: make the pat_lru_seed read_mostly
4004 - MINOR: trace: make trace sources read_mostly
4005 - MINOR: freq_ctr: add a generic function to report the total value
4006 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
4007 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
4008 - MINOR: freq_ctr: add the missing next_event_delay_period()
4009 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
4010 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
4011 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
4012 - MINOR: freq_ctr: simplify and improve the update function
4013 - CLEANUP: time: remove the now unused ms_left_scaled
4014 - MINOR: time: move the time initialization out of tv_update_date()
4015 - MINOR: time: remove useless variable copies in tv_update_date()
4016 - MINOR: time: change the global timeval and the the global tick at once
4017 - MEDIUM: time: make the clock offset global and no per-thread
4018 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
4019 - MINOR: trace: Add the checks as a possible trace source
4020 - MINOIR: checks/trace: Register a new trace source with its events
4021 - MINOR: hlua: Add function to release a lua function
4022 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
4023 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
4024 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
4025 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
4026 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
4027 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
4028 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
4029 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
4030 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
4031 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
4032 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
4033 - DOC: internals: update the SSL architecture schema
4034 - BUG/MEDIUM: sample: Fix adjusting size in field converter
4035 - MINOR: sample: add ub64dec and ub64enc converters
4036 - CLEANUP: sample: align samples list in sample.c
4037 - MINOR: ist: Add `istclear(struct ist*)`
4038 - CI: cirrus: install "pcre" package
4039 - MINOR: opentracing: correct calculation of the number of arguments in the args[]
4040 - MINOR: opentracing: transfer of context names without prefix
4041 - MINOR: sample: converter: Add mjson library.
4042 - MINOR: sample: converter: Add json_query converter
4043 - CI: travis-ci: enable weekly graviton2 builds
4044 - DOC: ssl: Certificate hot update only works on fronted certificates
4045 - DOC: ssl: Certificate hot update works on server certificates
4046 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
4047 - MINOR: threads: Only consider running threads to end a thread harmeless period
4048 - BUG/MINOR: checks: Set missing id to the dummy checks frontend
4049 - MINOR: logs: Add support of checks as session origin to format lf strings
4050 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
4051 - MINOR: connection: Make bc_http_major compatible with tcp-checks
4052 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
4053 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
4054 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
4055 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
4056 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
4057 - BUG/MINOR: logs: Report the true number of retries if there was no connection
4058 - BUILD: makefile: Redirect stderr to /dev/null when probing options
4059 - MINOR: uri_normalizer: Add uri_normalizer module
4060 - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
4061 - MINOR: uri_normalizer: Add `http-request normalize-uri`
4062 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
4063 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
4064 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
4065 - MINOR: uri_normalizer: Add a `sort-query` normalizer
4066 - MINOR: uri_normalizer: Add a `percent-upper` normalizer
4067 - MEDIUM: http_act: Rename uri-normalizers
4068 - DOC: Add introduction to http-request normalize-uri
4069 - DOC: Note that URI normalization is experimental
4070 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
4071 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
4072 - MINOR: pools: drop the unused static history of artificially failed allocs
4073 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
4074 - MEDIUM: pools: move the cache into the pool header
4075 - MINOR: pool: remove the size field from pool_cache_head
4076 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
4077 - MINOR: pools: enable the fault injector in all allocation modes
4078 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
4079 - MEDIUM: pools: unify pool_refill_alloc() across all models
4080 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
4081 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
4082 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
4083 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
4084 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
4085 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
4086 - MINOR: tools: add statistical_prng_range() to get a random number over a range
4087 - MINOR: pools: use cheaper randoms for fault injections
4088 - MINOR: pools: move the fault injector to __pool_alloc()
4089 - MINOR: pools: split the OS-based allocator in two
4090 - MINOR: pools: always use atomic ops to maintain counters
4091 - MINOR: pools: move pool_free_area() out of the lock in the locked version
4092 - MINOR: pools: factor the release code into pool_put_to_os()
4093 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
4094 - MINOR: pools: create unified pool_{get_from,put_to}_cache()
4095 - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
4096 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
4097 - CLEANUP: pools: make the local cache allocator fall back to the shared cache
4098 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
4099 - CLEANUP: pools: uninline pool_put_to_cache()
4100 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
4101 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
4102 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
4103 - CONTRIB: mod_defender: import the minimal number of includes
4104 - CONTRIB: mod_defender: make the code build with the embedded includes
4105 - CONTRIB: modsecurity: import the minimal number of includes
4106 - CONTRIB: modsecurity: make the code build with the embedded includes
4107 - CLEANUP: sample: Improve local variables in sample_conv_json_query
4108 - CLEANUP: sample: Explicitly handle all possible enum values from mjson
4109 - CLEANUP: sample: Use explicit return for successful `json_query`s
4110 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
4111 - CONTRIB: move spoa_example out of the tree
4112 - BUG/MINOR: server: free srv.lb_nodes in free_server
4113 - BUG/MINOR: logs: free logsrv.conf.file on exit
4114 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
4115 - MINOR: server: add log on dynamic server creation
4116 - MINOR: server: implement delete server cli command
4117 - CONTRIB: move spoa_server out of the tree
4118 - CONTRIB: move modsecurity out of the tree
4119 - BUG/MINOR: server: fix potential null gcc error in delete server
4120 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
4121 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
4122 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
4123 - CLEANUP: uri_normalizer: Remove trailing whitespace
4124 - MINOR: uri_normalizer: Add a `strip-dot` normalizer
4125 - CONTRIB: move mod_defender out of the tree
4126 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
4127 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
4128 - MINOR: config: add a diag for invalid cpu-map statement
4129 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
4130 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
4131 - BUILD: makefile: fix the "make clean" target on strict bourne shells
4132 - IMPORT: slz: import slz into the tree
4133 - BUILD: compression: switch SLZ from out-of-tree to in-tree
4134 - CI: github: do not build libslz any more
4135 - CLEANUP: compression: remove calls to SLZ init functions
4136 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
4137 - MINOR: cpuset: define a platform-independent cpuset type
4138 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
4139 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
4140 - MINOR: thread: implement the detection of forced cpu affinity
4141 - MINOR: cfgparse: support the comma separator on parse_cpu_set
4142 - MEDIUM: cfgparse: detect numa and set affinity if needed
4143 - MINOR: global: add option to disable numa detection
4144 - BUG/MINOR: haproxy: fix compilation on macOS
4145 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
4146 - MINOR: time: avoid unneeded updates to now_offset
4147 - MINOR: time: avoid overwriting the same values of global_now
4148 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
4149 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
4150 - BUG/MINOR: peers: remove useless table check if initial resync is finished
4151 - BUG/MEDIUM: peers: re-work connection to new process during reload.
4152 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
4153 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
4154
Willy Tarreau86512dd2021-04-09 17:10:39 +020041552021/04/09 : 2.4-dev16
4156 - CLEANUP: dev/flags: remove useless test in the stdin number parser
4157 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
4158 - MINOR: acl: Add HTTP_2.0 predefined macro
4159 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
4160 - BUG/MINOR: tools: fix parsing "us" unit for timers
4161 - MINOR: server/bind: add support of new prefixes for addresses.
4162 - MINOR: log: register config file and line number on log servers.
4163 - MEDIUM: log: support tcp or stream addresses on log lines.
4164 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
4165 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
4166 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
4167 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
4168 - MINOR: fd: move .linger_risk into fdtab[].state
4169 - MINOR: fd: move .cloned into fdtab[].state
4170 - MINOR: fd: move .initialized into fdtab[].state
4171 - MINOR: fd: move .et_possible into fdtab[].state
4172 - MINOR: fd: move .exported into fdtab[].state
4173 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
4174 - MINOR: cli/show-fd: slightly reorganize the FD status flags
4175 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
4176 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
4177 - CLEANUP: atomic: make all standard add/or/and/sub operations return void
4178 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
4179 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
4180 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
4181 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
4182 - MINOR: atomic: implement native BTS/BTR for x86
4183 - MINOR: ist: Add `istappend(struct ist, char)`
4184 - MINOR: ist: Add `istshift(struct ist*)`
4185 - MINOR: ist: Add `istsplit(struct ist*, char)`
4186 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
4187 - MINOR: opentracing: register config file and line number on log servers
4188 - MEDIUM: resolvers: add support of tcp address on nameserver line.
4189 - MINOR: ist: Rename istappend() to __istappend()
4190 - CLEANUP: htx: Make http_get_stline take a `const struct`
4191 - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
4192 - CLEANUP: Remove useless malloc() casts
4193
Willy Tarreau59fa1d12021-04-02 19:16:32 +020041942021/04/02 : 2.4-dev15
4195 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
4196 - BUG/MINOR: stats: Apply proper styles in HTML status page.
4197 - BUG/MEDIUM: time: make sure to always initialize the global tick
4198 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
4199 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
4200 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
4201 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
4202 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
4203 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
4204 - MINOR: frontend: Create HTTP txn for HTX streams
4205 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
4206 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
4207 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
4208 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
4209 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
4210 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
4211 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
4212 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
4213 - MINOR: muxes: Show muxes flags when the mux list is displayed
4214 - DOC: config: Improve documentation about proto/check-proto keywords
4215 - MINOR: stream: Use stream type instead of proxy mode when appropriate
4216 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
4217 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
4218 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
4219 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
4220 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
4221 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
4222 - DOC: config: Add documentation about TCP to HTTP upgrades
4223 - REGTESTS: Add script to tests TCP to HTTP upgrades
4224 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
4225 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
4226 - MINOR: action: Use a generic function to check validity of an action rule list
4227 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
4228 - MEDIUM: http-rules: Add wait-for-body action on request and response side
4229 - REGTESTS: Add script to tests the wait-for-body HTTP action
4230 - BUG/MINOR: http-fetch: Fix test on message state to capture the version
4231 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
4232 - MINOR: global: define diagnostic mode of execution
4233 - MINOR: cfgparse: diag for multiple nbthread statements
4234 - MINOR: server: diag for 0 weight server
4235 - MINOR: diag: create cfgdiag module
4236 - MINOR: diag: diag if servers use the same cookie value
4237 - MINOR: config: diag if global section after non-global
4238 - TESTS: slightly reorganize the code in the tests/ directory
4239 - TESTS: move tests/*.cfg to tests/config
4240 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
4241 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
4242 - CONTRIB: halog: fix issue with array of type char
4243 - CONTRIB: tcploop: add a shutr command
4244 - CONTRIB: debug: add the show-fd-to-flags script
4245 - CONTRIB: debug: split poll from flags
4246 - CONTRIB: move some dev-specific tools to dev/
4247 - BUILD: makefile: always build the flags utility
4248 - DEV: flags: replace the unneeded makefile with a README
4249 - BUILD: makefile: integrate the hpack tools
4250 - CONTRIB: merge ip6range with iprange
4251 - CONTRIB: move some admin-related sub-projects to admin/
4252 - CONTRIB: move halog to admin/
4253 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
4254 - BUILD: makefile: build halog with the correct flags
4255 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
4256 - CONTRIB: move prometheus-exporter to addons/promex
4257 - DOC: add a few words about USE_* and the addons directory
4258 - CONTRIB: move 51Degrees to addons/51degrees
4259 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
4260 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
4261 - CONTRIB: move contrib/opentracing to addons/ot
4262 - BUG/MINOR: opentracing: initialization after establishing daemon mode
4263 - DOC: clarify that compression works for HTTP/2
4264
Willy Tarreauaf6d88b2021-03-27 09:42:09 +010042652021/03/27 : 2.4-dev14
4266 - MEDIUM: quic: Fix build.
4267 - MEDIUM: quic: Fix build.
4268 - CI: codespell: whitelist "Dragan Dosen"
4269 - CLEANUP: assorted typo fixes in the code and comments
4270 - CI: github actions: update LibreSSL to 3.2.5
4271 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
4272 - CLEANUP: mark defproxy as const on parse tune.fail-alloc
4273 - REGTESTS: remove unneeded experimental-mode in cli add server test
4274 - REGTESTS: wait for proper return of enable server in cli add server test
4275 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
4276 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
4277 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
4278 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
4279 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
4280 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
4281 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
4282 - CLEANUP: compression: do not test for buffer before calling b_alloc()
4283 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
4284 - MINOR: channel: simplify the channel's buffer allocation
4285 - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
4286 - CLEANUP: dynbuf: remove b_alloc_margin()
4287 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
4288 - CLEANUP: pools: remove the unused pool_get_first() function
4289 - MINOR: pools: make the pool allocator support a few flags
4290 - MINOR: pools: add pool_zalloc() to return a zeroed area
4291 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
4292 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
4293 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
4294 - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
4295 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
4296 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
4297 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
4298 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
4299 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
4300 - MINOR: time: also provide a global, monotonic global_now_ms timer
4301 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
4302 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
4303 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
4304 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
4305 - CLEANUP: ssl: remove unused definitions
4306 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
4307 - MINOR: lua: Slightly improve function dumping the lua traceback
4308 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
4309 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
4310 - MINOR: fd: make fd_clr_running() return the remaining running mask
4311 - MINOR: fd: remove the unneeded running bit from fd_insert()
4312 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
4313 - CLEANUP: fd: remove unused fd_set_running_excl()
4314 - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
4315 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
4316 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
4317 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
4318 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
4319 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
4320 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
4321 - BUG/MINOR: ssl: Fix update of default certificate
4322 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
4323 - BUILD: ssl: introduce fine guard for ssl random extraction functions
4324 - REORG: global: move initcall register code in a dedicated file
4325 - REORG: global: move free acl/action in their related source files
4326 - REORG: split proxy allocation functions
4327 - MINOR: proxy: implement a free_proxy function
4328 - MINOR: proxy: define cap PR_CAP_LUA
4329 - MINOR: lua: properly allocate the lua Socket proxy
4330 - MINOR: lua: properly allocate the lua Socket servers
4331 - MINOR: vars: make get_vars() allow the session to be null
4332 - MINOR: vars: make the var() sample fetch keyword depend on nothing
4333 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
4334 - MINOR: sample: make smp_resolve_args() return an allocate error message
4335 - MINOR: sample: add a new SMP_SRC_CONST sample capability
4336 - MINOR: sample: mark the truly constant sample fetch keywords as such
4337 - MINOR: sample: add a new CFG_PARSER context for samples
4338 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
4339 - MEDIUM: vars: add support for a "set-var" global directive
4340 - REGTESTS: add a basic reg-test for some "set-var" commands
4341 - MINOR: sample: add a new CLI_PARSER context for samples
4342 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
4343 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
4344 - MEDIUM: cli: add a new experimental "set var" command
4345 - MINOR: compat: add short aliases for a few very commonly used types
4346 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
4347 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
4348
Willy Tarreau09cc6692021-03-19 17:16:18 +010043492021/03/19 : 2.4-dev13
4350 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
4351 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
4352 - MINOR: tools: improve word fingerprinting by counting presence
4353 - MINOR: tools: do not sum squares of differences for word fingerprints
4354 - MINOR: cli: improve fuzzy matching to work on all remaining words at once
4355 - MINOR: cli: sort the suggestions by order of relevance
4356 - MINOR: cli: limit spelling suggestions to 5
4357 - MINOR: cfgparse/proxy: also support spelling fixes on options
4358 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
4359 - MINOR: time: export the global_now variable
4360 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
4361 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
4362 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
4363 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
4364 - MINOR: cli: implement experimental-mode
4365 - REORG: server: add a free server function
4366 - MINOR: cfgparse: always alloc idle conns task
4367 - REORG: server: move keywords in srv_kws
4368 - MINOR: server: remove fastinter from mistyped kw list
4369 - REORG: server: split parse_server
4370 - REORG: server: move alert traces in parse_server
4371 - REORG: server: rename internal functions from parse_server
4372 - REORG: server: attach servers in parse_server
4373 - REORG: server: use flags for parse_server
4374 - MINOR: server: prepare parsing for dynamic servers
4375 - MINOR: stats: export function to allocate extra proxy counters
4376 - MEDIUM: server: implement 'add server' cli command
4377 - REGTESTS: implement test for 'add server' cli
4378 - MINOR: server: enable standard options for dynamic servers
4379 - MINOR: server: support keyword proto in 'add server' cli
4380 - BUG/MINOR: protocol: add missing support of dgram unix socket.
4381 - CLEANUP: Fix a typo in fix_is_valid description
4382 - MINOR: raw_sock: Add a close method.
4383 - MEDIUM: connections: Introduce a new XPRT method, start().
4384 - MEDIUM: connections: Implement a start() method for xprt_handshake.
4385 - MEDIUM: connections: Implement a start() method in ssl_sock.
4386 - MINOR: muxes: garbage collect the reset() method.
4387 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
4388 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
4389 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
4390
Willy Tarreauacdd47d2021-03-13 11:48:28 +010043912021/03/13 : 2.4-dev12
4392 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
4393 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
4394 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
4395 - MINOR: connection: Use a `struct ist` to store proxy_authority
4396 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
4397 - BUILD: task: fix build at -O0 with threads disabled
4398 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
4399 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
4400 - BUILD: connection: do not use VAR_ARRAY in struct tlv
4401 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
4402 - MINOR: build: force CC to set a return code when probing options
4403 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
4404 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
4405 - CLEANUP: config: also address the cfg_keyword API change in the compression code
4406 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
4407 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
4408 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
4409 - OPTIM: task: automatically adjust the default runqueue-depth to the threads
4410 - BUG/MINOR: connection: Missing QUIC initialization
4411 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
4412 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
4413 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
4414 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
4415 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
4416 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
4417 - BUG/MINOR: server-state: properly handle the case where the base is not set
4418 - BUG/MINOR: server-state: use the argument, not the global state
4419 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
4420 - CLEANUP: vars: make the error message clearer on missing arguments for set-var
4421 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
4422 - CLEANUP: actions: the keyword must always be const from the rule
4423 - MINOR: tools: add simple word fingerprinting to find similar-looking words
4424 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
4425 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
4426 - MINOR: cfgparse: suggest correct spelling for unknown words in global section
4427 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
4428 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
4429 - MINOR: actions: add a function to suggest an action ressembling a given word
4430 - MINOR: http-rules: suggest approaching action names on mismatch
4431 - MINOR: tcp-rules: suggest approaching action names on mismatch
4432 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
4433 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
4434 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
4435 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
4436 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
4437 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
4438 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
4439 - MINOR: resolvers: new function find_srvrq_answer_record()
4440 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
4441 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
4442 - MINOR: resolvers: Use a function to remove answers attached to a resolution
4443 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
4444 - MINOR: resolvers: Add function to change the srv status based on SRV resolution
4445 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
4446 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
4447 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
4448 - MINOR: resolvers: Use milliseconds for cached items in resolver responses
4449 - MINOR: resolvers: Don't try to match immediatly renewed ADD items
4450 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
4451 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
4452 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
4453 - CLEANUP: cli: fix misleading comment and better indent the access level flags
4454 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
4455 - MINOR: cli: test the appctx level for master access instead of comparing pointers
4456 - MINOR: cli: print the error message in the parser function itself
4457 - MINOR: cli: filter the list of commands to the matching part
4458 - MEDIUM: cli: apply spelling fixes for known commands before listing them
4459 - MINOR: tools: add the ability to update a word fingerprint
4460 - MINOR: cli: apply the fuzzy matching on the whole command instead of words
4461 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
4462 - CLEANUP: cli: rename the last few "stats_" to "cli_"
4463 - CLEANUP: task: make sure tasklet handlers always indicate their statuses
4464 - CLEANUP: assorted typo fixes in the code and comments
4465
Willy Tarreau7bbc6c92021-03-05 21:24:23 +010044662021/03/05 : 2.4-dev11
4467 - CI: codespell: skip Makefile for spell check
4468 - CLEANUP: assorted typo fixes in the code and comments
4469 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
4470 - BUG/MINOR: connection: Use the client's dst family for adressless servers
4471 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
4472 - CLEANUP: Use ist2(const void*, size_t) whenever possible
4473 - CLEANUP: Use IST_NULL whenever possible
4474 - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
4475 - BUILD: quic: Implicit conversion between SSL related enums.
4476 - DOC: spoe: Add a note about fragmentation support in HAProxy
4477 - MINOR: contrib: add support for heartbeat control messages.
4478 - MINOR: contrib: Enhance peers dissector heuristic.
4479 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
4480 - CLEANUP: Reapply the ist2() replacement patch
4481 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
4482 - CLEANUP: Use isttest(const struct ist) whenever possible
4483 - Revert "CI: Pin VTest to a known good commit"
4484 - CLEANUP: backend: fix a wrong comment
4485 - BUG/MINOR: backend: free allocated bind_addr if reuse conn
4486 - MINOR: backend: handle reuse for conns with no server as target
4487 - REGTESTS: test http-reuse if no server target
4488 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
4489 - BUG/MINOR: server-state: Don't load server-state file for disabled backends
4490 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
4491 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
4492 - DOC: fix originalto except clause on destination address
4493 - CLEANUP: Use the ist() macro whenever possible
4494 - CLEANUP: Replace for loop with only a condition by while
4495 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
4496 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
4497 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
4498 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
4499 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
4500 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
4501 - MINOR: pools: double the local pool cache size to 1 MB
4502 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
4503 - CLEANUP: stream: explain why we queue the stream at the head of the server list
4504 - MEDIUM: backend: use a trylock when trying to grab an idle connection
4505 - REORG: tools: promote the debug PRNG to more general use as a statistical one
4506 - OPTIM: lb-random: use a cheaper PRNG to pick a server
4507 - MINOR: task: stop abusing the nice field to detect a tasklet
4508 - MINOR: task: move the nice field to the struct task only
4509 - MEDIUM: task: extend the state field to 32 bits
4510 - MINOR: task: add an application specific flag to the state: TASK_F_USR1
4511 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
4512 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
4513 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
4514 - MINOR: server: don't read curr_used_conns multiple times
4515 - CLEANUP: global: reorder some fields to respect cache lines
4516 - CLEANUP: sockpair: silence a coverity check about fcntl()
4517 - CLEANUP: lua: set a dummy file name and line number on the dummy servers
4518 - MINOR: server: add a global list of all known servers
4519 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
4520 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
4521 - MINOR: server: move actconns to the per-thread structure
4522 - CLEANUP: server: reorder some fields in the server struct to respect cache lines
4523 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
4524 - BUG/MINOR: backend: fix condition for reuse on mode HTTP
4525 - BUILD: Fix build when using clang without optimizing.
4526 - CLEANUP: assorted typo fixes in the code and comments
4527
Willy Tarreau8ab65c22021-02-26 22:49:10 +010045282021/02/26 : 2.4-dev10
4529 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
4530 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
4531 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
4532 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
4533 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
4534 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
4535 - DOC: muxes: add a diagram of the exchanges between muxes and outer world
4536 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
4537 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
4538 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
4539 - MINOR: stream: add an "epoch" to figure which streams appeared when
4540 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
4541 - MINOR: streams: use one list per stream instead of a global one
4542 - MEDIUM: streams: do not use the streams lock anymore
4543 - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
4544 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
4545 - MINOR: tasks: do not maintain the rqueue_size counter anymore
4546 - CLEANUP: tasks: use a less confusing name for task_list_size
4547 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
4548 - MINOR: task: limit the remote thread wakeup to the global runqueue only
4549 - MINOR: task: move the allocated tasks counter to the per-thread struct
4550 - CLEANUP: task: split the large tasklet_wakeup_on() function in two
4551 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
4552 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
4553 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
4554 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
4555 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
4556 - BUG/MEDIUM: resolvers: Reset address for unresolved servers
4557 - DOC: Update the module list in MAINTAINERS file
4558 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
4559 - DOC: Update the HTX API documentation
4560 - DOC: Update the filters guide
4561 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
4562 - MINOR: task: split the counts of local and global tasks picked
4563 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
4564 - MINOR: task: don't decrement then increment the local run queue
4565 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
4566 - MINOR: task: make grq_total atomic to move it outside of the grq_lock
4567 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
4568 - MINOR: task: make tasklet wakeup latency measurements more accurate
4569 - MINOR: server: Be more strict on the server-state line parsing
4570 - MINOR: server: Only fill one array when parsing a server-state line
4571 - MEDIUM: server: Refactor apply_server_state() to make it more readable
4572 - CLEANUP: server: Rename state_line node to node instead of name_name
4573 - CLEANUP: server: Rename state_line structure into server_state_line
4574 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
4575 - MINOR: server: Be more strict when reading the version of a server-state file
4576 - MEDIUM: server: Store parsed params of a server-state line in the tree
4577 - MINOR: server: Remove cached line from global server-state tree when found
4578 - MINOR: server: Move loading state of servers in a dedicated function
4579 - MEDIUM: server: Use a tree to store local server-state lines
4580 - MINOR: server: Parse and store server-state lines in a dedicated function
4581 - MEDIUM: server: Don't load server-state file if a line is corrupted
4582 - REORG: server: Export and rename some functions updating server info
4583 - REORG: server-state: Move functions to deal with server-state in its own file
4584 - MINOR: server-state: Don't load server-state file for serverless proxies
4585 - CLEANUP: muxes: Remove useless if condition in show_fd function
4586 - BUG/MINOR: stats: fix compare of no-maint url suffix
4587 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
4588 - MINOR: ssl: mark the SSL handshake tasklet as heavy
4589 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
4590 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
4591 - MINOR: task: add one extra tasklet class: TL_HEAVY
4592 - MINOR: task: place the heavy elements in TL_HEAVY
4593 - MINOR: task: only limit TL_HEAVY tasks but not others
4594 - BUG/MINOR: http-ana: Only consider dst address to process originalto option
4595 - MINOR: tools: Add net_addr structure describing a network addess
4596 - MINOR: tools: Add function to compare an address to a network address
4597 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
4598 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
4599 - REGTESTS: Add script to test except param for fowardedfor/originalto options
4600 - DOC: scheduler: add a diagram showing the different queues and their usages
4601 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
4602 - CLEANUP: config: replace a few free() with ha_free()
4603 - CLEANUP: vars: always zero the pointers after a free()
4604 - CLEANUP: ssl: remove a useless "if" before freeing an error message
4605 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
4606 - CLEANUP: ssl: use realloc() instead of free()+malloc()
4607
Willy Tarreau31dd3932021-02-20 13:30:31 +010046082021/02/20 : 2.4-dev9
4609 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
4610 - CLEANUP: check: fix get_check_status_info declaration
4611 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
4612 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
4613 - MINOR: stats: add helper to get status string
4614 - MEDIUM: contrib/prometheus-exporter: add listen stats
4615 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
4616 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
4617 - BUG/MINOR: dns: missing test writing in output channel in session handler
4618 - BUG/MINOR: dns: fix ring attach control on dns_session_new
4619 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
4620 - BUG/MAJOR: connection: prevent double free if conn selected for removal
4621 - BUG/MINOR: session: atomically increment the tracked sessions counter
4622 - REGTESTS: fix http_reuse_conn_hash proxy test
4623 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
4624 - MINOR: connection: remove pointers for prehash in conn_hash_params
4625 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
4626 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
4627 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
4628 - OPTIM: server: switch the actconn list to an mt-list
4629 - Revert "MINOR: threads: change lock_t to an unsigned int"
4630 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
4631 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
4632 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
4633 - OPTIM: lb-leastconn: do not unlink the server if it did not change
4634 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
4635 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
4636 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
4637 - MINOR: cli: add missing agent commands for set server
4638 - BUILD/MEDIUM: da Adding pcre2 support.
4639 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
4640 - REGTESTS: reorder reuse conn proxy protocol test
4641 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
4642 - MINOR: tasks: refine the default run queue depth
4643 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
4644 - MINOR: mux_h2: do not try to remove front conn from idle trees
4645 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
4646 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
4647 - MINOR: connection: allocate dynamically hash node for backend conns
4648 - DOC: DeviceAtlas documentation typo fix.
4649 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
4650 - BUG/MINOR: http-rules: Always replace the response status on a return action
4651 - BUG/MINOR: server: Init params before parsing a new server-state line
4652 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
4653 - MEDIUM: server: Don't introduce a new server-state file version
4654 - DOC: contrib/prometheus-exporter: remove htx reference
4655 - REGTESTS: contrib/prometheus-exporter: test NaN values
4656 - REGTESTS: contrib/prometheus-exporter: test well known labels
4657 - CI: github actions: switch to stable LibreSSL release
4658 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
4659 - MINOR: dynbuf: make the buffer wait queue per thread
4660 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
4661 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
4662 - MINOR: sched: have one runqueue ticks counter per thread
4663
Willy Tarreaudc626ec2021-02-13 10:17:27 +010046642021/02/13 : 2.4-dev8
4665 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
4666 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
4667 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
4668 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
4669 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
4670 - CLEANUP: assorted typo fixes in the code and comments
4671 - CLEANUP: check: fix some typo in comments
4672 - CLEANUP: tools: typo in `strl2irc` mention
4673 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
4674 - MEDIUM: ssl: add a rwlock for SSL server session cache
4675 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
4676 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
4677 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
4678 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
4679 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
4680 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
4681 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
4682 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
4683 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
4684 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
4685 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
4686 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
4687 - BUG/MINOR: server: re-align state file fields number
4688 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
4689 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
4690 - CLEANUP: remove unused variable assigned found by Coverity
4691 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
4692 - BUG/MINOR: backend: hold correctly lock when killing idle conn
4693 - MEDIUM: connection: protect idle conn lists with locks
4694 - MEDIUM: connection: replace idle conn lists by eb trees
4695 - MINOR: backend: search conn in idle/safe trees after available
4696 - MINOR: backend: search conn in idle tree after safe on always reuse
4697 - MINOR: connection: prepare hash calcul for server conns
4698 - MINOR: connection: use the srv pointer for the srv conn hash
4699 - MINOR: backend: compare conn hash for session conn reuse
4700 - MINOR: connection: use sni as parameter for srv conn hash
4701 - MINOR: reg-tests: test http-reuse with sni
4702 - MINOR: backend: rewrite alloc of stream target address
4703 - MINOR: connection: use dst addr as parameter for srv conn hash
4704 - MINOR: reg-test: test http-reuse with specific dst addr
4705 - MINOR: backend: rewrite alloc of connection src address
4706 - MINOR: connection: use src addr as parameter for srv conn hash
4707 - MINOR: connection: use proxy protocol as parameter for srv conn hash
4708 - MINOR: reg-tests: test http-reuse with proxy protocol
4709 - MINOR: doc: update http reuse for new eligilible connections
4710 - BUG/MINOR: backend: fix compilation without ssl
4711 - REGTESTS: adjust http_reuse_conn_hash requirements
4712 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
4713 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
4714 - CI: cirrus: update FreeBSD image to 12.2
4715 - MEDIUM: cli: add check-addr command
4716 - MEDIUM: cli: add agent-port command
4717 - MEDIUM: server: add server-states version 2
4718 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
4719 - MINOR: server: enhance error precision when applying server state
4720 - BUG/MINOR: server: Fix server-state-file-name directive
4721 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
4722 - BUG/MEDIUM: config: don't pick unset values from last defaults section
4723 - BUG/MINOR: stats: revert the change on ST_CONVDONE
4724 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
4725 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
4726 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
4727 - BUILD: proxy: add missing compression-t.h to proxy-t.h
4728 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
4729 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
4730 - MEDIUM: proxy: only take defaults when a default proxy is passed.
4731 - MINOR: proxy: move the defproxy freeing code to proxy.c
4732 - MINOR: proxy: always properly reset the just freed default instance pointers
4733 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
4734 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
4735 - BUG/MINOR: server: parse_server() must take a const for the defproxy
4736 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
4737 - MINOR: proxy: add a new capability PR_CAP_DEF
4738 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
4739 - MINOR: cfgparse: use a pointer to the current default proxy
4740 - MINOR: proxy: also store the name for a defaults section
4741 - MINOR: proxy: support storing defaults sections into their own tree
4742 - MEDIUM: proxy: store the default proxies in a tree by name
4743 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
4744 - MINOR: http: add baseq sample fetch
4745 - CLEANUP: tcpcheck: Remove a useless test on port variable
4746 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
4747 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
4748 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
4749 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
4750 - DOC: tune: explain the origin of block size for ssl.cachesize
4751 - MINOR: tcp: add support for defer-accept on FreeBSD.
4752 - MINOR: ring: adds new ring_init function.
4753 - CLEANUP: channel: fix comment in ci_putblk.
4754 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
4755 - BUG/MINOR: resolvers: fix attribute packed struct for dns
4756 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
4757 - MINOR: resolvers: renames type dns_resolvers to resolvers.
4758 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
4759 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
4760 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
4761 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
4762 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
4763 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
4764 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
4765 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
4766 - MEDIUM: resolvers: split resolving and dns message exchange layers.
4767 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
4768 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
4769 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
4770
Willy Tarreau5d46fbd2021-02-05 15:17:33 +010047712021/02/05 : 2.4-dev7
4772 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
4773 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
4774 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
4775 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
4776 - CLEANUP: stats: improve field selection for frontend http fields
4777 - CLEANUP: assorted typo fixes in the code and comments
4778 - DOC: Improve documentation of the various hdr() fetches
4779 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
4780 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
4781 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
4782 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
4783 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
4784 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
4785 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
4786 - MINOR: reg-tests: add http-reuse test
4787 - CLEANUP: srv: fix comment for pool-max-conn
4788 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
4789 - REORG: backend: simplify conn_backend_get
4790 - MINOR: ssl: Server ssl context prepare function refactoring
4791 - MINOR: ssl: Certificate chain loading refactorization
4792 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
4793 - MEDIUM: ssl: Enable backend certificate hot update
4794 - MINOR: ssl: Remove client_crt member of the server's ssl context
4795 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
4796 - CLEANUP: ssl: remove SSL_CTX function parameter
4797 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
4798 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
4799 - CI: Fix DEBUG_STRICT definition for Coverity
4800 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
4801 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
4802 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
4803 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
4804 - BUG/MEDIUM: session: only retrieve ready idle conn from session
4805 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
4806 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
4807 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
4808 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
4809 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
4810 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
4811 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
4812 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
4813 - MINOR: stream: Add a function to validate TCP to H1 upgrades
4814 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
4815 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
4816 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
4817 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
4818 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
4819 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
4820 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
4821 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
4822 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
4823 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
4824 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
4825 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
4826 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
4827 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
4828 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
4829 - MINOR: htx: Add a function to know if a block is the only one in a message
4830 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
4831 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
4832 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
4833 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
4834 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
4835 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
4836 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
4837 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
4838 - MINOR: h1: reject websocket handshake if missing key
4839 - MEDIUM: h1: generate WebSocket key on response if needed
4840 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
4841 - MEDIUM: h2: parse Extended CONNECT reponse to htx
4842 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
4843 - MEDIUM: h1: add a WebSocket key on handshake if needed
4844 - MEDIUM: mux_h2: generate Extended CONNECT response
4845 - MEDIUM: h2: parse Extended CONNECT request to htx
4846 - MEDIUM: h2: send connect protocol h2 settings
4847 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
4848 - MINOR: vtc: add websocket test
4849 - REGTESTS: Fix required versions for several scripts
4850 - REGTEST: Don't use the websocket to validate http-check
4851 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
4852 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
4853 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
4854 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
4855 - REGTESTS: set_ssl_server_cert.vtc: set as broken
4856 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
4857 - BUG/MINOR: backend: check available list allocation for reuse
4858 - CI: Fix the coverity builds
4859 - DOC: management: fix "show resolvers" alphabetical ordering
4860 - MINOR: tools: add print_time_short() to print a condensed duration value
4861 - MINOR: activity: make profiling more manageable
4862 - MINOR: activity: declare a new structure to collect per-function activity
4863 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
4864 - MINOR: activity: also report collected tasks stats in "show profiling"
4865 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
4866 - MINOR: activity: add a new "show tasks" command to list currently active tasks
4867 - MINOR: listener: export accept_queue_process
4868 - MINOR: session: export session_expire_embryonic()
4869 - MINOR: muxes: export the timeout and shutr task handlers
4870 - MINOR: checks: export a few functions that appear often in trace dumps
4871 - MINOR: peers: export process_peer_sync() to improve traces
4872 - MINOR: stick-tables: export process_table_expire()
4873 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
4874 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
4875 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
4876 - MINOR: http-conv: Don't check if argument list is set in sample converters
4877 - MINOR: sample: Don't check if argument list is set in sample fetches
4878 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
4879 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
4880 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
4881 - MINOR: contrib/prometheus-exporter: declare states for objects
4882 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
4883 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
4884 - MINOR: listener: export manage_global_listener_queue()
4885 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
4886 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
4887 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
4888 - MINOR: checks: Add function to get the result code corresponding to a status
4889 - MAJOR: contrib/prometheus-exporter: move health check status to labels
4890 - MINOR: contrib/prometheus-exporter: improve service status description field
4891 - MINOR: stats: improve pending connections description
4892 - MINOR: stats: improve max stats descriptions
4893 - MINOR: contrib/prometheus-exporter: use stats desc when possible
4894 - MINOR: contrib/prometheus-exporter: add uweight field
4895 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
4896 - CLEANUP: contrib/prometheus-exporter: remove unused includes
4897 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
4898 - CLEANUP: contrib/prometheus-exporter: remove description in README
4899 - DOC: contrib/prometheus-exporter: Add missing metrics in README
4900 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
4901 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
4902 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
4903 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
4904 - BUG/MINOR: mux_h2: fix incorrect stat titles
4905 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
4906 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
4907 - MINOR: server: Don't set the check port during the update from a state file
4908 - MINOR: dns: Don't set the check port during a server dns resolution
4909 - MEDIUM: check: remove checkport checkaddr flag
4910 - MEDIUM: server: adding support for check_port in server state
4911 - BUG/MINOR: check: consitent way to set agentaddr
4912 - MEDIUM: check: align agentaddr and agentport behaviour
4913 - DOC: server: Add missing params in comment of the server state line parsing
4914 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
4915 - REGTESTS: mark http-check-send.vtc as 2.4-only
4916 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
4917 - BUG/MINOR: ssl: do not try to use early data if not configured
4918 - REGTESTS: unbreak http-check-send.vtc
4919 - MINOR: cli/show_fd: report local and report ports when known
4920 - BUILD: Makefile: move REGTESTST_TYPE default setting
4921 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
4922 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
4923 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
4924 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
4925
Willy Tarreau24c41d52021-01-22 16:19:46 +010049262021/01/22 : 2.4-dev6
4927 - MINOR: converter: adding support for url_enc
4928 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
4929 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
4930 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
4931 - BUILD: Makefile: exclude broken tests by default
4932 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
4933 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
4934 - MINOR: contrib/prometheus-exporter: export build_info
4935 - DOC: fix some spelling issues over multiple files
4936 - CLEANUP: Fix spelling errors in comments
4937 - SCRIPTS: announce-release: fix typo in help message
4938 - CI: github: add a few more words to the codespell ignore list
4939 - DOC: Add maintainers for the Prometheus exporter
4940 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
4941 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
4942 - CLEANUP: sample: remove uneeded check in json validation
4943 - MINOR: reg-tests: add a way to add service dependency
4944 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
4945 - BUG/MINOR: reg-tests: fix service dependency script
4946 - MINOR: reg-tests: add base prometheus test
4947 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
4948 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
4949 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
4950 - BUG/MINOR: init: enforce strict-limits when using master-worker
4951 - MINOR: contrib/prometheus-exporter: avoid connection close header
4952 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
4953 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
4954 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
4955 - MINOR: server: Forbid server definitions in frontend sections
4956 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
4957 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
4958 - MINOR: pattern: add the missing generation ID manipulation functions
4959 - MINOR: peers: Add traces for peer control messages.
4960 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
4961 - BUILD: peers: fix build warning about unused variable
4962 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
4963 - MINOR: cache: Do not store responses with an unknown encoding
4964 - BUG/MINOR: peers: Possible appctx pointer dereference.
4965 - MINOR: build: discard echoing in help target
4966 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
4967 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
4968 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
4969 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
4970 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
4971 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
4972 - CLEANUP: tools: make resolve_sym_name() take a const pointer
4973 - CLEANUP: cli: make "show fd" use a const connection to access other fields
4974 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
4975 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
4976 - MINOR: ssl: provide a "show fd" helper to report important SSL information
4977 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
4978 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
4979 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
4980 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
4981 - CI: Pin VTest to a known good commit
4982 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
4983 - MINOR: cli/show_fd: report some easily detectable suspicious states
4984 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
4985 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
4986 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
4987 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
4988 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
4989 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
4990 - MINOR: http: Add HTTP 501-not-implemented error message
4991 - MINOR: muxes: Add exit status for errors about not implemented features
4992 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
4993 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
4994 - DOC: Remove space after comma in converter signature
4995 - DOC: Rename '<var name>' to '<var>' in converter signature
4996 - MINOR: stats: duplicate 3 fields in bytes in info
4997 - MINOR: stats: add new start time field
4998 - MINOR: contrib/prometheus-exporter: merge info description from stats
4999 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
5000 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
5001 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
5002 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
5003 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
5004 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
5005 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
5006 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
5007 - MINOR: debug: always export the my_backtrace function
5008 - MINOR: debug: extract the backtrace dumping code to its own function
5009 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
5010 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
5011 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
5012 - BUILD: debug: fix build warning by consuming the write() result
5013 - MINOR: lua: remove unused variable
5014 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
5015
Willy Tarreau421ed392021-01-06 17:41:32 +010050162021/01/06 : 2.4-dev5
5017 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
5018 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
5019 - MINOR: time: increase the minimum wakeup interval to 60s
5020 - MINOR: check: do not ignore a connection header for http-check send
5021 - REGTESTS: complete http-check test
5022 - CI: travis-ci: drop coverity scan builds
5023 - MINOR: atomic: don't use ; to separate instruction on aarch64.
5024 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
5025 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
5026 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
5027 - CLEANUP: xxhash: remove the unused src/xxhash.c
5028 - MINOR: sample: add the xxh3 converter
5029 - REGTESTS: add tests for the xxh3 converter
5030 - MINOR: protocol: Create proto_quic QUIC protocol layer.
5031 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
5032 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
5033 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
5034 - MINOR: connection: Add a new xprt to connection.
5035 - MINOR: ssl: Export definitions required by QUIC.
5036 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
5037 - MINOR: tools: Add support for QUIC addresses parsing.
5038 - MINOR: quic: Add definitions for QUIC protocol.
5039 - MINOR: quic: Import C source code files for QUIC protocol.
5040 - MINOR: listener: Add QUIC info to listeners and receivers.
5041 - MINOR: server: Add QUIC definitions to servers.
5042 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
5043 - MINOR: ssl: QUIC transport parameters parsing.
5044 - MINOR: quic: QUIC socket management finalization.
5045 - MINOR: cfgparse: QUIC default server transport parameters init.
5046 - MINOR: quic: Enable the compilation of QUIC modules.
5047 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
5048 - MINOR: quic: Attempt to make trace more readable
5049 - MINOR: quic: Make usage of the congestion control window.
5050 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
5051 - MINOR: quic: Code reordering to help in reviewing/modifying.
5052 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
5053 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
5054 - MINOR: quic: Update the initial salt to that of draft-29.
5055 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
5056 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
5057 - MINOR: quic: Add traces for quic_packet_encrypt().
5058 - MINOR: cache: Refactoring of secondary_key building functions
5059 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
5060 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
5061 - MINOR: cache: Add specific secondary key comparison mechanism
5062 - MINOR: http: Add helper functions to trim spaces and tabs
5063 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
5064 - REGTESTS: cache: Simplify vary.vtc file
5065 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
5066 - MINOR: cache: Remove redundant test in http_action_req_cache_use
5067 - MINOR: cache: Replace the "process-vary" option's expected values
5068 - CI: GitHub Actions: enable daily Coverity scan
5069 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
5070 - MEDIUM: stick-tables: Add srvkey option to stick-table
5071 - REGTESTS: add test for stickiness using "srvkey addr"
5072 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
5073 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
5074 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
5075 - MINOR: lua: Use consistent error message 'memory allocation failed'
5076 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
5077 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
5078 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
5079 - MINOR: qpack: Add static header table definitions for QPACK.
5080 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
5081 - CLEANUP: quic: Remove useless QUIC event trace definitions.
5082 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
5083 - MINOR: quic: Pass quic_conn struct to frame parsers.
5084 - BUG/MINOR: quic: Wrong STREAM frames parsing.
5085 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
5086 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
5087 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
5088 - MINOR: ssl: make tlskeys_list_get_next() take a list element
5089 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
5090 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
5091 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
5092 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
5093 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
5094 - CLEANUP: spoe: fix typo on `var_check_arg` comment
5095 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
5096 - CI: github actions: build several popular "contrib" tools
5097 - DOC: Improve the message printed when running `make` w/o `TARGET`
5098 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
5099 - REGTESTS: add unresolvable servers to srvkey-addr
5100 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
5101 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
5102 - SCRIPTS: improve announce-release to support different tag and versions
5103 - SCRIPTS: make announce release support preparing announces before tag exists
5104 - CLEANUP: assorted typo fixes in the code and comments
5105 - BUG/MINOR: srv: do not init address if backend is disabled
5106 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
5107 - CLEANUP: assorted typo fixes in the code and comments
5108 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
5109
Willy Tarreau4d711762020-12-21 11:54:56 +010051102020/12/21 : 2.4-dev4
5111 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
5112 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
5113 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
5114 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
5115 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
5116 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
5117 - MEDIUM: cache: Avoid going over duplicates lists too often
5118 - MINOR: cache: Add a max-secondary-entries cache option
5119 - CI: cirrus: drop CentOS 6 builds
5120 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
5121 - MINOR: vars: replace static functions with global ones
5122 - MINOR: opentracing: add ARGC_OT enum
5123 - CONTRIB: opentracing: add the OpenTracing filter
5124 - DOC: opentracing: add the OpenTracing filter section
5125 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
5126 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
5127 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
5128 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
5129 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
5130 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
5131 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
5132 - CLEANUP: debug: mark the RNG's seed as unsigned
5133 - CONTRIB: halog: fix build issue caused by %L printf format
5134 - CONTRIB: halog: mark the has_zero* functions unused
5135 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
5136 - CONTRIB: debug: address "poll" utility build on non-linux platforms
5137 - BUILD: plock: remove dead code that causes a warning in gcc 11
5138 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
5139 - BUG/MINOR: dns: SRV records ignores duplicated AR records
5140 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
5141 - CLEANUP: assorted typo fixes in the code and comments
5142 - DOC: assorted typo fixes in the documentation
5143 - CI: codespell: whitelist "te" and "nd" words
5144
Willy Tarreaua786c412020-12-11 17:22:51 +010051452020/12/11 : 2.4-dev3
5146 - MINOR: log: Logging HTTP path only with %HPO
5147 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
5148 - MINOR: traces: add a new level "error" below the "user" level
5149 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
5150 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
5151 - BUG/MINOR: lua: missing "\n" in error message
5152 - BUG/MINOR: lua: lua-load doesn't check its parameters
5153 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
5154 - BUG/MINOR: lua: Some lua init operation are processed unsafe
5155 - MINOR: actions: Export actions lookup functions
5156 - MINOR: actions: add a function returning a service pointer from its name
5157 - MINOR: cli: add a function to look up a CLI service description
5158 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
5159 - MINOR: cache: Improve accept_encoding_normalizer
5160 - MINOR: cache: Add entry to the tree as soon as possible
5161 - BUG/MINOR: trace: Wrong displayed trace level
5162 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
5163 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
5164 - MEDIUM: lua-thread: use atomics for memory accounting
5165 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
5166 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
5167 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
5168 - MINOR: lua-thread: Use NULL context for main lua state
5169 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
5170 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
5171 - MINOR: lua-thread: Split hlua_init() function in two parts
5172 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
5173 - MINOR: lua-thread: Split hlua_load function in two parts
5174 - MINOR: lua-thread: Split hlua_post_init() function in two parts
5175 - MINOR: lua-thread: Add the "thread" core variable
5176 - MEDIUM: lua-thread: No longer use locked context in initialization parts
5177 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
5178 - MINOR: lua-thread: Replace global gL var with an array of states
5179 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
5180 - MINOR: lua-thread: Replace state_from by state_id
5181 - MINOR: lua-thread: Store each function reference and init reference in array
5182 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
5183 - MINOR: lua-thread: Add verbosity in errors
5184 - REGTESTS: add a test for the threaded Lua code
5185 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
5186 - DOC/MINOR: Fix formatting in Management Guide
5187 - MINOR: cache: Do not store stale entry
5188 - MINOR: cache: Add extra "cache-control" value checks
5189 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
5190 - MINOR: cache: Consider invalid Age values as stale
5191 - BUG/MEDIUM: lua-thread: some parts must be initialized once
5192 - BUG/MINOR: lua-thread: close all states on deinit
5193 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
5194 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
5195 - MINOR: session: Add the idle duration field into the session
5196 - MINOR: mux-h1: Update session idle duration when data are received
5197 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
5198 - MINOR: logs: Use session idle duration when no stream is provided
5199 - MINOR: stream: Always get idle duration from the session
5200 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
5201 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
5202 - MINOR: muxes: Remove get_cs_info callback function now useless
5203 - MINOR: stream: Pass an optional input buffer when a stream is created
5204 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
5205 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
5206 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
5207 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
5208 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
5209 - MINOR: mux-h1: Add a rxbuf into the H1 stream
5210 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
5211 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
5212 - MINOR: mux-h1: rework the h1_timeout_task() function
5213 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
5214 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
5215 - MINOR: mux-h1: Rework how shutdowns are handled
5216 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
5217 - MINOR: mux-h1: Process next request for IDLE connection only
5218 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
5219 - MINOR: stick-tables: Add functions to update some values of a tracked counter
5220 - MINOR: session: Add functions to increase http values of tracked counters
5221 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
5222 - MINOR: logs: Get the multiplexer exist status when no stream is provided
5223 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
5224 - MAJOR: mux-h1: Create the client stream as later as possible
5225 - DOC: config: Add notes about errors emitted by H1 mux
5226 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
5227 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
5228 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
5229 - MEDIUM: http-ana: Don't process partial or empty request anymore
5230 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
5231 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
5232 - REGTESTS: Fix proxy_protocol_tlv_validation
5233 - MINOR: http-ana: Properly set message flags from the start-line flags
5234 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
5235 - MINOR: protocol: add a ->set_port() helper to address families
5236 - MINOR: listener: automatically set the port when creating listeners
5237 - MINOR: listener: now use a generic add_listener() function
5238 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
5239 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
5240 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
5241 - MINOR: protocol: remove the redundant ->sock_domain field
5242 - MINOR: protocol: export protocol definitions
5243 - CLEANUP: protocol: group protocol struct members by usage
5244 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
5245 - MINOR: connection: use the control layer's init/close
5246 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
5247 - BUG/MAJOR: spoa/python: Fixing return None
5248 - DOC: spoa/python: Fixing typo in IP related error messages
5249 - DOC: spoa/python: Rephrasing memory related error messages
5250 - DOC: spoa/python: Fixing typos in comments
5251 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
5252 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
5253 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
5254 - BUG/MEDIUM: spoa/python: Fixing references to None
5255 - DOC: email change of the DeviceAtlas maintainer
5256 - MINOR: cache: Dump secondary entries in "show cache"
5257 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
5258 - MINOR: stream-int: don't touch polling anymore on shutdown
5259 - MINOR: connection: implement cs_drain_and_close()
5260 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
5261 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
5262 - MINOR: checks: don't call conn_cond_update_polling() anymore
5263 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
5264 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
5265 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
5266 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
5267 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
5268 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
5269 - BUG/MINOR: tools: Reject size format not starting by a digit
5270 - MINOR: action: define enum for timeout type of the set-timeout rule
5271 - MINOR: stream: prepare the hot refresh of timeouts
5272 - MEDIUM: stream: support a dynamic server timeout
5273 - MEDIUM: stream: support a dynamic tunnel timeout
5274 - MEDIUM: http_act: define set-timeout server/tunnel action
5275 - MINOR: frontend: add client timeout sample fetch
5276 - MINOR: backend: add timeout sample fetches
5277 - MINOR: stream: add sample fetches
5278 - MINOR: stream: add timeout sample fetches
5279 - REGTESTS: add regtest for http-request set-timeout
5280 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
5281 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
5282 - MINOR: connection: remove sock-specific code from conn_sock_send()
5283 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
5284 - MINOR: protocol: add a ->drain() function at the connection control layer
5285 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
5286 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
5287 - MEDIUM: connection: make use of the control layer check_events/ignore_events
5288
Willy Tarreauc94431b2020-12-01 08:15:26 +010052892020/12/01 : 2.4-dev2
5290 - BUILD: Make DEBUG part of .build_opts
5291 - BUILD: Show the value of DEBUG= in haproxy -vv
5292 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
5293 - MINOR: stream: Add level 7 retries on http error 401, 403
5294 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
5295 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
5296 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
5297 - BUG/MEDIUM: http_act: Restore init of log-format list
5298 - DOC: better describes how to configure a fallback crt
5299 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
5300 - MINOR: cache: Prepare helper functions for Vary support
5301 - MEDIUM: cache: Add the Vary header support
5302 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
5303 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
5304 - BUG/MAJOR: peers: fix partial message decoding
5305 - DOC: cache: Add new caching limitation information
5306 - DOC: cache: Add information about Vary support
5307 - DOC: better document the config file format and escaping/quoting rules
5308 - DOC: Clarify %HP description in log-format
5309 - CI: github actions: update LibreSSL to 3.3.0
5310 - CI: github actions: enable 51degrees feature
5311 - MINOR: fd/threads: silence a build warning with threads disabled
5312 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
5313 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
5314 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
5315 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
5316 - MINOR: config: Deprecate and ignore tune.chksize global option
5317 - MINOR: config: Add a warning if tune.chksize is used
5318 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
5319 - MINOR: check: Always increment check health counter on CONPASS
5320 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
5321 - DOC: config: Make disable-on-404 option clearer on transition conditions
5322 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
5323 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
5324 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
5325 - MINOR: debug: add "debug dev sched" to stress the scheduler.
5326 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
5327 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
5328 - MINOR: task: remove tasklet_insert_into_tasklet_list()
5329 - MINOR: task: perform atomic counter increments only once per wakeup
5330 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
5331 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
5332 - BUG/MEDIUM: local log format regression.
5333
Willy Tarreau1a38ffc2020-11-21 16:00:40 +010053342020/11/21 : 2.4-dev1
5335 - MINOR: ist: Add istend() function to return a pointer to the end of the string
5336 - MINOR: sample: Add converters to parse FIX messages
5337 - REGTEST: converter: Add a regtest for fix converters
5338 - MINOR: sample: Add converts to parses MQTT messages
5339 - REGTEST: converter: Add a regtest for MQTT converters
5340 - MINOR: compat: automatically include malloc.h on glibc
5341 - MEDIUM: pools: call malloc_trim() from pool_gc()
5342 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
5343 - MINOR: pattern: move the update revision to the pat_ref, not the expression
5344 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
5345 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
5346 - MINOR: pattern: make the delete and prune functions more generic
5347 - MEDIUM: pattern: link all final elements from the reference
5348 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
5349 - MINOR: pattern: remerge the list and tree deletion functions
5350 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
5351 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
5352 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
5353 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
5354 - MINOR: pattern: store a generation number in the reference patterns
5355 - MEDIUM: pattern: only match patterns that match the current generation
5356 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
5357 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
5358 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
5359 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
5360 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
5361 - MINOR: pattern: prepare removal of a pattern from the list head
5362 - MEDIUM: pattern: turn the pattern chaining to single-linked list
5363 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
5364 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
5365 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
5366 - MINOR: ssl: instantiate stats module
5367 - MINOR: ssl: count client hello for stats
5368 - MINOR: ssl: add counters for ssl sessions
5369 - DOC: config: Fix a typo on ssl_c_chain_der
5370 - MINOR: server: remove idle lock in srv_cleanup_connections
5371 - BUILD: ssl: silence build warning on uninitialised counters
5372 - BUILD: http-htx: fix build warning regarding long type in printf
5373 - REGTEST: ssl: test wildcard and multi-type + exclusions
5374 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
5375 - CI: Expand use of GitHub Actions for CI
5376 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
5377 - BUG/MINOR: pattern: a sample marked as const could be written
5378 - BUG/MINOR: lua: set buffer size during map lookups
5379 - MEDIUM: cache: Change caching conditions
5380 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
5381 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
5382 - MINOR: peers: Add traces to peer_treat_updatemsg().
5383 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
5384 - BUG/MINOR: peers: Missing TX cache entries reset.
5385 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
5386 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
5387 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
5388 - BUG/MEDIUM: check: reuse srv proto only if using same mode
5389 - MINOR: check: report error on incompatible proto
5390 - MINOR: check: report error on incompatible connect proto
5391 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
5392 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
5393 - MINOR: spoe: Don't close connection in sync mode on processing timeout
5394 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
5395 - MINOR: init: Fix the prototype for per-thread free callbacks
5396 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
5397 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
5398 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
5399 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
5400 - REGTESTS: Add sample_fetches/cook.vtc
5401 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
5402 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
5403 - CLEANUP: flt-trace: Remove unused random-parsing option
5404 - MINOR: flt-trace: Add an option to inhibits trace messages
5405 - MINOR: flt-trace: Use a bitfield for the trace options
5406 - REGTESTS: Add a script to test the random forwarding with several filters
5407 - REGTESTS: mark the abns test as broken again
5408 - REGTESTS: converter: add url_dec test
5409 - CI: Stop hijacking the hosts file
5410 - CI: Make the h2spec workflow more consistent with the VTest workflow
5411 - CI: travis-ci: remove amd64, osx builds
5412 - CI: travis-ci: arm64 are not allowed to fail anymore
5413 - DOC: add missing 3.10 in the summary
5414 - MINOR: ssl: remove client hello counters
5415 - MEDIUM: stats: add counters for failed handshake
5416 - MINOR: ssl: create common ssl_ctx init
5417 - MEDIUM: cli/ssl: configure ssl on server at runtime
5418 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
5419 - DOC: coding-style: update a few rules about pointers
5420 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
5421 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
5422 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
5423 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
5424 - BUG/MEDIUM: ssl: error when no certificate are found
5425 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
5426 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
5427 - CI: Github Actions: enable prometheus exporter
5428 - CI: Github Actions: remove LibreSSL-3.0.2 builds
5429 - CI: Github Actions: enable BoringSSL builds
5430 - CI: travis-ci: remove builds migrated to GH actions
5431 - BUILD: makefile: enable crypt(3) for OpenBSD
5432 - CI: Github Action: run "apt-get update" before packages restore
5433 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
5434 - CI: Pass the github.event_name to matrix.py
5435 - CI: Clean up Windows CI
5436 - DOC: clarify how to create a fallback crt
5437 - CLEANUP: connection: do not use conn->owner when the session is known
5438 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
5439 - REGTESTS: mark proxy_protocol_random_fail as broken
5440 - BUG/MINOR: http_htx: Fix searching headers by substring
5441 - MINOR: http_act: Add -m flag for del-header name matching method
5442
Willy Tarreau1db55792020-11-05 17:20:35 +010054432020/11/05 : 2.4-dev0
5444 - MINOR: version: it's development again.
5445 - DOC: mention in INSTALL that it's development again
5446
Willy Tarreau1c0a7222020-11-05 17:04:53 +010054472020/11/05 : 2.3.0
5448 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
5449 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
5450 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
5451 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
5452 - BUG/MINOR: checks: Report a socket error before any connection attempt
5453 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
5454 - MINOR: server: Copy configuration file and line for server templates
5455 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
5456 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
5457 - MINOR: debug: don't count free(NULL) in memstats
5458 - BUG/MINOR: filters: Skip disabled proxies during startup only
5459 - MINOR: mux_h2: capitalize frame type in stats
5460 - MINOR: mux_h2: add stat for total count of connections/streams
5461 - MINOR: stats: do not display empty stat module title on html
5462 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
5463 - BUG/MEDIUM: listener: only enable a listening listener if needed
5464 - BUG/MEDIUM: listener: never suspend inherited sockets
5465 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
5466 - MINOR: fd: add fd_want_recv_safe()
5467 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
5468 - REGTESTS: mark abns_socket as working now
5469 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
5470 - MINOR: sock: add a check against cross worker<->master socket activities
5471 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
5472 - BUG/MEDIUM: server: make it possible to kill last idle connections
5473 - MINOR: mworker/cli: the master CLI use its own applet
5474 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
5475 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
5476 - DOC: Add dns as an available domain to show stat
5477 - BUILD: makefile: usual reorder of objects for faster builds
5478 - DOC: update INSTALL to mention that TCC is supported
5479 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
5480 - MINOR: version: mention that it's stable now
5481
Willy Tarreaubd703e52020-10-31 13:17:06 +010054822020/10/31 : 2.3-dev9
5483 - CLEANUP: http_ana: remove unused assignation of `att_beg`
5484 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
5485 - BUG/MINOR: log: fix memory leak on logsrv parse error
5486 - BUG/MINOR: log: fix risk of null deref on error path
5487 - BUILD: ssl: more elegant OpenSSL early data support check
5488 - CI: github actions: update h2spec to 2.6.0
5489 - BUG/MINOR: cache: Check the return value of http_replace_res_status
5490 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
5491 - MINOR: cache: Process the If-Modified-Since header in conditional requests
5492 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
5493 - MINOR: mux-h2: register a stats module
5494 - MINOR: mux-h2: add counters instance to h2c
5495 - MINOR: mux-h2: add stats for received frame types
5496 - MINOR: mux-h2: report detected error on stats
5497 - MINOR: mux-h2: count open connections/streams on stats
5498 - BUG/MINOR: server: fix srv downtime calcul on starting
5499 - BUG/MINOR: server: fix down_time report for stats
5500 - BUG/MINOR: lua: initialize sample before using it
5501 - MINOR: cache: Add Expires header value parsing
5502 - MINOR: ist: Add a case insensitive istmatch function
5503 - BUG/MINOR: cache: Manage multiple values in cache-control header value
5504 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
5505 - MINOR: pattern: make pat_ref_append() return the newly added element
5506 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
5507 - MINOR: pattern: export pat_ref_push()
5508 - CLEANUP: pattern: use calloc() rather than malloc for structures
5509 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
5510
Willy Tarreaufb1b9e32020-10-24 13:14:31 +020055112020/10/24 : 2.3-dev8
5512 - MINOR: backend: replace the lbprm lock with an rwlock
5513 - MINOR: lb/map: use seek lock and read locks where appropriate
5514 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
5515 - MINOR: lb/first: use a read lock in fas_get_next_server()
5516 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
5517 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
5518 - BUILD: ssl: make BoringSSL use its own version numbers
5519 - CLEANUP: threads: don't register an initcall when not debugging
5520 - MINOR: threads: change lock_t to an unsigned int
5521 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
5522 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
5523 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
5524 - MEDIUM: config: report that "nbproc" is deprecated
5525 - BUG/MINOR: listener: close before free in `listener_accept`
5526 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
5527 - BUG/MINOR: queue: properly report redistributed connections
5528 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
5529 - BUILD: makefile: add entries to build common debugging tools
5530 - BUG/MEDIUM: server: support changing the slowstart value from state-file
5531 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
5532 - MINOR: http: Add etag comparison function
5533 - MEDIUM: cache: Store the ETag information in the cache_entry
5534 - MEDIUM: cache: Add support for 'If-None-Match' request header
5535 - REGTEST: cache: Add if-none-match test case
5536 - CLEANUP: compression: Make use of http_get_etag_type()
5537 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
5538 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
5539 - MINOR: threads/debug: only report used lock stats
5540 - MINOR: threads/debug: only report lock stats for used operations
5541 - MINOR: proxy; replace the spinlock with an rwlock
5542 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
5543 - MINOR: proxy/cli: only take a read lock in "show errors"
5544 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
5545 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
5546 - MINOR: queue: reduce the locked area in pendconn_add()
5547 - OPTIM: queue: make the nbpend counters atomic
5548 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
5549 - MINOR: leastconn: take the queue length into account when queuing servers
5550 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
5551 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
5552 - MINOR: stats: support the "up" output modifier for "show stat"
5553 - MINOR: stats: also support a "no-maint" show stat modifier
5554 - MINOR: stats: indicate the number of servers in a backend's status
5555 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
5556 - REGTEST: ssl: test "set ssl cert" with separate key / crt
5557 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
5558 - MINOR: stats: report server's user-configured weight next to effective weight
5559 - CI: travis-ci: switch to Ubuntu 20.04
5560 - CONTRIB: release-estimator: Add release estimating tool
5561 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
5562 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
5563
Willy Tarreau9d58c9b2020-10-17 10:31:50 +020055642020/10/17 : 2.3-dev7
5565 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
5566 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
5567 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
5568 - MINOR: fd: report an error message when failing initial allocations
5569 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
5570 - MINOR: sock: add sock_accept_conn() to test a listening socket
5571 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
5572 - MINOR: sockpair: implement the .rx_listening function
5573 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
5574 - CLEANUP: unix: make use of sock_accept_conn() where relevant
5575 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
5576 - CONTRIB: tcploop: implement a disconnect operation 'D'
5577 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
5578 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
5579 - BUG/MINOR: connection: fix loop iter on connection takeover
5580 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
5581 - MINOR: connection: improve list api usage
5582 - MINOR: mux/connection: add a new mux flag for HOL risk
5583 - MINOR: connection: don't check priv flag on free
5584 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
5585 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
5586 - MEDIUM: h2: remove conn from session on detach
5587 - MEDIUM: fcgi: remove conn from session on detach
5588 - DOC: Describe reuse safe for HOL handling
5589 - MEDIUM: proxy: remove obsolete "mode health"
5590 - MEDIUM: proxy: remove obsolete "monitor-net"
5591 - CLEANUP: protocol: remove the ->drain() function
5592 - CLEANUP: fd: finally get rid of fd_done_recv()
5593 - MINOR: connection: make sockaddr_alloc() take the address to be copied
5594 - MEDIUM: listener: allocate the connection before queuing a new connection
5595 - MINOR: session: simplify error path in session_accept_fd()
5596 - MINOR: connection: add new error codes for accept_conn()
5597 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
5598 - MINOR: protocol: add a new function accept_conn()
5599 - MINOR: sock: implement sock_accept_conn() to accept a connection
5600 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
5601 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
5602 - MEDIUM: listener: remove the second pass of fd manipulation at the end
5603 - MINOR: protocol: add a default I/O callback and put it into the receiver
5604 - MINOR: log: set the UDP receiver's I/O handler in the receiver
5605 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
5606 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
5607 - DOC: improve the documentation for "option nolinger"
5608 - BUG/MEDIUM: proxy: properly stop backends
5609 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
5610 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
5611 - MINOR: threads: add the transitions to/from the seek state
5612 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
5613 - BUILD: listener: avoir a build warning when threads are disabled
5614 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
5615 - MINOR: ssl: add volatile flags to ssl samples
5616 - MEDIUM: backend: reuse connection if using a static sni
5617 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
5618 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
5619 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
5620 - DOC: fix typo in MAX_SESS_STKCTR
5621
Willy Tarreaub7ffe192020-10-10 10:45:13 +020056222020/10/10 : 2.3-dev6
5623 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
5624 - BUILD: makefile: Update feature flags for OpenBSD
5625 - DOC: agent-check: fix typo in "fail" word expected reply
5626 - DOC: crt: advise to move away from cert bundle
5627 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
5628 - REGTEST: fix host part in balance-uri-path-only.vtc
5629 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
5630 - REGTEST: the iif converter test requires 2.3
5631 - REGTEST: make agent-check.vtc require 1.8
5632 - REGTEST: make abns_socket.vtc require 1.8
5633 - REGTEST: make map_regm_with_backref require 1.7
5634 - BUILD: makefile: Update feature flags for FreeBSD
5635 - OPTIM: backend/random: never queue on the server, always on the backend
5636 - OPTIM: backend: skip LB when we know the backend is full
5637 - BUILD: makefile: Fix building with closefrom() support enabled
5638 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
5639 - MINOR: tools: support for word expansion of environment in parse_line
5640 - BUILD: tools: fix minor build issue on isspace()
5641 - BUILD: makefile: Enable closefrom() support on Solaris
5642 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
5643 - MINOR: ssl: Add error if a crt-list might be truncated
5644 - MINOR: ssl: remove uneeded check in crtlist_parse_file
5645 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
5646 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
5647 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
5648 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
5649 - DOC: ssl: new "cert bundle" behavior
5650 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
5651 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
5652 - MINOR: counters: fix a typo in comment
5653 - BUG/MINOR: stats: fix validity of the json schema
5654 - REORG: stats: export some functions
5655 - MINOR: stats: add stats size as a parameter for csv/json dump
5656 - MINOR: stats: hide px/sv/li fields in applet struct
5657 - REORG: stats: extract proxy json dump
5658 - REORG: stats: extract proxies dump loop in a function
5659 - MINOR: hlua: Display debug messages on stderr only in debug mode
5660 - MINOR: stats: define the concept of domain for statistics
5661 - MINOR: stats: define additional flag px cap on domain
5662 - MEDIUM: stats: add delimiter for static proxy stats on csv
5663 - MEDIUM: stats: define an API to register stat modules
5664 - MEDIUM: stats: add abstract type to store counters
5665 - MEDIUM: stats: integrate static proxies stats in new stats
5666 - MINOR: stats: support clear counters for dynamic stats
5667 - MINOR: stats: display extra proxy stats on the html page
5668 - MINOR: stats: add config "stats show modules"
5669 - MINOR: dns/stats: integrate dns counters in stats
5670 - MINOR: stats: remove for loop declaration
5671 - DOC: ssl: fix typo about ocsp files
5672 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
5673 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
5674 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
5675 - CLEANUP: cache: Fix leak of cconf->c.name during config check
5676 - CLEANUP: ssl: Release cached SSL sessions on deinit
5677 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
5678 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
5679 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
5680 - CLEANUP: sock-unix: Remove an unreachable goto clause
5681 - BUG/MINOR: proxy: inc req counter on new syslog messages.
5682 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
5683 - MINOR: stats: inc req counter on listeners.
5684 - MINOR: channel: new getword and getchar functions on channel.
5685 - MEDIUM: log: syslog TCP support on log forward section.
5686 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
5687 - DOC: re-work log forward bind statement documentation.
5688 - DOC: fix a confusing typo on a regsub example
5689 - BUILD: Add a DragonFlyBSD target
5690 - BUG/MINOR: makefile: fix a tiny typo in the target list
5691 - BUILD: makefile: Update feature flags for NetBSD
5692 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
5693 - DOC: Add missing stats fields in the management doc
5694 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
5695 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
5696 - DOC: Fix typos in configuration.txt
5697 - BUG/MINOR: http: Fix content-length of the default 500 error
5698 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
5699 - REGTESTS: mark abns_socket as broken
5700 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
5701 - MEDIUM: listeners: don't bounce listeners management between queues
5702 - MEDIUM: init: stop disabled proxies after initializing fdtab
5703 - MEDIUM: listeners: make unbind_listener() converge if needed
5704 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
5705 - MEDIUM: listeners: remove the now unused ZOMBIE state
5706 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
5707 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
5708 - MINOR: listeners: introduce listener_set_state()
5709 - MINOR: proxy: maintain per-state counters of listeners
5710 - MEDIUM: proxy: remove the unused PR_STFULL state
5711 - MEDIUM: proxy: remove the PR_STERROR state
5712 - MEDIUM: proxy: remove state PR_STPAUSED
5713 - MINOR: startup: don't rely on PR_STNEW to check for listeners
5714 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
5715 - MEDIUM: proxy: replace proxy->state with proxy->disabled
5716 - MEDIUM: proxy: remove start_proxies()
5717 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
5718 - MINOR: listeners: check the current listener state in pause_listener()
5719 - MINOR: listeners: check the current listener earlier state in resume_listener()
5720 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
5721 - MINOR: protocol: introduce protocol_{pause,resume}_all()
5722 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
5723 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
5724 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
5725 - BUG/MEDIUM: listeners: correctly report pause() errors
5726 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
5727 - CLEANUP: protocol: remove the ->disable_all method
5728 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
5729 - MINOR: listeners: export enable_listener()
5730 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
5731 - CLEANUP: protocol: remove the ->enable_all method
5732 - CLEANUP: listeners: remove the now unused enable_all_listeners()
5733 - MINOR: protocol: rename the ->listeners field to ->receivers
5734 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
5735 - MINOR: protocol: implement an ->rx_resume() method
5736 - MINOR: listener: use the protocol's ->rx_resume() method when available
5737 - MINOR: sock: provide a set of generic enable/disable functions
5738 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
5739 - MINOR: protocol: add a new pair of enable/disable methods for listeners
5740 - MEDIUM: listeners: now use the listener's ->enable/disable
5741 - MINOR: listeners: split delete_listener() in two versions
5742 - MINOR: listeners: count unstoppable jobs on creation, not deletion
5743 - MINOR: listeners: add a new stop_listener() function
5744 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
5745 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
5746 - MEDIUM: proxy: centralize proxy status update and reporting
5747 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
5748 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
5749 - MEDIUM: udp: implement udp_suspend() and udp_resume()
5750 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
5751 - MEDIUM: listeners: always close master vs worker listeners
5752 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
5753 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
5754 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
5755 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
5756 - MEDIUM: receivers: add an rx_unbind() method in the protocols
5757 - MINOR: listeners: split do_unbind_listener() in two
5758 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
5759 - MEDIUM: config: mark "grace" as deprecated
5760 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
5761 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
5762 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
5763 - BUILD: makefile: Enable getaddrinfo() on OS/X
5764
Christopher Faulet05f01882020-09-25 18:40:47 +020057652020/09/25 : 2.3-dev5
5766 - DOC: Fix typo in iif() example
5767 - CLEANUP: Update .gitignore
5768 - BUILD: introduce possibility to define ABORT_NOW() conditionally
5769 - CI: travis-ci: help Coverity to recognize abort()
5770 - BUG/MINOR: Fix type passed of sizeof() for calloc()
5771 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
5772 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
5773 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
5774 - BUG/MINOR: ssl: verifyhost is case sensitive
5775 - BUILD: makefile: change default value of CC from gcc to cc
5776 - CI: travis-ci: split asan step out of running tests
5777 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
5778 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
5779 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
5780 - BUG/MINOR: log-forward: fail on unknown keywords
5781 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
5782 - BUG/MEDIUM: log-forward: always quit on parsing errors
5783 - MEDIUM: ssl: remove bundle support in crt-list and directories
5784 - MEDIUM: ssl/cli: remove support for multi certificates bundle
5785 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
5786 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
5787 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
5788 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
5789 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
5790 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
5791 - CLEANUP: ssl: remove utility functions for bundle
5792 - DOC: explain bundle emulation in configuration.txt
5793 - BUILD: fix build with openssl < 1.0.2 since bundle removal
5794 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
5795 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
5796 - MINOR: listener: create a new struct "settings" in bind_conf
5797 - MINOR: listener: move bind_proc and bind_thread to struct settings
5798 - MINOR: listener: move the interface to the struct settings
5799 - MINOR: listener: move the network namespace to the struct settings
5800 - REORG: listener: create a new struct receiver
5801 - REORG: listener: move the listening address to a struct receiver
5802 - REORG: listener: move the receiving FD to struct receiver
5803 - REORG: listener: move the listener's proto to the receiver
5804 - MINOR: listener: make sock_find_compatible_fd() check the socket type
5805 - REORG: listener: move the receiver part to a new file
5806 - MINOR: receiver: link the receiver to its settings
5807 - MINOR: receiver: link the receiver to its owner
5808 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
5809 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
5810 - MINOR: listener: move the INHERITED flag down to the receiver
5811 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
5812 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
5813 - MINOR: protocol: rename the ->bind field to ->listen
5814 - MINOR: protocol: add a new ->bind() entry to bind the receiver
5815 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
5816 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
5817 - MEDIUM: udp: make use of sock_inet_bind_receiver()
5818 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
5819 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
5820 - MEDIUM: sockpair: implement sockpair_bind_receiver()
5821 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
5822 - MEDIUM: protocol: explicitly start the receiver before the listener
5823 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
5824 - MINOR: protocol: add a new proto_fam structure for protocol families
5825 - MINOR: protocol: retrieve the family-specific fields from the family
5826 - CLEANUP: protocol: remove family-specific fields from struct protocol
5827 - MINOR: protocol: add a real family for existing FDs
5828 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
5829 - MINOR: tools: make str2sa_range() take more options than just resolve
5830 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
5831 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
5832 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
5833 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
5834 - MINOR: listener: remove the inherited arg to create_listener()
5835 - MINOR: tools: make str2sa_range() optionally return the fd
5836 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
5837 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
5838 - MINOR: config: do not test an inherited socket again
5839 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
5840 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
5841 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
5842 - MINOR: tools: remove the central test for "udp" in str2sa_range()
5843 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
5844 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
5845 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
5846 - MINOR: listener: pass the chosen protocol to create_listeners()
5847 - MINOR: tools: make str2sa_range() directly return the protocol
5848 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
5849 - MINOR: protocol: add the control layer type in the protocol struct
5850 - MEDIUM: protocol: store the socket and control type in the protocol array
5851 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
5852 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
5853 - MINOR: tools: drop listener detection hack from str2sa_range()
5854 - BUILD: sock_unix: add missing errno.h
5855 - MINOR: sock_inet: report the errno string in binding errors
5856 - MINOR: sock_unix: report the errno string in binding errors
5857 - BUILD: sock_inet: include errno.h
5858 - MINOR: h2/trace: also display the remaining frame length in traces
5859 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
5860 - BUG/MEDIUM: h2: report frame bits only for handled types
5861 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
5862 - BUG/MINOR: Fix memory leaks cfg_parse_peers
5863 - BUG/MINOR: config: Fix memory leak on config parse listen
5864 - MINOR: backend: make the "whole" option of balance uri take only one bit
5865 - MINOR: backend: add a new "path-only" option to "balance uri"
5866 - REGTESTS: add a few load balancing tests
5867 - BUG/MEDIUM: listeners: do not pause foreign listeners
5868 - BUG/MINOR: listeners: properly close listener FDs
5869 - BUILD: trace: include tools.h
5870
Willy Tarreau253c4dc2020-09-11 17:05:59 +020058712020/09/11 : 2.3-dev4
5872 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
5873 - BUG/MEDIUM: ssl: crt-list negative filters don't work
5874 - DOC: overhauling github issue templates
5875 - MEDIUM: cfgparse: Emit hard error on truncated lines
5876 - DOC: cache: Use '<name>' instead of '<id>' in error message
5877 - MINOR: cache: Reject duplicate cache names
5878 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
5879 - MINOR: stats: prevent favicon.ico requests for stats page
5880 - BUILD: tools: include auxv a bit later
5881 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
5882 - MEDIUM: ssl: Support certificate chaining for certificate generation
5883 - MINOR: ssl: Support SAN extension for certificate generation
5884 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
5885 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
5886 - MINOR: reload: determine the foreing binding status from the socket
5887 - MEDIUM: reload: stop passing listener options along with FDs
5888 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
5889 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
5890 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
5891 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
5892 - MEDIUM: reload: pass all exportable FDs, not just listeners
5893 - DOC: add description of pidfile in master-worker mode
5894 - BUG/MINOR: reload: do not fail when no socket is sent
5895 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
5896 - CLEANUP: tcp: stop exporting smp_fetch_src()
5897 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
5898 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
5899 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
5900 - REORG: sock: start to move some generic socket code to sock.c
5901 - MINOR: sock: introduce sock_inet and sock_unix
5902 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
5903 - MINOR: sock_inet: implement sock_inet_get_dst()
5904 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
5905 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
5906 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
5907 - REORG: listener: move xfer_sock_list to sock.{c,h}.
5908 - MINOR: sock: add interface and namespace length to xfer_sock_list
5909 - MINOR: sock: implement sock_find_compatible_fd()
5910 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
5911 - REORG: sock: move get_old_sockets() from haproxy.c
5912 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
5913 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
5914 - BUILD: sock_unix: fix build issue with isdigit()
5915 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
5916 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
5917 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
5918 - MINOR: http-htx: Handle an optional reason when replacing the response status
5919 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
5920 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
5921 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
5922 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
5923 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
5924 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
5925 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
5926 - REGTEST: increase some short timeouts to make tests more reliable
5927 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
5928 - BUILD: thread: limit the libgcc_s workaround to glibc only
5929 - MINOR: protocol: do not call proto->bind_all() anymore
5930 - MINOR: protocol: do not call proto->unbind_all() anymore
5931 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
5932 - MAJOR: init: start all listeners via protocols and not via proxies anymore
5933 - BUG/MINOR: startup: haproxy -s cause 100% cpu
5934 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
5935 - BUG/MEDIUM: doc: Fix replace-path action description
5936 - MINOR: http-rules: Add set-pathq and replace-pathq actions
5937 - MINOR: http-fetch: Add pathq sample fetch
5938 - REGTEST: Add a test for request path manipulations, with and without the QS
5939 - MINOR: Commit .gitattributes
5940 - CLEANUP: Update .gitignore
5941 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
5942 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
5943 - MINOR: server: Improve log message sent when server address is updated
5944 - DOC: ssl-load-extra-files only applies to certificates on bind lines
5945 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
5946 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
5947 - BUILD: threads: better workaround for late loading of libgcc_s
5948 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
5949 - BUILD: compiler: workaround a glibc madness around __attribute__()
5950 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
5951 - BUILD: trace: always have an argument before variadic args in macros
5952 - BUILD: traces: don't pass an empty argument for missing ones
5953 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
5954 - CLEANUP: Free old_argv on deinit
5955 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
5956 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
5957 - CLEANUP: haproxy: Free post_check_list in deinit()
5958 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
5959 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
5960 - MINOR: sample: Add iif(<true>,<false>) converter
5961
Willy Tarreauf104b532020-08-14 18:54:05 +020059622020/08/14 : 2.3-dev3
5963 - SCRIPTS: git-show-backports: make -m most only show the left branch
5964 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
5965 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
5966 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
5967 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
5968 - CLEANUP: dns: typo in reported error message
5969 - BUG/MAJOR: dns: disabled servers through SRV records never recover
5970 - BUG/MINOR: spoa-server: fix size_t format printing
5971 - DOC: spoa-server: fix false friends `actually`
5972 - BUG/MINOR: ssl: fix memory leak at OCSP loading
5973 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
5974 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
5975 - MINOR: arg: Add an argument type to keep a reference on opaque data
5976 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
5977 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
5978 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
5979 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
5980 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
5981 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
5982 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
5983 - MEDIUM: lua: Don't filter exported fetches and converters
5984 - MINOR: lua: Add support for userlist as fetches and converters arguments
5985 - MINOR: lua: Add support for regex as fetches and converters arguments
5986 - MINOR: arg: Use chunk_destroy() to release string arguments
5987 - BUG/MINOR: snapshots: leak of snapshots on deinit()
5988 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
5989 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
5990 - CLEANUP: fix all duplicated semicolons
5991 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
5992 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
5993 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
5994 - BUILD: makefile: don't disable -Wstringop-overflow anymore
5995 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
5996 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
5997 - BUG/MEDIUM: ssl: never generates the chain from the verify store
5998 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
5999 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
6000 - CLEANUP: ssl: remove poorly readable nested ternary
6001
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020060022020/07/31 : 2.3-dev2
6003 - DOC: ssl: req_ssl_sni needs implicit TLS
6004 - BUG/MEDIUM: arg: empty args list must be dropped
6005 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
6006 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
6007 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
6008 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
6009 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
6010 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
6011 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
6012 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
6013 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
6014 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
6015 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
6016 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
6017 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
6018 - BUILD: tools: fix build with static only toolchains
6019 - DOC: Use gender neutral language
6020 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
6021 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
6022 - BUG/MAJOR: dns: don't treat Authority records as an error
6023 - CI : travis-ci : prepare for using stock OpenSSL
6024 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
6025 - MEDIUM: lua: Add support for the Lua 5.4
6026 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
6027 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
6028 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
6029 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
6030 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
6031 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
6032 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
6033 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
6034 - MINOR: connection: Preinstall the mux for non-ssl connect
6035 - MINOR: stream-int: Be sure to have a mux to do sends and receives
6036 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
6037 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
6038 - CI: travis-ci: use better name for Coverity scan job
6039 - CI: travis-ci: use proper linking flags for SLZ build
6040 - BUG/MEDIUM: backend: always attach the transport before installing the mux
6041 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
6042 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
6043 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
6044 - MINOR: mux-h1: do not try to receive on backend before sending a request
6045 - CLEANUP: assorted typo fixes in the code and comments
6046 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
6047
Willy Tarreaue732cbd2020-07-17 15:13:19 +020060482020/07/17 : 2.3-dev1
6049 - MINOR: config: make strict limits enabled by default
6050 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
6051 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
6052 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
6053 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
6054 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
6055 - BUG/MINOR: haproxy: Free srule->file during deinit
6056 - BUG/MINOR: haproxy: Free srule->expr during deinit
6057 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
6058 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
6059 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
6060 - CLEANUP: haproxy: Free post_deinit_list in deinit()
6061 - CLEANUP: haproxy: Free server_deinit_list in deinit()
6062 - CLEANUP: haproxy: Free post_server_check_list in deinit()
6063 - CLEANUP: Add static void vars_deinit()
6064 - CLEANUP: Add static void hlua_deinit()
6065 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
6066 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
6067 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
6068 - MINOR: tcp: Support TCP keepalive parameters customization
6069 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
6070 - MINOR: lists: rename some MT_LIST operations to clarify them
6071 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
6072 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
6073 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
6074 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
6075 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
6076 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
6077 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
6078 - MINOR: connection: Set the SNI on server connections before installing the mux
6079 - MINOR: connection: Set new connection as private on reuse never
6080 - MINOR: connection: Add a wrapper to mark a connection as private
6081 - MEDIUM: connection: Add private connections synchronously in session server list
6082 - MINOR: connection: Use a dedicated function to look for a session's connection
6083 - MINOR: connection: Set the conncetion target during its initialisation
6084 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
6085 - MINOR: server: Factorize code to deal with reuse of server idle connections
6086 - MINOR: server: Factorize code to deal with connections removed from an idle list
6087 - CLEANUP: connection: remove unused field idle_time from the connection struct
6088 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
6089 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
6090 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
6091 - MINOR: backend: Add sample fetches to get the server's weight
6092 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
6093 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
6094 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
6095 - BUG/MINOR: backend: fix potential null deref on srv_conn
6096 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
6097 - MEDIUM: udp: adds minimal proto udp support for message listeners.
6098 - MEDIUM: log/sink: re-work and merge of build message API.
6099 - MINOR: log: adds syslog udp message handler and parsing.
6100 - MEDIUM: log: adds log forwarding section.
6101 - MINOR: log: adds counters on received syslog messages.
6102 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
6103 - BUG/MEDIUM: server: resolve state file handle leak on reload
6104 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
6105 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
6106 - BUILD: config: address build warning on raspbian+rpi4
6107 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
6108 - BUILD: config: fix again bugs gcc warnings on calloc
6109
Willy Tarreau33205c22020-07-07 16:35:28 +020061102020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02006111 - [RELEASE] Released version 2.3-dev0
6112 - MINOR: version: back to development, update status message
6113
61142020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02006115 - exact copy of 2.2.0
6116
Willy Tarreau3a00c912020-07-07 16:33:14 +020061172020/07/07 : 2.2.0
6118 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
6119 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
6120 - BUILD: tools: make resolve_sym_name() return a const
6121 - CLEANUP: auth: fix useless self-include of auth-t.h
6122 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
6123 - CLEANUP: assorted typo fixes in the code and comments
6124 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
6125 - DOC: fix tune.ssl.keylog sample fetches array
6126 - BUG/MINOR: ssl: check conn in keylog sample fetch
6127 - DOC: configuration: various typo fixes
6128 - MINOR: log: Remove unused case statement during the log-format string parsing
6129 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
6130 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
6131 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
6132 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
6133 - MINOR: mux-h1: Improve traces about the splicing
6134 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
6135 - BUG/MEDIUM: connection: Don't consider new private connections as available
6136 - BUG/MINOR: connection: See new connection as available only on reuse always
6137 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
6138 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
6139 - DOC: update INSTALL with new compiler versions
6140 - DOC: minor update to coding style file
6141 - MINOR: version: mention that it's an LTS release now
6142
Willy Tarreau62f11a52020-07-04 07:10:24 +020061432020/07/04 : 2.2-dev12
6144 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
6145 - MINOR: cli: make "show sess" stop at the last known session
6146 - CLEANUP: buffers: remove unused buffer_wq_lock lock
6147 - BUG/MEDIUM: buffers: always allocate from the local cache first
6148 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
6149 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
6150 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
6151 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
6152 - REORG: buffer: rename buffer.c to dynbuf.c
6153 - REORG: includes: create tinfo.h for the thread_info struct
6154 - CLEANUP: pool: only include the type files from types
6155 - MINOR: pools: move the LRU cache heads to thread_info
6156 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
6157 - MINOR: stats: add 3 new output values for the per-server idle conn state
6158 - MINOR: activity: add per-thread statistics on FD takeover
6159 - BUG/MINOR: server: start cleaning idle connections from various points
6160 - MEDIUM: server: improve estimate of the need for idle connections
6161 - MINOR: stats: add the estimated need of concurrent connections per server
6162 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
6163 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
6164 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
6165 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
6166 - BUG/MINOR: server: always count one idle slot for current thread
6167 - MEDIUM: server: use the two thresholds for the connection release algorithm
6168 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
6169 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
6170 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
6171 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
6172 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
6173 - MINOR: pools: increase MAX_BASE_POOLS to 64
6174 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
6175 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
6176 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
6177 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
6178 - BUG/MINOR: proxy: always initialize the trash in show servers state
6179 - MINOR: cli/proxy: add a new "show servers conn" command
6180 - MINOR: server: skip servers with no idle conns earlier
6181 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
6182 - MEDIUM: server: add a new pool-low-conn server setting
6183 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
6184 - MINOR: backend: don't always takeover from the same threads
6185 - MINOR: sched: make sched->task_list_size atomic
6186 - MEDIUM: sched: create a new TASK_KILLED task flag
6187 - MEDIUM: sched: implement task_kill() to kill a task
6188 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
6189 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
6190 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
6191 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
6192 - CLEANUP: connections: rename the toremove_lock to takeover_lock
6193 - MEDIUM: connections: Don't use a lock when moving connections to remove.
6194 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
6195 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
6196 - MINOR: config: add a new tune.idle-pool.shared global setting.
6197 - MINOR: 51d: silence a warning about null pointer dereference
6198 - MINOR: debug: add a new "debug dev memstats" command
6199 - MINOR: log-format: allow to preserve spacing in log format strings
6200 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
6201 - BUG/MAJOR: sched: make sure task_kill() always queues the task
6202 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
6203 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
6204 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
6205 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
6206 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
6207 - BUG/MINOR: log: missing timezone on iso dates.
6208 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
6209 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
6210 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
6211 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
6212 - BUG/MINOR: http_act: don't check capture id in backend (2)
6213 - BUILD: makefile: disable threads by default on OpenBSD
6214 - BUILD: peers: fix build warning with gcc 4.2.1
6215 - CI: cirrus-ci: exclude slow reg-tests
6216
Willy Tarreau4462af82020-06-26 22:01:04 +020062172020/06/26 : 2.2-dev11
6218 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
6219 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
6220 - BUG/MINOR: spoe: correction of setting bits for analyzer
6221 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
6222 - MINOR: cfgparse: Warn on truncated lines / files
6223 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
6224 - MINOR: debug: add a new DEBUG_FD build option
6225 - BUG/MINOR: tasks: make sure never to exceed max_processed
6226 - MINOR: task: add a new pointer to current tasklet queue
6227 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
6228 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
6229 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
6230 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
6231 - MINOR: ssl: free bind_conf_node in crtlist_free()
6232 - MINOR: ssl: free the crtlist and the ckch during the deinit()
6233 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
6234 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
6235 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
6236 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
6237 - MINOR: tasks: make current_queue an index instead of a pointer
6238 - MINOR: tasks: add a mask of the queues with active tasklets
6239 - MINOR: tasks: pass the queue index to run_task_from_list()
6240 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
6241 - MEDIUM: tasks: add a tune.sched.low-latency option
6242 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
6243 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
6244 - MINOR: tools: make parse_line() always terminate the args list
6245 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
6246 - MINOR: cfgparse: sanitize the output a little bit
6247 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
6248 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
6249 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
6250 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
6251 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
6252 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
6253 - MINOR: spoe: Don't systematically create new applets if processing rate is low
6254 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
6255 - BUILD: fix ssl_sample.c when building against BoringSSL
6256 - CI: travis-ci: switch BoringSSL builds to ninja
6257 - CI: extend spellchecker whitelist
6258 - DOC: assorted typo fixes in the documentation
6259 - CLEANUP: assorted typo fixes in the code and comments
6260 - MINOR: http: Add support for http 413 status
6261 - REGTEST: ssl: tests the ssl_f_* sample fetches
6262 - REGTEST: ssl: add some ssl_c_* sample fetches test
6263 - DOC: ssl: update the documentation of "commit ssl cert"
6264 - BUG/MINOR: cfgparse: correctly deal with empty lines
6265 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
6266
Willy Tarreaudc0936c2020-06-19 21:43:26 +020062672020/06/19 : 2.2-dev10
6268 - BUILD: include: add sys/types before netinet/tcp.h
6269 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
6270 - BUILD: Remove nowarn for warnings that do not trigger
6271 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
6272 - BUILD: Re-enable -Wimplicit-fallthrough
6273 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
6274 - BUILD: thread: add parenthesis around values of locking macros
6275 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
6276 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
6277 - CI: travis-ci: use "-O1" for clang builds
6278 - MINOR: haproxy: Add void deinit_and_exit(int)
6279 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
6280 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
6281 - BUILD: compression: make gcc 10 happy with free_zlib()
6282 - BUILD: atomic: add string.h for memcpy() on ARM64
6283 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
6284 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
6285 - BUILD: haproxy: mark deinit_and_exit() as noreturn
6286 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
6287 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
6288 - MINOR: tools: add a new configurable line parse, parse_line()
6289 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
6290 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
6291 - MINOR: http: do not close connections anymore after internal responses
6292 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
6293 - BUG/MINOR: spoe: add missing key length check before checking key names
6294 - MINOR: version: put the compiler version output into version.c not haproxy.c
6295 - MINOR: compiler: always define __has_feature()
6296 - MINOR: version: report the presence of the compiler's address sanitizer
6297 - BUILD: Fix build by including haproxy/global.h
6298 - BUG/MAJOR: connection: always disable ready events once reported
6299 - CLEANUP: activity: remove unused counter fd_lock
6300 - DOC: fd: make it clear that some fields ordering must absolutely be respected
6301 - MINOR: activity: report the number of times poll() reports I/O
6302 - MINOR: activity: rename confusing poll_* fields in the output
6303 - MINOR: fd: Fix a typo in a coment.
6304 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
6305 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
6306 - MINOR: activity: group the per-loop counters at the top
6307 - MINOR: activity: rename the "stream" field to "stream_calls"
6308 - MEDIUM: fd: refine the fd_takeover() migration lock
6309 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
6310 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
6311 - MINOR: peers: do not use localpeer as an array anymore
6312 - MEDIUM: peers: add the "localpeer" global option
6313 - MEDIUM: fd: add experimental support for edge-triggered polling
6314 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
6315 - MINOR: haproxy: process signals before runnable tasks
6316 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
6317 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
6318 - BUG/MINOR: cli: allow space escaping on the CLI
6319 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
6320 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
6321 - REGTEST: http-rules: test spaces in ACLs
6322 - REGTEST: http-rules: test spaces in ACLs with master CLI
6323 - BUG/MAJOR: init: properly compute the default global.maxpipes value
6324 - MEDIUM: map: make the "clear map" operation yield
6325 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
6326 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
6327 - BUG/MINOR: systemd: Wait for network to be online
6328 - DOC: configuration: Unindent non-code sentences in the protobuf example
6329 - DOC: configuration: http-check send was missing from matrix
6330
Willy Tarreau1385c882020-06-11 10:22:10 +020063312020/06/11 : 2.2-dev9
6332 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
6333 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
6334 - MINOR: checks: Remove dead code from process_chk_conn()
6335 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
6336 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
6337 - MINOR: lua: Use vars_unset_by_name_ifexist()
6338 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
6339 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
6340 - MINOR: lua: Make `set_var()` and `unset_var()` return success
6341 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
6342 - MEDIUM: ring: new section ring to declare custom ring buffers.
6343 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
6344 - REGTESTS: Require the version 2.2 to execute lua/set_var
6345 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
6346 - MINOR: checks: Remove useless tests on the connection and conn-stream
6347 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
6348 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
6349 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
6350 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
6351 - MINOR: pools: compute an estimate of each pool's average needed objects
6352 - MEDIUM: pools: directly free objects when pools are too much crowded
6353 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
6354 - MINOR: http-ana: Make the function http_reply_to_htx() public
6355 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
6356 - MINOR: http-rules: Use an action function to eval http-request auth rules
6357 - CLEANUP: http: Remove unused HTTP message templates
6358 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
6359 - MINOR: checks: I/O callback function only rely on the data layer wake callback
6360 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
6361 - BUG/MEDIUM: logs: fix trailing zeros on log message.
6362 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
6363 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
6364 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
6365 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
6366 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
6367 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
6368 - MINOR: ring: re-work ring attach generic API.
6369 - BUG/MINOR: error on unknown statement in ring section.
6370 - MEDIUM: ring: add server statement to forward messages from a ring
6371 - MEDIUM: ring: add new srv statement to support octet counting forward
6372 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
6373 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
6374 - BUILD: sink: address build warning on 32-bit architectures
6375 - BUG/MINOR: peers: fix internal/network key type mapping.
6376 - CLEANUP: regex: remove outdated support for regex actions
6377 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
6378 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
6379 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
6380 - DOC: add a line about comments in crt-list
6381 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
6382 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
6383 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
6384 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
6385 - BUG/MINOR: init: -x can have a parameter starting with a dash
6386 - BUG/MINOR: init: -S can have a parameter starting with a dash
6387 - BUG/MEDIUM: mworker: fix the reload with an -- option
6388 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
6389 - BUG/MINOR: mworker: fix a memleak when execvp() failed
6390 - MINOR: sample: Add secure_memcmp converter
6391 - REORG: ebtree: move the C files from ebtree/ to src/
6392 - REORG: ebtree: move the include files from ebtree to include/import/
6393 - REORG: ebtree: clean up remains of the ebtree/ directory
6394 - REORG: include: create new file haproxy/api-t.h
6395 - REORG: include: create new file haproxy/api.h
6396 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
6397 - CLEANUP: include: remove common/config.h
6398 - CLEANUP: include: remove unused template.h
6399 - REORG: include: move MIN/MAX from tools.h to compat.h
6400 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
6401 - CLEANUP: include: remove unused common/tools.h
6402 - REORG: include: move the base files from common/ to haproxy/
6403 - REORG: include: move version.h to haproxy/
6404 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
6405 - REORG: include: move openssl-compat.h from common/ to haproxy/
6406 - REORG: include: move ist.h from common/ to import/
6407 - REORG: include: move the BUG_ON() code to haproxy/bug.h
6408 - REORG: include: move debug.h from common/ to haproxy/
6409 - CLEANUP: debug: drop unused function p_malloc()
6410 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
6411 - REORG: include: move istbuf.h to haproxy/
6412 - REORG: include: split mini-clist into haproxy/list and list-t.h
6413 - REORG: threads: extract atomic ops from hathreads.h
6414 - CLEANUP: threads: remove a few needless includes of hathreads.h
6415 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
6416 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
6417 - REORG: include: move time.h from common/ to haproxy/
6418 - REORG: include: move integer manipulation functions from standard.h to intops.h
6419 - CLEANUP: include: remove excessive includes of common/standard.h
6420 - REORG: include: move freq_ctr to haproxy/
6421 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
6422 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
6423 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
6424 - MINOR: memory: don't let __pool_get_first() pick from the cache
6425 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
6426 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
6427 - MEDIUM: memory: make local pools independent on lockless pools
6428 - REORG: include: move common/memory.h to haproxy/pool.h
6429 - REORG: include: move common/chunk.h to haproxy/chunk.h
6430 - REORG: include: move activity to haproxy/
6431 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
6432 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
6433 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
6434 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
6435 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
6436 - REORG: include: move common/ticks.h to haproxy/ticks.h
6437 - REORG: include: split common/http.h into haproxy/http{,-t}.h
6438 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
6439 - REORG: include: move common/h1.h to haproxy/h1.h
6440 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
6441 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
6442 - REORG: include: move common/h2.h to haproxy/h2.h
6443 - REORG: include: move common/fcgi.h to haproxy/
6444 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
6445 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
6446 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
6447 - REORG: include: move shctx to haproxy/shctx{,-t}.h
6448 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
6449 - REORG: include: move fd.h to haproxy/fd{,-t}.h
6450 - REORG: include: move ring to haproxy/ring{,-t}.h
6451 - REORG: include: move sink.h to haproxy/sink{,-t}.h
6452 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
6453 - CLEANUP: include: remove empty raw_sock.h
6454 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
6455 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
6456 - REORG: include: move compression.h to haproxy/compression{,-t}.h
6457 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
6458 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
6459 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
6460 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
6461 - REORG: include: move action.h to haproxy/action{,-t}.h
6462 - REORG: include: move arg.h to haproxy/arg{,-t}.h
6463 - REORG: include: move auth.h to haproxy/auth{,-t}.h
6464 - REORG: include: move dns.h to haproxy/dns{,-t}.h
6465 - REORG: include: move flt_http_comp.h to haproxy/
6466 - REORG: include: move counters.h to haproxy/counters-t.h
6467 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
6468 - REORG: include: move capture.h to haproxy/capture{,-t}.h
6469 - REORG: include: move frontend.h to haproxy/frontend.h
6470 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
6471 - REORG: include: move http_rules.h to haproxy/http_rules.h
6472 - CLEANUP: include: remove unused mux_pt.h
6473 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
6474 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
6475 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
6476 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
6477 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
6478 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
6479 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
6480 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
6481 - REORG: include: move listener.h to haproxy/listener{,-t}.h
6482 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
6483 - REORG: include: move map to haproxy/map{,-t}.h
6484 - REORG: include: move payload.h to haproxy/payload.h
6485 - REORG: include: move sample.h to haproxy/sample{,-t}.h
6486 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
6487 - REORG: include: move vars.h to haproxy/vars{,-t}.h
6488 - REORG: include: split global.h into haproxy/global{,-t}.h
6489 - REORG: include: move task.h to haproxy/task{,-t}.h
6490 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
6491 - REORG: include: move signal.h to haproxy/signal{,-t}.h
6492 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
6493 - REORG: include: move connection.h to haproxy/connection{,-t}.h
6494 - REORG: include: move checks.h to haproxy/check{,-t}.h
6495 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
6496 - REORG: include: move peers.h to haproxy/peers{,-t}.h
6497 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
6498 - REORG: include: move session.h to haproxy/session{,-t}.h
6499 - REORG: include: move trace.h to haproxy/trace{,-t}.h
6500 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
6501 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
6502 - REORG: move applet.h to haproxy/applet{,-t}.h
6503 - REORG: include: move stats.h to haproxy/stats{,-t}.h
6504 - REORG: include: move cli.h to haproxy/cli{,-t}.h
6505 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
6506 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
6507 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
6508 - REORG: include: move channel.h to haproxy/channel{,-t}.h
6509 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
6510 - REORG: include: move filters.h to haproxy/filters{,-t}.h
6511 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
6512 - REORG: include: move log.h to haproxy/log{,-t}.h
6513 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
6514 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
6515 - REORG: include: move backend.h to haproxy/backend{,-t}.h
6516 - REORG: include: move queue.h to haproxy/queue{,-t}.h
6517 - REORG: include: move server.h to haproxy/server{,-t}.h
6518 - REORG: include: move stream.h to haproxy/stream{,-t}.h
6519 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
6520 - CLEANUP: hpack: export debug functions and move inlines to .h
6521 - REORG: check: move the e-mail alerting code to mailers.c
6522 - REORG: check: move tcpchecks away from check.c
6523 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
6524 - REORG: check: extract the external checks from check.{c,h}
6525 - CLEANUP: include: don't include stddef.h directly
6526 - CLEANUP: include: don't include proxy-t.h in global-t.h
6527 - CLEANUP: include: move sample_data out of sample-t.h
6528 - REORG: include: move the error reporting functions to from log.h to errors.h
6529 - BUILD: reorder objects in the Makefile for faster builds
6530 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
6531 - CLEANUP: include: make atomic.h part of the base API
6532 - REORG: include: move MAX_THREADS to defaults.h
6533 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
6534 - CLEANUP: include: tree-wide alphabetical sort of include files
6535 - REORG: include: make list-t.h part of the base API
6536 - REORG: dgram: rename proto_udp to dgram
6537
Willy Tarreau73b943b2020-05-22 16:19:04 +020065382020/05/22 : 2.2-dev8
6539 - MINOR: checks: Improve report of unexpected errors for expect rules
6540 - MEDIUM: checks: Add matching on log-format string for expect rules
6541 - DOC: Fix req.body and co documentation to be accurate
6542 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
6543 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
6544 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
6545 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
6546 - MINOR: checks/sample: Remove unnecessary tests on the sample session
6547 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
6548 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
6549 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
6550 - MINOR: checks: Support log-format string to set the body for HTTP send rules
6551 - DOC: Be more explicit about configurable check ok/error/timeout status
6552 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
6553 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
6554 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
6555 - REGTESTS: make the http-check-send test require version 2.2
6556 - BUG/MINOR: http-ana: fix NTLM response parsing again
6557 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
6558 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
6559 - MINOR: cfgparse: Improve error message for invalid \x sequences
6560 - CI: travis-ci: enable arm64 builds again
6561 - MEDIUM: ssl: increase default-dh-param to 2048
6562 - CI: travis-ci: skip pcre2 on arm64 build
6563 - CI: travis-ci: extend the build time for SSL to 60 minutes
6564 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
6565 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
6566 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
6567 - CLEANUP: remove THREAD_LOCAL from config.h
6568 - CI: travis-ci: upgrade LibreSSL versions
6569 - DOC: assorted typo fixes in the documentation
6570 - CI: extend spellchecker whitelist
6571 - CLEANUP: assorted typo fixes in the code and comments
6572 - MAJOR: contrib: porting spoa_server to support python3
6573 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
6574 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
6575 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
6576 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
6577 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
6578 - MINOR: sample: Add digest and hmac converters
6579 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
6580 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
6581 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
6582 - BUG/MINOR: pollers: remove uneeded free in global init
6583 - CLEANUP: select: enhance readability in init
6584 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
6585 - MINOR: soft-stop: let the first stopper only signal other threads
6586 - BUILD: select: only declare existing local labels to appease clang
6587 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
6588 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
6589 - DOC: retry-on can only be used with mode http
6590 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
6591 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
6592 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
6593 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
6594 - REORG: ssl: move macros and structure definitions to ssl_sock.h
6595 - CLEANUP: ssl: remove the shsess_* macros
6596 - REORG: move the crt-list structures in their own .h
6597 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
6598 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
6599 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
6600 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
6601 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
6602 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
6603 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
6604 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
6605 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
6606 - MINOR: ssl: remove static keyword in some SSL utility functions
6607 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
6608 - REORG: ssl: move sample fetches to src/ssl_sample.c
6609 - REORG: ssl: move utility functions to src/ssl_utils.c
6610 - DOC: ssl: update MAINTAINERS file
6611 - CI: travis-ci: switch arm64 builds to use openssl from distro
6612 - MINOR: stats: Prepare for more accurate moving averages
6613 - MINOR: stats: Expose native cum_req metric for a server
6614 - MEDIUM: stats: Enable more accurate moving average calculation for stats
6615 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
6616 - BUILD: ssl: include errno.h in ssl_crtlist.c
6617 - CLEANUP: acl: remove unused assignment
6618 - DOC/MINOR: halog: Add long help info for ic flag
6619 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
6620 - DOC: SPOE is no longer experimental
6621 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
6622 - MINOR: config: Don't dump keywords if argument is NULL
6623 - MEDIUM: checks: Make post-41 the default mode for mysql checks
6624 - BUG/MINOR: logs: prevent double line returns in some events.
6625 - MEDIUM: sink: build header in sink_write for log formats
6626 - MEDIUM: logs: buffer targets now rely on new sink_write
6627 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
6628 - MEDIUM: hpack: use a pool for the hpack table
6629 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
6630 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
6631 - MINOR: applet: adopt the wait list entry from the CLI
6632 - MINOR: ring: make the applet code not depend on the CLI
6633 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
6634 - CI: travis-ci: fix libslz download URL
6635 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
6636 - CLEANUP: http_ana: Remove unused TXN flags
6637 - BUG/MINOR: http-rules: Mark http return rules as final
6638 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
6639 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
6640 - MINOR: http-rules: Use http_reply structure for http return rules
6641 - MINOR: http-htx: Use a dedicated function to release http_reply objects
6642 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
6643 - MINOR: http-htx: Use a dedicated function to check http reply validity
6644 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
6645 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
6646 - MINOR: http-htx: Store default error messages in a global http reply array
6647 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
6648 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
6649 - MINOR: proxy: Add references on http replies for proxy error messages
6650 - MINOR: http-htx: Use http reply from the http-errors section
6651 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
6652 - MEDIUM: http-ana: Use http replies for HTTP error messages
6653 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
6654 - MINOR: htx: Add a function to copy a buffer in an HTX message
6655 - CLEANUP: channel: Remove channel_htx_copy_msg() function
6656 - MINOR: http-ana: Add a function to write an http reply in an HTX message
6657 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
6658 - DOC: Fix "errorfile" description in the configuration manual
6659 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
6660 - BUILD: hpack: make sure the hpack table can still be built standalone
6661 - CONTRIB: hpack: make use of the simplified standalone HPACK API
6662 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
6663
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020066642020/05/05 : 2.2-dev7
6665 - MINOR: version: Show uname output in display_version()
6666 - CI: run weekly OpenSSL "no-deprecated" builds
6667 - CLEANUP: log: fix comment of parse_logformat_string()
6668 - DOC: Improve documentation on http-request set-src
6669 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
6670 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
6671 - MINOR: ssl: add ssl-skip-self-issued-ca global option
6672 - BUG/MINOR: ssl: default settings for ssl server options are not used
6673 - MINOR: config: add a global directive to set default SSL curves
6674 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
6675 - DOC: internals: update the SSL architecture schema
6676 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
6677 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
6678 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
6679 - DOC: option logasap does not depend on mode
6680 - MEDIUM: memory: make pool_gc() run under thread isolation
6681 - MINOR: contrib: make the peers wireshark dissector a plugin
6682 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
6683 - BUG/MINOR: check: Update server address and port to execute an external check
6684 - MINOR: mini-clist: Add functions to iterate backward on a list
6685 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
6686 - MINOR: server: respect warning and alert semantic
6687 - BUG/MINOR: checks: Respect the no-check-ssl option
6688 - BUG/MEDIUM: server/checks: Init server check during config validity check
6689 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
6690 - BUG/MINOR: checks: chained expect will not properly wait for enough data
6691 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
6692 - MINOR: checks: Use an enum to describe the tcp-check rule type
6693 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
6694 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
6695 - MINOR: checks: simplify tcp expect config parser
6696 - MINOR: checks: add min-recv tcp-check expect option
6697 - MINOR: checks: add linger option to tcp connect
6698 - MINOR: checks: define a tcp expect type
6699 - MEDIUM: checks: rewrite tcp-check expect block
6700 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
6701 - MINOR: checks: add rbinary expect match type
6702 - MINOR: checks: Simplify functions to get step id and comment
6703 - MEDIUM: checks: capture groups in expect regexes
6704 - MINOR: checks: Don't use a static tcp rule list head
6705 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
6706 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
6707 - MINOR: checks: Set the tcp-check rule index during parsing
6708 - MINOR: checks: define tcp-check send type
6709 - MINOR: checks: define a tcp-check connect type
6710 - MEDIUM: checks: Add implicit tcp-check connect rule
6711 - MAJOR: checks: Refactor and simplify the tcp-check loop
6712 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
6713 - MINOR: checks/vars: Add a check scope for variables
6714 - MEDIUM: checks: Parse custom action rules in tcp-checks
6715 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
6716 - MINOR: checks: Add the sni option for tcp-check connect rules
6717 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
6718 - MINOR: checks: Add the alpn option for tcp-check connect rules
6719 - MINOR: ssl: Export a generic function to parse an alpn string
6720 - MINOR: checks: Add the default option for tcp-check connect rules
6721 - MINOR: checks: Add the addr option for tcp-check connect rule
6722 - MEDIUM: checks: Support expression to set the port
6723 - MEDIUM: checks: Support log-format strings for tcp-check send rules
6724 - MINOR: log: Don't depends on a stream to process samples in log-format string
6725 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
6726 - MEDIUM: checks: Add a shared list of tcp-check rules
6727 - MINOR: sample: add htonl converter
6728 - MINOR: sample: add cut_crlf converter
6729 - MINOR: sample: add ltrim converter
6730 - MINOR: sample: add rtrim converter
6731 - MINOR: checks: Use a name for the healthcheck status enum
6732 - MINOR: checks: Add option to tcp-check expect rules to customize error status
6733 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
6734 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
6735 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
6736 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
6737 - MINOR: checks: Relax the default option for tcp-check connect rules
6738 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
6739 - MINOR: checks: Export the tcpcheck_eval_ret enum
6740 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
6741 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
6742 - MEDIUM: checks: Implement redis check using tcp-check rules
6743 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
6744 - MEDIUM: checks: Implement smtp check using tcp-check rules
6745 - MEDIUM: checks: Implement postgres check using tcp-check rules
6746 - MEDIUM: checks: Implement MySQL check using tcp-check rules
6747 - MEDIUM: checks: Implement LDAP check using tcp-check rules
6748 - MEDIUM: checks: Implement SPOP check using tcp-check rules
6749 - MINOR: server/checks: Move parsing of agent keywords in checks.c
6750 - MINOR: server/checks: Move parsing of server check keywords in checks.c
6751 - MEDIUM: checks: Implement agent check using tcp-check rules
6752 - REGTEST: Adapt regtests about checks to recent changes
6753 - MINOR: Produce tcp-check info message for pure tcp-check rules only
6754 - MINOR: checks: Add an option to set success status of tcp-check expect rules
6755 - MINOR: checks: Improve log message of tcp-checks on success
6756 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
6757 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
6758 - MINOR: proxy/checks: Register a keyword to parse http-check rules
6759 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
6760 - MINOR: proxy/checks: Register a keyword to parse external-check rules
6761 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
6762 - MINOR: checks: Use an indirect string to represent the expect matching string
6763 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
6764 - MINOR: standard: Add my_memspn and my_memcspn
6765 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
6766 - MAJOR: checks: Implement HTTP check using tcp-check rules
6767 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
6768 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
6769 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
6770 - MINOR: checks/obj_type: Add a new object type for checks
6771 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
6772 - MINOR: checks: Use the check as origin when a session is created
6773 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
6774 - MINOR: connection: Add a function to install a mux for a health-check
6775 - MAJOR: checks: Use the best mux depending on the protocol for health checks
6776 - MEDIUM: checks: Implement default TCP check using tcp-check rules
6777 - MINOR: checks: Remove unused code about pure TCP checks
6778 - CLEANUP: checks: Reorg checks.c file to be more readable
6779 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
6780 - MINOR: ist: Add a function to retrieve the ist pointer
6781 - MINOR: checks: Use ist API as far as possible
6782 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
6783 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
6784 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
6785 - REGTEST: Add scripts to test based tcp-check health-checks
6786 - Revert "MEDIUM: checks: capture groups in expect regexes"
6787 - DOC: Add documentation about comments for tcp-check and http-check directives
6788 - DOC: Fix the tcp-check and http-check directives layout
6789 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
6790 - MINOR: checks: Support mux protocol definition for tcp and http health checks
6791 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
6792 - MINOR: checks: Support list of status codes on http-check expect rules
6793 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
6794 - REGTEST: Add a script to validate agent checks
6795 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
6796 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
6797 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
6798 - BUG/MINOR: checks/server: use_ssl member must be signed
6799 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
6800 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
6801 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
6802 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
6803 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
6804 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
6805 - BUG/MINOR: checks: Remove wrong variable redeclaration
6806 - BUG/MINOR: checks: Properly handle truncated mysql server messages
6807 - CLEANUP: checks: Remove unused code when ldap server message is parsed
6808 - MINOR: checks: Make the use of the check's server more explicit on connect
6809 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
6810 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
6811 - BUG/MINOR: checks: Don't lose warning on proxy capability
6812 - MINOR: log: Add "Tu" timer
6813 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
6814 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
6815 - REGTEST: ssl: test the client certificate authentication
6816 - DOC: give a more accurate description of what check does
6817 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
6818 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
6819 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
6820 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
6821 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
6822 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
6823 - MINOR: http-htx: Export functions to update message authority and host
6824 - MINOR: checks: Don't support multiple host header for http-check send rule
6825 - MINOR: checks: Skip some headers for http-check send rules
6826 - MINOR: checks: Keep the Host header and the request uri synchronized
6827 - CLEANUP: checks: Fix checks includes
6828 - DOC: Fix send rules in the http-check connect example
6829 - DOC: Add more info about request formatting in http-check send description
6830 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
6831 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
6832 - REGTEST: ssl: improve the "set ssl cert" test
6833 - CLEANUP: ssl: silence a build warning when threads are disabled
6834 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
6835 - MINOR: threads: export the POSIX thread ID in panic dumps
6836 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
6837 - BUG/MEDIUM: shctx: really check the lock's value while waiting
6838 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
6839 - MINOR: stream: report the list of active filters on stream crashes
6840 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
6841 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
6842 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
6843 - BUG/MEDIUM: connections: force connections cleanup on server changes
6844 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
6845 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
6846 - CLEANUP: connections: align function declaration
6847 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
6848 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
6849 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
6850 - MINOR: checks: Add support of payload-based sample fetches
6851 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
6852 - MINOR: checks: Add support of server side ssl sample fetches
6853 - MINOR: checks: Add support of HTTP response sample fetches
6854 - MINOR: http-htx: Support different methods to look for header names
6855 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
6856 - BUG/MINOR: checks: Support multiple HTTP expect rules
6857 - REGTEST: checks: Fix sync condition for agent-check
6858 - MEDIUM: checks: Support matching on headers for http-check expect rules
6859 - MINOR: lua: allow changing port with set_addr
6860 - BUG/MINOR: da: Fix HTX message prefetch
6861 - BUG/MINOR: wurfl: Fix HTX message prefetch
6862 - BUG/MINOR: 51d: Fix HTX message prefetch
6863 - MINOR: ist: add istadv() function
6864 - MINOR: ist: add istissame() function
6865 - MINOR: istbuf: add ist2buf() function
6866 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
6867 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
6868 - DOC: update intro.txt for 2.2
6869 - DOC: intro: add a contacts section
6870
Willy Tarreaud0089302020-04-17 14:19:38 +020068712020/04/17 : 2.2-dev6
6872 - BUG/MINOR: ssl: memory leak when find_chain is NULL
6873 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
6874 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
6875 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
6876 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
6877 - BUG/MINOR: peers: Use after free of "peers" section.
6878 - CI: github actions: add weekly h2spec test
6879 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
6880 - MINOR: build: Fix build in mux_h1
6881 - CLEANUP: remove obsolete comments
6882 - BUG/MEDIUM: dns: improper parsing of aditional records
6883 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
6884 - MINOR: listener: add so_name sample fetch
6885 - MEDIUM: stream: support use-server rules with dynamic names
6886 - MINOR: servers: Add a counter for the number of currently used connections.
6887 - MEDIUM: connections: Revamp the way idle connections are killed
6888 - MINOR: cli: add a general purpose pointer in the CLI struct
6889 - MINOR: ssl: add a list of bind_conf in struct crtlist
6890 - REORG: ssl: move SETCERT enum to ssl_sock.h
6891 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
6892 - REORG: ssl: move some functions above crtlist_load_cert_dir()
6893 - MINOR: ssl: use crtlist_free() upon error in directory loading
6894 - MINOR: ssl: add a list of crtlist_entry in ckch_store
6895 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
6896 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
6897 - MEDIUM: ssl/cli: 'add ssl crt-list' command
6898 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
6899 - BUG/MINOR: ssl: entry->ckch_inst not initialized
6900 - REGTEST: ssl/cli: change test type to devel
6901 - REGTEST: make the PROXY TLV validation depend on version 2.2
6902 - CLEANUP: assorted typo fixes in the code and comments
6903 - BUG/MINOR: stats: Fix color of draining servers on stats page
6904 - DOC: internals: Fix spelling errors in filters.txt
6905 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
6906 - REGTEST: make the unique-id test depend on version 2.0
6907 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
6908 - MINOR: ssl: split the line parsing of the crt-list
6909 - MINOR: ssl/cli: support filters and options in add ssl crt-list
6910 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
6911 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
6912 - REGTEST: ssl: pollute the crt-list file
6913 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
6914 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
6915 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
6916 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
6917 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
6918 - CLEANUP: assorted typo fixes in the code and comments
6919 - DOC: management: add the new crt-list CLI commands
6920 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
6921 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
6922 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
6923 - CI: use better SSL library definition
6924 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
6925 - CI: travis-ci: upgrade openssl to 1.1.1f
6926 - MINOR: ssl: improve the errors when a crt can't be open
6927 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
6928 - CI: adopt openssl download script to download all versions
6929 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
6930 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
6931 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
6932 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
6933 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
6934 - CLEANUP: ssl: use the refcount for the SSL_CTX'
6935 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
6936 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
6937 - CLEANUP: ssl: remove a commentary in struct ckch_inst
6938 - MINOR: ssl: initialize all list in ckch_inst_new()
6939 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
6940 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
6941 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
6942 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
6943 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
6944 - REORG: ssl: move some free/new functions
6945 - MINOR: ssl: crtlist_entry_{new, free}
6946 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
6947 - MINOR: ssl: don't alloc ssl_conf if no option found
6948 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
6949 - BUG/MINOR: peers: Incomplete peers sections should be validated.
6950 - MINOR: init: report in "haproxy -c" whether there were warnings or not
6951 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
6952 - MINOR: init: report the compiler version in haproxy -vv
6953 - CLEANUP: assorted typo fixes in the code and comments
6954 - MINOR: init: report the haproxy version and executable path once on errors
6955 - DOC: Make how "option redispatch" works more explicit
6956 - BUILD: Makefile: add linux-musl to TARGET
6957 - CLEANUP: assorted typo fixes in the code and comments
6958 - CLEANUP: http: Fixed small typo in parse_http_return
6959 - DOC: hashing: update link to hashing functions
6960
Willy Tarreau3328f182020-03-23 09:43:45 +010069612020/03/23 : 2.2-dev5
6962 - CLEANUP: ssl: is_default is a bit in ckch_inst
6963 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
6964 - DOC: ssl: clarify security implications of TLS tickets
6965 - CLEANUP: remove support for Linux i686 vsyscalls
6966 - CLEANUP: drop support for USE_MY_ACCEPT4
6967 - CLEANUP: remove support for USE_MY_EPOLL
6968 - CLEANUP: remove support for USE_MY_SPLICE
6969 - CLEANUP: remove the now unused common/syscall.h
6970 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
6971 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
6972 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
6973 - CLEANUP: ssl: separate the directory loading in a new function
6974 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
6975 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
6976 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
6977 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
6978 - BUG/MAJOR: list: fix invalid element address calculation
6979 - BUILD: stream-int: fix a few includes dependencies
6980 - MINOR: mt_lists: Appease gcc.
6981 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
6982 - MINOR: servers: Kill priv_conns.
6983 - MINOR: lists: fix indentation.
6984 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
6985 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
6986 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
6987 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
6988 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
6989 - BUG/MINOR: haproxy/threads: try to make all threads leave together
6990 - Revert "BUILD: travis-ci: enable s390x builds"
6991 - BUILD: travis-ci: enable regular s390x builds
6992 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
6993 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
6994 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
6995 - CLEANUP: connection: Add blank line after declarations in PP handling
6996 - CLEANUP: assorted typo fixes in the code and comments
6997 - CI: add spellcheck github action
6998 - DOC: correct typo in alert message about rspirep
6999 - CI: travis: switch linux builds to clang-9
7000 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
7001 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
7002 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
7003 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
7004 - CLEANUP: connection: Stop directly setting an ist's .ptr
7005 - CI: travis: revert to clang-7 for BoringSSL tests
7006 - BUILD: on ARM, must be linked to libatomic.
7007 - BUILD: makefile: fix regex syntax in ARM platform detection
7008 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
7009 - REORG: ssl: move ssl_sock_load_cert()
7010 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
7011 - MEDIUM: ssl: allow crt-list caching
7012 - MINOR: ssl: directories are loaded like crt-list
7013 - BUG/MINOR: ssl: can't open directories anymore
7014 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
7015 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
7016 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
7017 - MINOR: ssl/cli: show/dump ssl crt-list
7018 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
7019 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
7020 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
7021 - MINOR: tasks: Provide the tasklet to the callback.
7022 - BUG/MINOR: ssl: memleak of struct crtlist_entry
7023 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
7024 - BUILD: makefile: fix expression again to detect ARM platform
7025 - CI: travis: re-enable ASAN on clang
7026 - CI: travis: proper group output redirection together with travis_wait
7027 - DOC: assorted typo fixes in the documentation
7028 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
7029 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
7030 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
7031 - MINOR: ssl/cli: 'new ssl cert' command
7032 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
7033 - MEDIUM: sessions: Don't be responsible for connections anymore.
7034 - MEDIUM: servers: Split the connections into idle, safe, and available.
7035 - MINOR: fd: Implement fd_takeover().
7036 - MINOR: connections: Add a new mux method, "takeover".
7037 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
7038 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
7039 - MEDIUM: connections: Attempt to get idle connections from other threads.
7040 - MEDIUM: mux_h1: Implement the takeover() method.
7041 - MEDIUM: mux_h2: Implement the takeover() method.
7042 - MEDIUM: mux_fcgi: Implement the takeover() method.
7043 - MEDIUM: connections: Kill connections even if we are reusing one.
7044 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
7045 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
7046 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
7047 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
7048 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
7049 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
7050 - CI: run travis-ci builds on push only, skip pull requests
7051 - CI: temporarily disable unstable travis arm64 builds
7052 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
7053 - BUG/MINOR: connections: Make sure we free the connection on failure.
7054 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
7055 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
7056 - BUG/MINOR: connections: Set idle_time before adding to idle list.
7057 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
7058 - REGTEST: increase timeouts on the seamless-reload test
7059 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
7060 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
7061
Willy Tarreau5a753bd2020-03-09 14:57:20 +010070622020/03/09 : 2.2-dev4
7063 - MEDIUM: buffer: remove the buffer_wq lock
7064 - MINOR: ssl: move find certificate chain code to its own function
7065 - MINOR: ssl: resolve issuers chain later
7066 - MINOR: ssl: resolve ocsp_issuer later
7067 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
7068 - BUG/MINOR: h2: reject again empty :path pseudo-headers
7069 - MINOR: wdt: always clear sigev_value to make valgrind happy
7070 - MINOR: epoll: always initialize all of epoll_event to please valgrind
7071 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
7072 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
7073 - BUILD: cirrus-ci: suppress OS version check when installing packages
7074 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
7075 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
7076 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
7077 - MINOR: fd: merge the read and write error bits into RW error
7078 - BUG/MINOR: dns: ignore trailing dot
7079 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
7080 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
7081 - MINOR: mux-h1: Remove useless case-insensitive comparisons
7082 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
7083 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
7084 - MEDIUM: connection: don't stop receiving events in the FD handler
7085 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
7086 - BUG/MINOR: arg: don't reject missing optional args
7087 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
7088 - MINOR: debug: report the task handler's pointer relative to main
7089 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
7090 - MINOR: haproxy: export main to ease access from debugger
7091 - MINOR: haproxy: export run_poll_loop
7092 - MINOR: task: export run_tasks_from_list
7093 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
7094 - MINOR: tools: add new function dump_addr_and_bytes()
7095 - MINOR: tools: add resolve_sym_name() to resolve function pointers
7096 - MINOR: debug: use resolve_sym_name() to dump task handlers
7097 - MINOR: cli: make "show fd" rely on resolve_sym_name()
7098 - MEDIUM: debug: add support for dumping backtraces of stuck threads
7099 - MINOR: debug: call backtrace() once upon startup
7100 - MINOR: ssl: add "ca-verify-file" directive
7101 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
7102 - BUILD: Makefile: include librt before libpthread
7103 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
7104 - MINOR: wdt: do not depend on USE_THREAD
7105 - MINOR: debug: report the number of entries in the backtrace
7106 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
7107 - MINOR: debug: use our own backtrace function on clang+x86_64
7108 - MINOR: debug: dump the whole trace if we can't spot the starting point
7109 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
7110 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
7111 - CLEANUP: contrib/spoa_example: Fix several typos
7112 - BUILD: makefile: do not modify the build options during make reg-tests
7113 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
7114 - MEDIUM: stream-int: make sure to try to immediately validate the connection
7115 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
7116 - MEDIUM: connection: only call ->wake() for connect() without I/O
7117 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
7118 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
7119 - REGTEST: Add unique-id reg-test
7120 - MINOR: stream: Add stream_generate_unique_id function
7121 - MINOR: stream: Use stream_generate_unique_id
7122 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
7123 - MINOR: ssl/cli: support crt-list filters
7124 - MINOR: ssl: reach a ckch_store from a sni_ctx
7125 - DOC: fix incorrect indentation of http_auth_*
7126 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
7127 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
7128 - MINOR: ist: Add `IST_NULL` macro
7129 - MINOR: ist: Add `int isttest(const struct ist)`
7130 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
7131 - CLEANUP: Use `isttest()` and `istfree()`
7132 - MINOR: ist: Add `struct ist istdup(const struct ist)`
7133 - MINOR: proxy: Make `header_unique_id` a `struct ist`
7134 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
7135 - OPTIM: startup: fast unique_id allocation for acl.
7136 - DOC: configuration.txt: fix various typos
7137 - DOC: assorted typo fixes in the documentation and Makefile
7138 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
7139 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
7140 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
7141 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
7142 - MINOR: htx: Add a function to return a block at a specific offset
7143 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
7144 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
7145 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
7146 - BUG/MINOR: filters: Forward everything if no data filters are called
7147 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
7148 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
7149 - BUG/MINOR: http-ana: Reset request analysers on a response side error
7150 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
7151 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
7152 - MINOR: lua: Add function to know if a channel is a response one
7153 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
7154 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
7155 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
7156 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
7157 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
7158 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
7159 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
7160 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
7161 - BUG/MINOR: http-rules: Fix a typo in the reject action function
7162 - MINOR: cache/filters: Initialize the cache filter when stream is created
7163 - MINOR: compression/filters: Initialize the comp filter when stream is created
7164 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
7165 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
7166 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
7167 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
7168 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
7169 - BUILD: ssl: include mini-clist.h
7170 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
7171 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
7172 - BUILD: listener: types/listener.h must not include standard.h
7173 - BUG/MEDIUM: random: initialize the random pool a bit better
7174 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
7175 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
7176 - BUILD: cirrus-ci: get rid of unstable freebsd images
7177 - MINOR: tools: add 64-bit rotate operators
7178 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
7179 - MINOR: backend: use a single call to ha_random32() for the random LB algo
7180 - BUG/MINOR: checks/threads: use ha_random() and not rand()
7181 - MINOR: sample: make all bits random on the rand() sample fetch
7182 - MINOR: tools: add a generic function to generate UUIDs
7183 - DOC: fix typo about no-tls-tickets
7184 - DOC: improve description of no-tls-tickets
7185 - DOC: assorted typo fixes in the documentation
7186 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
7187
Willy Tarreau32bf97f2020-02-25 18:14:02 +010071882020/02/25 : 2.2-dev3
7189 - SCRIPTS: announce-release: place the send command in the mail's header
7190 - SCRIPTS: announce-release: allow the user to force to overwrite old files
7191 - SCRIPTS: backport: fix the master branch detection
7192 - BUG/MINOR: http-act: Set stream error flag before returning an error
7193 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
7194 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
7195 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
7196 - DOC: schematic of the SSL certificates architecture
7197 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
7198 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
7199 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
7200 - BUILD: cirrus-ci: workaround "pkg install" bug
7201 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
7202 - BUG/MINOR: connection: correctly retry I/O on signals
7203 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
7204 - BUILD: http_act: cast file sizes when reporting file size error
7205 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
7206 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
7207 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
7208 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
7209 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
7210 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
7211 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
7212 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
7213 - SCRIPTS: make announce-release executable again
7214 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
7215 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
7216 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
7217 - CLEANUP: ssl: remove unused functions in openssl-compat.h
7218 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
7219 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
7220 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
7221 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
7222 - MEDIUM: arg: make make_arg_list() stop after its own arguments
7223 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
7224 - MEDIUM: arg: make make_arg_list() support quotes in arguments
7225 - MINOR: sample: make sample_parse_expr() able to return an end pointer
7226 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
7227 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
7228 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
7229 - BUILD: enable ERR=1 in github cygwin builds
7230 - BUG/MINOR: arg: fix again incorrect argument length check
7231 - MINOR: sample: regsub now supports backreferences
7232 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
7233 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
7234 - MINOR: filters: Forward data only if the last filter forwards something
7235 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
7236 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
7237 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
7238 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
7239 - MINOR: ssl: add "issuers-chain-path" directive.
7240 - REGTESTS: use "command -v" instead of "which"
7241 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
7242 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
7243 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
7244 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
7245 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
7246 - MINOR: checks: do not call conn_xprt_stop_send() anymore
7247 - CLEANUP: epoll: place the struct epoll_event in the stack
7248 - MEDIUM: connection: remove the intermediary polling state from the connection
7249 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
7250 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
7251 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
7252 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
7253 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
7254 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
7255 - MINOR: ist: add an iststop() function
7256 - BUG/MINOR: http: http-request replace-path duplicates the query string
7257 - CLEANUP: sample: use iststop instead of a for loop
7258 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
7259 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
7260 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
7261 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
7262 - BUILD: fix recent build failure on unaligned archs
7263 - MINOR: ssl: load the key from a dedicated file
7264 - BUG/MINOR: ssl: load .key in a directory only after PEM
7265 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
7266 - CLEANUP: conn: Do not pass a pointer to likely
7267 - CLEANUP: net_helper: Do not negate the result of unlikely
7268 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
7269 - CLEANUP: cfgparse: Fix type of second calloc() parameter
7270 - BUILD: ssl: only pass unsigned chars to isspace()
7271 - BUILD: general: always pass unsigned chars to is* functions
7272 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
7273 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
7274 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
7275 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
7276 - CLEANUP: stick-tables: use read_u32() to display a node's key
7277 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
7278 - MINOR: pattern: fix all remaining strict aliasing issues
7279 - CLEANUP: lua: fix aliasing issues in the address matching code
7280 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
7281 - BUILD: makefile: re-enable strict aliasing
7282 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
7283 - MINOR: compiler: add new alignment macros
7284 - BUILD: ebtree: improve architecture-specific alignment
7285 - MINOR: config: mark global.debug as deprecated
7286 - BUILD: travis-ci: enable s390x builds
7287 - MINOR: ssl/cli: 'show ssl cert' displays the chain
7288 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
7289 - MINOR: ssl/cli: reorder 'show ssl cert' output
7290 - CLEANUP: ssl: move issuer_chain tree and definition
7291 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
7292
Willy Tarreau4c47d912020-02-07 04:12:19 +010072932020/02/07 : 2.2-dev2
7294 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
7295 - MEDIUM: cli: Allow multiple filter entries for "show table"
7296 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
7297 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
7298 - BUILD: stick-table: fix build errors introduced by last stick-table change
7299 - BUG/MINOR: cli: Missing arg offset for filter data values.
7300 - MEDIUM: streams: Always create a conn_stream in connect_server().
7301 - MEDIUM: connections: Get ride of the xprt_done callback.
7302 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
7303 - BUILD: CI: move cygwin builds to Github Actions
7304 - MINOR: cli: Report location of errors or any extra data for "show table"
7305 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
7306 - CLEANUP: backend: remove useless test for inexistent connection
7307 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
7308 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
7309 - BUG/MINOR: ssl: increment issuer refcount if in chain
7310 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
7311 - BUG/MINOR: ssl: typo in previous patch
7312 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
7313 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
7314 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
7315 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
7316 - MINOR: stream-int: always report received shutdowns
7317 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
7318 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
7319 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
7320 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
7321 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
7322 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
7323 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
7324 - BUG/MINOR: stktable: report the current proxy name in error messages
7325 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
7326 - MINOR: lua: Add hlua_prepend_path function
7327 - MINOR: lua: Add lua-prepend-path configuration option
7328 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
7329 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
7330 - BUG/MINOR: http-ana: Increment the backend counters on the backend
7331 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
7332 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
7333 - REGTESTS: make the set_ssl_cert test require version 2.2
7334 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
7335 - MINOR: ssl: Remove dead code.
7336 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
7337 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
7338 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
7339 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
7340 - BUILD: CI: disable slow regtests on Travis
7341 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
7342 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
7343 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
7344 - BUG/MINOR: dns: allow 63 char in hostname
7345 - MINOR: proxy: clarify number of connections log when stopping
7346 - DOC: word converter ignores delimiters at the start or end of input string
7347 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
7348 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
7349 - MEDIUM: pipe/thread: reduce the locking overhead
7350 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
7351 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
7352 - MINOR: tasks: move the list walking code to its own function
7353 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
7354 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
7355 - OPTIM: task: refine task classes default CPU bandwidth ratios
7356 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
7357 - MINOR: task: permanently flag tasklets waking themselves up
7358 - MINOR: task: make sched->current also reflect tasklets
7359 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
7360 - OPTIM: task: readjust CPU bandwidth distribution since last update
7361 - MINOR: task: don't set TASK_RUNNING on tasklets
7362 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
7363 - MINOR: memory: Only init the pool spinlock once.
7364 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
7365 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
7366 - MINOR: ssl: ssl-load-extra-files configure loading of files
7367 - SCRIPTS: add a new "backport" script to simplify long series of backports
7368 - BUG/MINOR: ssl: we may only ignore the first 64 errors
7369 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
7370 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
7371 - CLEANUP: hpack: remove a redundant test in the decoder
7372 - CLEANUP: peers: Remove unused static function `free_dcache`
7373 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
7374 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
7375 - CONTRIB: debug: add the possibility to decode the value as certain types only
7376 - CONTRIB: debug: support reporting multiple values at once
7377 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
7378 - MINOR: global: Set default tune.maxrewrite value during global structure init
7379 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
7380 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
7381 - MINOR: htx: Add a function to append an HTX message to another one
7382 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
7383 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
7384 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
7385 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
7386 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
7387 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
7388 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
7389 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
7390 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
7391 - MINOR: http-ana: Add a function for forward internal responses
7392 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
7393 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
7394 - MEDIUM: http-rules: Add the return action to HTTP rules
7395 - MEDIUM: http-rules: Support extra headers for HTTP return actions
7396 - CLEANUP: lua: Remove consistency check for sample fetches and actions
7397 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
7398 - MINOR: lua: Get the action return code on the stack when an action finishes
7399 - MINOR: lua: Create the global 'act' object to register all action return codes
7400 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
7401 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
7402 - REGTESTS: Add reg tests for the HTTP return action
7403 - REGTESTS: Add a reg test for http-after-response rulesets
7404 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
7405 - MINOR: acl: Warn when an ACL is named 'or'
7406 - CONTRIB: debug: also support reading values from stdin
7407 - SCRIPTS: backport: use short revs and resolve the initial commit
7408 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
7409
Willy Tarreau71f95fa2020-01-22 10:34:58 +010074102020/01/22 : 2.2-dev1
7411 - DOC: this is development again
7412 - MINOR: version: this is development again, update the status
7413 - SCRIPTS: update create-release to fix the changelog on new branches
7414 - CLEANUP: ssl: Clean up error handling
7415 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
7416 - BUG/MINOR: h1: Don't test the host header during response parsing
7417 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
7418 - DOC: Clarify behavior of server maxconn in HTTP mode
7419 - MINOR: ssl: deduplicate ca-file
7420 - MINOR: ssl: compute ca-list from deduplicate ca-file
7421 - MINOR: ssl: deduplicate crl-file
7422 - CLEANUP: dns: resolution can never be null
7423 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
7424 - DOC: ssl/cli: set/commit/abort ssl cert
7425 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
7426 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
7427 - BUG/MINOR: stats: Fix HTML output for the frontends heading
7428 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
7429 - DOC: clarify matching strings on binary fetches
7430 - DOC: Fix ordered list in summary
7431 - DOC: move the "group" keyword at the right place
7432 - MEDIUM: init: prevent process and thread creation at runtime
7433 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
7434 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
7435 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
7436 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
7437 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
7438 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
7439 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
7440 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
7441 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
7442 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
7443 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
7444 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
7445 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
7446 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
7447 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
7448 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
7449 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
7450 - BUG/MINOR: listener: also clear the error flag on a paused listener
7451 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
7452 - MINOR: listener: make the wait paths cleaner and more reliable
7453 - MINOR: listener: split dequeue_all_listener() in two
7454 - REORG: listener: move the global listener queue code to listener.c
7455 - DOC: document the listener state transitions
7456 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
7457 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
7458 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
7459 - DOC: listeners: add a few missing transitions
7460 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
7461 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
7462 - DOC: proxies: HAProxy only supports 3 connection modes
7463 - DOC: remove references to the outdated architecture.txt
7464 - BUG/MINOR: log: fix minor resource leaks on logformat error path
7465 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
7466 - BUG/MINOR: listener: do not immediately resume on transient error
7467 - BUG/MINOR: server: make "agent-addr" work on default-server line
7468 - BUG/MINOR: listener: fix off-by-one in state name check
7469 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
7470 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
7471 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
7472 - REGTEST: Add an HTX reg-test to check an edge case
7473 - DOC: clarify the fact that replace-uri works on a full URI
7474 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
7475 - BUG/MINOR: sample: always check converters' arguments
7476 - MINOR: sample: Validate the number of bits for the sha2 converter
7477 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
7478 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
7479 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
7480 - MINOR: debug: support logging to various sinks
7481 - MINOR: http: add a new "replace-path" action
7482 - REGTEST: ssl: test the "set ssl cert" CLI command
7483 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
7484 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
7485 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
7486 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
7487 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
7488 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
7489 - REGTEST: make the "set ssl cert" require version 2.1
7490 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
7491 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
7492 - BUG/MINOR: state-file: do not store duplicates in the global tree
7493 - BUG/MINOR: state-file: do not leak memory on parse errors
7494 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
7495 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
7496 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
7497 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
7498 - BUILD: travis-ci: reenable address sanitizer for clang builds
7499 - BUG/MINOR: checks: refine which errno values are really errors.
7500 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
7501 - CLEANUP: connection: conn->xprt is never NULL
7502 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
7503 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
7504 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
7505 - MINOR: connection: check for connection validation earlier
7506 - MINOR: connection: remove the double test on xprt_done_cb()
7507 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
7508 - MINOR: poller: do not call the IO handler if the FD is not active
7509 - OPTIM: epoll: always poll for recv if neither active nor ready
7510 - OPTIM: polling: do not create update entries for FD removal
7511 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
7512 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
7513 - BUILD: CI: modernize cirrus-ci
7514 - MINOR: config: disable busy polling on old processes
7515 - MINOR: ssl: Remove unused variable "need_out".
7516 - BUG/MINOR: h1: Report the right error position when a header value is invalid
7517 - BUG/MINOR: proxy: Fix input data copy when an error is captured
7518 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
7519 - BUG/MINOR: channel: inject output data at the end of output
7520 - BUG/MEDIUM: session: do not report a failure when rejecting a session
7521 - MEDIUM: dns: implement synchronous send
7522 - MINOR: raw_sock: make sure to disable polling once everything is sent
7523 - MINOR: http: Add 410 to http-request deny
7524 - MINOR: http: Add 404 to http-request deny
7525 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
7526 - BUILD: cirrus-ci: choose proper openssl package name
7527 - BUG/MAJOR: listener: do not schedule a task-less proxy
7528 - CLEANUP: server: remove unused err section in server_finalize_init
7529 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
7530 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
7531 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
7532 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
7533 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
7534 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
7535 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
7536 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
7537 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
7538 - REGTEST: mcli/mcli_start_progs: start 2 programs
7539 - BUG/MEDIUM: mworker: remain in mworker mode during reload
7540 - DOC: clarify crt-base usage
7541 - CLEANUP: compression: remove unused deinit_comp_ctx section
7542 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
7543 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
7544 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
7545 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
7546 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
7547 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
7548 - CLEANUP: cli: deduplicate the code in _getsocks
7549 - BUG/MINOR: stream: don't mistake match rules for store-request rules
7550 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
7551 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
7552 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
7553 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
7554 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
7555 - BUILD: pattern: include errno.h
7556 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
7557 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
7558 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
7559 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
7560 - REORG: stream/backend: move backend-specific stuff to backend.c
7561 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
7562 - MEDIUM: connection: merge the send_wait and recv_wait entries
7563 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
7564 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
7565 - MEDIUM: mux-h1: merge recv_wait and send_wait
7566 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
7567 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
7568 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
7569 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
7570 - DOC: Fix copy and paste mistake in http-response replace-value doc
7571 - BUG/MINOR: cache: Fix leak of cache name in error path
7572 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
7573 - BUG/MINOR: 51d: Fix bug when HTX is enabled
7574 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
7575 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
7576 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
7577 - DOC: Add a section to document the internal sample fetches
7578 - MINOR: mux-h1: Inherit send flags from the upper layer
7579 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
7580 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
7581 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
7582 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
7583 - MEDIUM: http-rules: Register an action keyword for all http rules
7584 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
7585 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
7586 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
7587 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
7588 - MINOR: counters: Add a counter to report internal processing errors
7589 - MEDIUM: http-ana: Properly handle internal processing errors
7590 - MINOR: http-rules: Add a rule result to report internal error
7591 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
7592 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
7593 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
7594 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
7595 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
7596 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
7597 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
7598 - MINOR: counters: Review conditions to increment counters from analysers
7599 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
7600 - MINOR: http-rules: Handle all message rewrites the same way
7601 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
7602 - MEDIUM: http-rules: Enable the strict rewriting mode by default
7603 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
7604 - MINOR: actions: Add a function pointer to release args used by actions
7605 - MINOR: actions: Regroup some info about HTTP rules in the same struct
7606 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
7607 - MINOR: actions: Rename the act_flag enum into act_opt
7608 - MINOR: actions: Add flags to configure the action behaviour
7609 - MINOR: actions: Use an integer to set the action type
7610 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
7611 - MINOR: http-rules: Make replace-header and replace-value custom actions
7612 - MINOR: http-rules: Make set-header and add-header custom actions
7613 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
7614 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
7615 - MEDIUM: http-rules: Make early-hint custom actions
7616 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
7617 - MINOR: tcp-rules: Make tcp-request capture a custom action
7618 - MINOR: http-rules: Add release functions for existing HTTP actions
7619 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
7620 - MINOR: tcp-rules: Add release functions for existing TCP actions
7621 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
7622 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
7623 - MINOR: http-htx: Add functions to create HTX redirect message
7624 - MINOR: config: Use dedicated function to parse proxy's errorfiles
7625 - MINOR: config: Use dedicated function to parse proxy's errorloc
7626 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
7627 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
7628 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
7629 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
7630 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
7631 - MINOR: http-rules: Support an optional status on deny rules for http reponses
7632 - MINOR: http-rules: Use same function to parse request and response deny actions
7633 - MINOR: http-ana: Add an error message in the txn and send it when defined
7634 - MEDIUM: http-rules: Support an optional error message in http deny rules
7635 - REGTEST: Add a strict rewriting mode reg test
7636 - REGEST: Add reg tests about error files
7637 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
7638 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
7639 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
7640 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
7641 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
7642 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
7643 - BUILD: CI: introduce ARM64 builds
7644 - BUILD: ssl: more elegant anti-replay feature presence check
7645 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
7646 - MEDIUM: dns: use Additional records from SRV responses
7647 - CLEANUP: Consistently `unsigned int` for bitfields
7648 - CLEANUP: pattern: remove the pat_time definition
7649 - BUG/MINOR: http_act: don't check capture id in backend
7650 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
7651
Willy Tarreau2e077f82019-11-25 20:36:16 +010076522019/11/25 : 2.2-dev0
7653 - exact copy of 2.1.0
7654
Willy Tarreaue54b43a2019-11-25 19:47:40 +010076552019/11/25 : 2.1.0
7656 - BUG/MINOR: init: fix set-dumpable when using uid/gid
7657 - MINOR: init: avoid code duplication while setting identify
7658 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
7659 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
7660 - MINOR: peers: Alway show the table info for disconnected peers.
7661 - MINOR: peers: Add TX/RX heartbeat counters.
7662 - MINOR: peers: Add debugging information to "show peers".
7663 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
7664 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
7665 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
7666 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
7667 - BUILD/MINOR: ssl: fix compiler warning about useless statement
7668 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
7669 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
7670 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
7671 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
7672 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
7673 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
7674 - DOC: Update http-buffer-request description to remove the part about chunks
7675 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
7676 - DOC: internal: document the init calls
7677 - MEDIUM: dns: Add resolve-opts "ignore-weight"
7678 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
7679 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
7680 - MINOR: ssl/cli: display warning during 'commit ssl cert'
7681 - MINOR: version: report the version status in "haproxy -v"
7682 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
7683 - DOC: Add documentation about the use-service action
7684 - MINOR: ssl: fix possible null dereference in error handling
7685 - BUG/MINOR: ssl: fix curve setup with LibreSSL
7686 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
7687 - CLEANUP: ssl: check if a transaction exists once before setting it
7688 - BUG/MINOR: cli: fix out of bounds in -S parser
7689 - MINOR: ist: add ist_find_ctl()
7690 - BUG/MAJOR: h2: reject header values containing invalid chars
7691 - BUG/MAJOR: h2: make header field name filtering stronger
7692 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
7693 - MINOR: h2: add a function to report H2 error codes as strings
7694 - MINOR: mux-h2/trace: report the connection and/or stream error code
7695 - SCRIPTS: create-release: show the correct origin name in suggested commands
7696 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
7697 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
7698 - BUILD: reorder the objects in the makefile
7699 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
7700 - MINOR: version: indicate that this version is stable
7701
Willy Tarreau84681322019-11-15 18:49:37 +010077022019/11/15 : 2.1-dev5
7703 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
7704 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
7705 - BUG/MINOR: ssl/cli: fix an error when a file is not found
7706 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
7707 - DOC: fix date and http_date keywords syntax
7708 - MINOR: peers: Add "log" directive to "peers" section.
7709 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
7710 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
7711 - MINOR: flt_trace: Rename macros to print trace messages
7712 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
7713 - MEDIUM: stream/trace: Register a new trace source with its events
7714 - MINOR: doc: http-reuse connection pool fix
7715 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
7716 - MINOR: http-ana: Remove the unused function http_reset_txn()
7717 - BUG/MINOR: action: do-resolve now use cached response
7718 - BUG: dns: timeout resolve not applied for valid resolutions
7719 - DOC: management: fix typo on "cache_lookups" stats output
7720 - BUG/MINOR: stream: init variables when the list is empty
7721 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
7722 - BUG/MINOR: queue/threads: make the queue unlinking atomic
7723 - BUG/MEDIUM: Make sure we leave the session list in session_free().
7724 - CLEANUP: session: slightly simplify idle connection cleanup logic
7725 - MINOR: memory: also poison the area on freeing
7726 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
7727 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
7728 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
7729 - BUILD: contrib/da: remove an "unused" warning
7730 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
7731 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
7732 - MINOR: freq_ctr: Make the sliding window sums thread-safe
7733 - MINOR: stream: Remove the lock on the proxy to update time stats
7734 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
7735 - MINOR: stats: Report max times in addition of the averages for sessions
7736 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
7737 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
7738 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
7739 - DOC: Add missing stats fields in the management manual
7740 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
7741 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
7742 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
7743 - MINOR: sink: Set the default max length for a message to BUFSIZE
7744 - MINOR: ring: make the parse function automatically set the handler/release
7745 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
7746 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
7747
Willy Tarreau1753cb52019-11-03 15:43:10 +010077482019/11/03 : 2.1-dev4
7749 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
7750 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
7751 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
7752 - DOC: remove obsolete section about header manipulation
7753 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
7754 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
7755 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
7756 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
7757 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
7758 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
7759 - BUILD/MINOR: ssl: shut up a build warning about format truncation
7760 - BUILD: do not disable -Wformat-truncation anymore
7761 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
7762 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
7763 - MINOR: mux: Add a new method to get informations about a mux.
7764 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
7765 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
7766 - MINOR: doc: fix busy-polling performance reference
7767 - MINOR: config: allow no set-dumpable config option
7768 - MINOR: init: always fail when setrlimit fails
7769 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
7770 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
7771 - REGTEST: vtest can now enable mcli with its own flag
7772 - BUG/MINOR: config: Update cookie domain warn to RFC6265
7773 - MINOR: sample: add us/ms support to date/http_date
7774 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
7775 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
7776 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
7777 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
7778 - BUG/MINOR: stats: properly check the path and not the whole URI
7779 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
7780 - BUG/MINOR: ssl: ckch->chain must be initialized
7781 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
7782 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
7783 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
7784 - MINOR: backend: Add srv_name sample fetche
7785 - DOC: Add GitHub issue config.yml
7786
Willy Tarreauc70df532019-10-25 15:48:53 +020077872019/10/25 : 2.1-dev3
7788 - MINOR: mux-h2/trace: missing conn pointer in demux full message
7789 - MINOR: mux-h2: add a per-connection list of blocked streams
7790 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
7791 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
7792 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
7793 - BUG/MINOR: peers: crash on reload without local peer.
7794 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
7795 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
7796 - MINOR: htx: Adapt htx_dump() to be used from traces
7797 - MINOR: mux-h1/trace: register a new trace source with its events
7798 - MINOR: proxy: Store http-send-name-header in lower case
7799 - MINOR: http: Remove headers matching the name of http-send-name-header option
7800 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
7801 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
7802 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
7803 - MINOR: fcgi: Add function to get the string representation of a record type
7804 - MINOR: mux-fcgi/trace: Register a new trace source with its events
7805 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
7806 - DOC: clarify some points around http-send-name-header's behavior
7807 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
7808 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
7809 - DOC: fix typo in Prometheus exporter doc
7810 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
7811 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
7812 - MINOR: http: Add a function to get the authority into a URI
7813 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
7814 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
7815 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
7816 - MEDIUM: h2: make the request parser rebuild a complete URI
7817 - MINOR: h2: report in the HTX flags when the request has an authority
7818 - MEDIUM: mux-h2: do not map Host to :authority on output
7819 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
7820 - MINOR: stats: mention in the help message support for "json" and "typed"
7821 - MINOR: stats: get rid of the ST_CONVDONE flag
7822 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
7823 - MINOR: stats: always merge the uri_auth flags into the appctx flags
7824 - MINOR: stats: set the appctx flags when initializing the applet only
7825 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
7826 - MINOR: stats: make stats_dump_fields_json() directly take flags
7827 - MINOR: stats: uniformize the calling convention of the dump functions
7828 - MINOR: stats: support the "desc" output format modifier for info and stat
7829 - MINOR: stats: prepare to add a description with each stat/info field
7830 - MINOR: stats: make "show stat" and "show info"
7831 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
7832 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
7833 - BUILD: stats: fix missing '=' sign in array declaration
7834 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
7835 - MINOR: list: add new macro MT_LIST_BEHEAD
7836 - MEDIUM: task: Split the tasklet list into two lists.
7837 - MINOR: h2: Document traps to be avoided on multithread.
7838 - MINOR: lists: Try to use local variables instead of macro arguments.
7839 - MINOR: lists: Fix alignement of \ when relevant.
7840 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
7841 - MINOR: ssl: crt-list do ckchn_lookup
7842 - REORG: ssl: rename ckch_node to ckch_store
7843 - REORG: ssl: move structures to ssl_sock.h
7844 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
7845 - MINOR: ssl: initialize explicitly the sni_ctx trees
7846 - BUG/MINOR: ssl: abort on sni allocation failure
7847 - BUG/MINOR: ssl: free the sni_keytype nodes
7848 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
7849 - MEDIUM: ssl: introduce the ckch instance structure
7850 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
7851 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
7852 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
7853 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
7854 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
7855 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
7856 - MINOR: ssl: load the sctl in/from the ckch
7857 - MINOR: ssl: load the ocsp in/from the ckch
7858 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
7859 - BUG/MINOR: ssl: fix build without SSL
7860 - BUG/MINOR: ssl: fix build without multi-cert bundles
7861 - BUILD: ssl: wrong #ifdef for SSL engines code
7862 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
7863 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
7864 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
7865 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
7866 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
7867 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
7868 - BUG/MINOR: mux-h1: Capture ignored parsing errors
7869 - MINOR: h1: Reject requests with different occurrences of the header host
7870 - MINOR: h1: Reject requests if the authority does not match the header host
7871 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
7872 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
7873 - BUG/MINOR: WURFL: fix send_log() function arguments
7874 - BUG/MINOR: ssl: fix error messages for OCSP loading
7875 - BUG/MINOR: ssl: can't load ocsp files
7876 - MINOR: version: make the version strings variables, not constants
7877 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
7878 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
7879 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
7880 - BUILD: travis-ci: limit build to branches "master" and "next"
7881 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
7882 - BUILD/SMALL: threads: enable threads on osx
7883 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
7884 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
7885 - BUG/MINOR: cache: also cache absolute URIs
7886 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
7887 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
7888 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
7889 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
7890 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
7891 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
7892 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
7893 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
7894 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
7895 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
7896 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
7897 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
7898 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
7899 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
7900 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
7901 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
7902 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
7903 - CLEANUP: bind: handle warning label on bind keywords parsing.
7904 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
7905 - BUG/MINOR: mworker/cli: reload fail with inherited FD
7906 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
7907 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
7908 - BUG/MINOR: cache: alloc shctx after check config
7909 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
7910 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
7911 - REGTESTS: make seamless-reload depend on 1.9 and above
7912 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
7913 - BUG/MINOR: dns: allow srv record weight set to 0
7914 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
7915 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
7916 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
7917 - BUG/MINOR: mux-h2: do not emit logs on backend connections
7918 - CLEANUP: ssl: remove old TODO commentary
7919 - CLEANUP: ssl: fix SNI/CKCH lock labels
7920 - MINOR: ssl: OCSP functions can load from file or buffer
7921 - MINOR: ssl: load sctl from buf OR from a file
7922 - MINOR: ssl: load issuer from file or from buffer
7923 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
7924 - BUG/MINOR: ssl/cli: fix looking up for a bundle
7925 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
7926 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
7927 - MINOR: ssl: copy a ckch from src to dst
7928 - MINOR: ssl: new functions duplicate and free a ckch_store
7929 - MINOR: ssl/cli: assignate a new ckch_store
7930 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
7931 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
7932 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
7933 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
7934 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
7935 - MINOR: tcp: avoid confusion in time parsing init
7936 - MINOR: debug: add a new "debug dev stream" command
7937 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
7938 - REORG: move CLI access level definitions to cli.h
7939 - MINOR: cli: add an expert mode to hide dangerous commands
7940 - MINOR: debug: make most debug CLI commands accessible in expert mode
7941 - MINOR: stats/debug: maintain a counter of debug commands issued
7942 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
7943
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020079442019/10/01 : 2.1-dev2
7945 - DOC: management: document reuse and connect counters in the CSV format
7946 - DOC: management: document cache_hits and cache_lookups in the CSV format
7947 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
7948 - MINOR: applet: make appctx use their own pool
7949 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
7950 - BUG/MEDIUM: http/htx: unbreak option http_proxy
7951 - BUG/MINOR: backend: do not try to install a mux when the connection failed
7952 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
7953 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
7954 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
7955 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
7956 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
7957 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
7958 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
7959 - MINOR: proto_htx: Add the function htx_return_srv_error()
7960 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
7961 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
7962 - DOC: htx: Update comments in HTX files
7963 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
7964 - MINOR: htx: Deduce the number of used blocks from tail and head values
7965 - MINOR: htx: Use an array of char to store HTX blocks
7966 - MINOR: htx: Slightly update htx_dump() to report better messages
7967 - DOC: htx: Add internal documentation about the HTX
7968 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
7969 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
7970 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
7971 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
7972 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
7973 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
7974 - MINOR: config: Remove tests on the option 'http-use-htx'
7975 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
7976 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
7977 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
7978 - MINOR: cache: Remove tests on the option 'http-use-htx'
7979 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
7980 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
7981 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
7982 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
7983 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
7984 - MINOR: http_act: Remove code relying on the legacy HTTP mode
7985 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
7986 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
7987 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
7988 - MINOR: stats: Remove code relying on the legacy HTTP mode
7989 - MAJOR: filters: Remove code relying on the legacy HTTP mode
7990 - MINOR: stream: Remove code relying on the legacy HTTP mode
7991 - MAJOR: http: Remove the HTTP legacy code
7992 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
7993 - MINOR: proto_http: Remove unused http txn flags
7994 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
7995 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
7996 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
7997 - CLEANUP: proto_http: Remove unecessary includes and comments
7998 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
7999 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
8000 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
8001 - MINOR: proxy: Remove support of the option 'http-tunnel'
8002 - DOC: config: Update as a result of the legacy HTTP removal
8003 - MEDIUM: config: Remove parsing of req* and rsp* directives
8004 - MINOR: proxy: Remove the unused list of block rules
8005 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
8006 - DOC: config: Remove unsupported req* and rsp* keywords
8007 - MINOR: global: Preset tune.max_http_hdr to its default value
8008 - MINOR: http: Don't store raw HTTP errors in chunks anymore
8009 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
8010 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
8011 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
8012 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
8013 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
8014 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
8015 - MINOR: connection: add conn_get_src() and conn_get_dst()
8016 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
8017 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
8018 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
8019 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
8020 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
8021 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
8022 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
8023 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
8024 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
8025 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
8026 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
8027 - MINOR: connection: add new src and dst fields
8028 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
8029 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
8030 - MINOR: lua: switch to conn->dst for a connection's target address
8031 - MINOR: peers: use conn->dst for the peer's target address
8032 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
8033 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
8034 - MINOR: proxy: switch to conn->src in error snapshots
8035 - MINOR: session: use conn->src instead of conn->addr.from
8036 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
8037 - MINOR: unix: use conn->dst for the target address in ->connect()
8038 - MINOR: sockpair: use conn->dst for the target address in ->connect()
8039 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
8040 - MINOR: checks: replace conn->addr.to with conn->dst
8041 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
8042 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
8043 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
8044 - MINOR: connection: create a new pool for struct sockaddr_storage
8045 - MEDIUM: connection: make sure all address producers allocate their address
8046 - MAJOR: connection: remove the addr field
8047 - MINOR: connection: don't use clear_addr() anymore, just release the address
8048 - MINOR: stream: add a new target_addr entry in the stream structure
8049 - MAJOR: stream: store the target address into s->target_addr
8050 - MINOR: peers: now remove the remote connection setup code
8051 - MEDIUM: lua: do not allocate the remote connection anymore
8052 - MEDIUM: backend: always release any existing prior connection in connect_server()
8053 - MEDIUM: backend: remove impossible cases from connect_server()
8054 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
8055 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
8056 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
8057 - BUG/MINOR: http_htx: Support empty errorfiles
8058 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
8059 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
8060 - BUG/MINOR: proxy: always lock stop_proxy()
8061 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
8062 - BUILD: threads: add the definition of PROTO_LOCK
8063 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
8064 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
8065 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
8066 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
8067 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
8068 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
8069 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
8070 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
8071 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
8072 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
8073 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
8074 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
8075 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
8076 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
8077 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
8078 - MEDIUM: ssl: split the loading of the certificates
8079 - MEDIUM: ssl: lookup and store in a ckch_node tree
8080 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
8081 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
8082 - MINOR: ssl: use STACK_OF for chain certs
8083 - MINOR: ssl: add extra chain compatibility
8084 - MINOR: ssl: check private key consistency in loading
8085 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
8086 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
8087 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
8088 - MAJOR: fd: Get rid of the fd cache.
8089 - MEDIUM: pollers: Remember the state for read and write for each threads.
8090 - MEDIUM: mux-h2: don't try to read more than needed
8091 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
8092 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
8093 - BUG/MINOR: debug: fix a small race in the thread dumping code
8094 - MINOR: wdt: also consider that waiting in the thread dumper is normal
8095 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
8096 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
8097 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
8098 - BUG/MINOR: ssl: fix ressource leaks on error
8099 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
8100 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
8101 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
8102 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
8103 - BUG/MINOR: stream-int: also update analysers timeouts on activity
8104 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
8105 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
8106 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
8107 - DOC: Add 'Question.md' issue template, discouraging asking questions
8108 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
8109 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
8110 - BUILD: travis-ci: enable daily Coverity scan
8111 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
8112 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
8113 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
8114 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
8115 - BUG/MINOR: mux-h2: always send stream window update before connection's
8116 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
8117 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
8118 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
8119 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
8120 - MINOR: cache: add method to cache hash
8121 - MINOR: cache: allow caching of OPTIONS request
8122 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
8123 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
8124 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
8125 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
8126 - CLEANUP: buffer: replace b_drop() with b_free()
8127 - CLEANUP: task: move the cpu_time field to the task-only part
8128 - MINOR: cli: add two new states to print messages on the CLI
8129 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
8130 - CLEANUP: cli: replace all occurrences of manual handling of return messages
8131 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
8132 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
8133 - BUG/MINOR: lua: fix setting netfilter mark
8134 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
8135 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
8136 - BUG/MINOR: stats: Wait the body before processing POST requests
8137 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
8138 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
8139 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
8140 - MINOR: debug: indicate the applet name when the task is task_run_applet()
8141 - MINOR: tools: add append_prefixed_str()
8142 - MINOR: lua: export applet and task handlers
8143 - MEDIUM: debug: make the thread dump code show Lua backtraces
8144 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
8145 - MINOR: list: add LIST_SPLICE() to merge one list into another
8146 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
8147 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
8148 - MINOR: sink: create definitions a minimal code for event sinks
8149 - MINOR: sink: add a support for file descriptors
8150 - MINOR: trace: start to create a new trace subsystem
8151 - MINOR: trace: add allocation of buffer-sized trace buffers
8152 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
8153 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
8154 - MINOR: trace/cli: add "show trace" to report trace state and statistics
8155 - MINOR: trace: implement a very basic trace() function
8156 - MINOR: trace: add the file name and line number in the prefix
8157 - MINOR: trace: make trace() now also take a level in argument
8158 - MINOR: trace: implement a call to a decode function
8159 - MINOR: trace: add per-level macros to produce traces
8160 - MINOR: trace: add a definition of typed arguments to trace()
8161 - MINOR: trace: make sure to always stop the locking when stopping or pausing
8162 - MINOR: trace: add the possibility to lock on some arguments
8163 - MINOR: trace: parse the "lock" argument to trace
8164 - MINOR: trace: retrieve useful pointers and enforce lock-on
8165 - DOC: management: document the "trace" and "show trace" commands
8166 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
8167 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
8168 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
8169 - DOC: fixed typo in management.txt
8170 - BUG/MINOR: mworker: disable SIGPROF on re-exec
8171 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
8172 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
8173 - MINOR: backend: Add srv_queue converter
8174 - MINOR: sink: set the fd-type sinks to non-blocking
8175 - MINOR: tools: add a function varint_bytes() to report the size of a varint
8176 - MINOR: buffer: add functions to read/write varints from/to buffers
8177 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
8178 - MINOR: sink: now call the generic fd write function
8179 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
8180 - MINOR: ring: add a ring_write() function
8181 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
8182 - MINOR: sink: add support for ring buffers
8183 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
8184 - MINOR: sink: now report the number of dropped events on output
8185 - MINOR: trace: support a default callback for the source
8186 - MINOR: trace: extend the source location to 13 chars
8187 - MINOR: trace: show thread number and source name in the trace
8188 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
8189 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
8190 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
8191 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
8192 - MINOR: trace: change the "payload" level to "data" and move it
8193 - MINOR: trace: prepend the function name for developer level traces
8194 - MINOR: trace: also report the trace level in the output
8195 - MINOR: trace: change the detail_level to per-source verbosity
8196 - MINOR: mux-h2/trace: register a new trace source with its events
8197 - MINOR: mux-h2/trace: add the default decoding callback
8198 - MEDIUM: mux-h2/trace: add lots of traces all over the code
8199 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
8200 - MINOR: mux-h2/trace: add a new verbosity level "clean"
8201 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
8202 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
8203 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
8204 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
8205 - CLEANUP: mux-h2/trace: lower-case event names
8206 - MINOR: trace: extend default event names to 12 chars
8207 - BUG/MINOR: ring: fix the way watchers are counted
8208 - MINOR: cli: extend the CLI context with a list and two offsets
8209 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
8210 - MEDIUM: ring: implement a wait mode for watchers
8211 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
8212 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
8213 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
8214 - CLEANUP: fd: remove leftovers of the fdcache
8215 - MINOR: fd: add a new "initialized" bit in the fdtab struct
8216 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
8217 - MEDIUM: log: use the new generic fd_write_frag_line() function
8218 - MINOR: log: add a target type instead of hacking the address family
8219 - MEDIUM: log: add support for logging to a ring buffer
8220 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
8221 - MINOR: build: add linux-glibc-legacy build TARGET
8222 - BUG/MEDIUM: peers: local peer socket not bound.
8223 - BUILD: connection: silence gcc warning with extra parentheses
8224 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
8225 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
8226 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
8227 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
8228 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
8229 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
8230 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
8231 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
8232 - MEDIUM: fd: remove the FD_EV_POLLED status bit
8233 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
8234 - MINOR: fd: make updt_fd_polling() a normal function
8235 - CONTRIB: debug: add new program "poll" to test poll() events
8236 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
8237 - BUG/MINOR: checks: start sending the request right after connect()
8238 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
8239 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
8240 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
8241 - BUILD: CI: add basic CentOS 6 cirrus build
8242 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
8243 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
8244 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
8245 - MEDIUM: fd: mark the FD as ready when it's inserted
8246 - MINOR: fd: add two new calls fd_cond_{recv,send}()
8247 - MEDIUM: connection: enable reading only once the connection is confirmed
8248 - MINOR: fd: add two flags ERR and SHUT to describe FD states
8249 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
8250 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
8251 - MINOR: stats: report the number of idle connections for each server
8252 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
8253 - BUILD/MINOR: auth: enabling for osx
8254 - BUG/MINOR: listener: Fix a possible null pointer dereference
8255 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
8256 - MINOR: stats: Add JSON export from the stats page
8257 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
8258 - MINOR: sample: Add UUID-fetch
8259 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
8260 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
8261 - BUG/MINOR: backend: Fix a possible null pointer dereference
8262 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
8263 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
8264 - BUILD: CI: temporarily disable ASAN
8265 - MINOR: htx: Add a flag on HTX message to report processing errors
8266 - MINOR: mux-h1: Report a processing error during output processing
8267 - MINOR: http-ana: Handle HTX errors first during message analysis
8268 - MINOR: http-ana: Remove err_state field from http_msg
8269 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
8270 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
8271 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
8272 - MINOR: istbuf: Add the function b_isteqi()
8273 - MINOR: log: Provide a function to emit a log for an application
8274 - MINOR: http: Add function to parse value of the header Status
8275 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
8276 - MINOR: h1-htx: Use the same function to copy message payload in all cases
8277 - MINOR: muxes/htx: Ignore pseudo header during message formatting
8278 - MINOR: fcgi: Add code related to FCGI protocol
8279 - MEDIUM: fcgi-app: Add FCGI application and filter
8280 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
8281 - MINOR: doc: Add documentation about the FastCGI support
8282 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
8283 - BUILD: CI: install golang-1.13 when building BoringSSL
8284 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
8285 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
8286 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
8287 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
8288 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
8289 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
8290 - MEDIUM: list: Separate "locked" list from regular list.
8291 - MINOR: mt_lists: Add new macroes.
8292 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
8293 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
8294 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
8295 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
8296 - TESTS: Add a stress-test for mt_lists.
8297 - BUILD: travis-ci: add PCRE2, SLZ build
8298 - BUG/MINOR: build: fix event ports (Solaris)
8299 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
8300 - OPTIM: listeners: use tasklets for the multi-queue rings
8301 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
8302 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
8303 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
8304 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
8305 - CLEANUP: task: remove impossible test
8306 - CLEANUP: task: cache the task_per_thread pointer
8307 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
8308 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
8309 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
8310 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
8311 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
8312 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
8313 - MINOR: h2/trace: report the frame type when known
8314 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
8315 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
8316 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
8317 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
8318 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
8319 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
8320 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
8321 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
8322 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
8323 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
8324 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
8325 - BUG/MEDIUM: spoe: Use a different engine-id per process
8326 - MINOR: spoe: Improve generation of the engine-id
8327 - MINOR: spoe: Support the async mode with several threads
8328 - MINOR: http: Add server name header from HTTP multiplexers
8329 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
8330 - MINOR: stats: Add the support of float fields in stats
8331 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
8332 - DOC: Fix documentation about the cli command to get resolver stats
8333 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
8334 - BUG/MINOR: stats: Add a missing break in a switch statement
8335 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
8336 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
8337 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
8338 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
8339 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
8340 - DOC: replace utf-8 quotes by ascii ones
8341 - BUG/MEDIUM: fd: HUP is an error only when write is active
8342 - BUG/MINOR: action: do-resolve does not yield on requests with body
8343 - Revert "MINOR: cache: allow caching of OPTIONS request"
8344
Willy Tarreaudb514072019-07-16 19:15:28 +020083452019/07/16 : 2.1-dev1
8346 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
8347 - DOC: this is a development branch again.
8348 - MEDIUM: Make 'block' directive fatal
8349 - MEDIUM: Make 'redispatch' directive fatal
8350 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
8351 - MEDIUM: Remove 'option independant-streams'
8352 - MINOR: sample: Add sha2([<bits>]) converter
8353 - MEDIUM: server: server-state global file stored in a tree
8354 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
8355 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
8356 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
8357 - MINOR: htx: Add the function htx_change_blk_value_len()
8358 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
8359 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
8360 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
8361 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
8362 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
8363 - BUILD: mworker: silence two printf format warnings around getpid()
8364 - BUILD: makefile: use :space: instead of digits to count commits
8365 - BUILD: makefile: adjust the sed expression of "make help" for solaris
8366 - BUILD: makefile: do not rely on shell substitutions to determine git version
8367 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
8368 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
8369 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
8370 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
8371 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
8372 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
8373 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
8374 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
8375 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
8376 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
8377 - BUG/MINOR: log: Detect missing sampling ranges in config
8378 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
8379 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
8380 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
8381 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
8382 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
8383 - BUG/MINOR: mworker/cli: don't output a \n before the response
8384 - BUG/MEDIUM: checks: unblock signals in external checks
8385 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
8386 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
8387 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
8388 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
8389 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
8390 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
8391 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
8392 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
8393 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
8394 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
8395 - BUG/MEDIUM: servers: Authorize tfo in default-server.
8396 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
8397 - MINOR: server: Add "no-tfo" option.
8398 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
8399 - MINOR: action: Add the return code ACT_RET_DONE for actions
8400 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
8401 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
8402 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
8403 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
8404 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
8405 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
8406 - DOC: contrib: spoa_server Add some hints for building spoa_server
8407 - DOC: Fix typo in intro.txt
8408 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
8409 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
8410 - MINOR: pools: release the pool's lock during the malloc/free calls
8411 - MINOR: pools: always pre-initialize allocated memory outside of the lock
8412 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
8413 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
8414 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
8415 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
8416 - BUG/MEDIUM: da: cast the chunk to string.
8417 - DOC: Fix typos and grammer in configuration.txt
8418 - CLEANUP: proto_tcp: Remove useless header inclusions.
8419 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
8420 - MINOR: task: introduce work lists
8421 - BUG/MAJOR: listener: fix thread safety in resume_listener()
8422 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
8423 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
8424 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
8425 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
8426 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
8427 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
8428 - MEDIUM: mworker-prog: Add user/group options to program section
8429 - REGTESTS: checks: tcp-check connect to multiple ports
8430 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
8431
Willy Tarreau9dc6b972019-06-16 21:49:47 +020084322019/06/16 : 2.1-dev0
8433 - exact copy of 2.0.0
8434
Willy Tarreauba236302019-06-16 20:00:26 +020084352019/06/16 : 2.0.0
8436 - MINOR: fd: Don't use atomic operations when it's not needed.
8437 - DOC: mworker-prog: documentation for the program section
8438 - MINOR: http: add a new "http-request replace-uri" action
8439 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
8440 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
8441 - MINOR: mworker: change formatting in uptime field of "show proc"
8442 - MINOR: mworker: add the HAProxy version in "show proc"
8443 - MINOR: doc: Remove -Ds option in man page
8444 - MINOR: doc: add master-worker in the man page
8445 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
8446 - BUILD: Silence gcc warning about unused return value
8447 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
8448 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
8449 - MINOR: doc: update the manpage and usage message about -S
8450 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
8451 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
8452 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
8453 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
8454 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
8455 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
8456 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
8457 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
8458 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
8459 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
8460 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
8461 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
8462 - MINOR: h2: Set flags about the request's scheme on the start-line
8463 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
8464 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
8465 - MEDIUM: server: server-state only rely on server name
8466 - CLEANUP: connection: rename the wait_event.task field to .tasklet
8467 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
8468 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
8469 - DOC: add some environment variables in section 2.3
8470 - BUILD: makefile: clarify the "help" output and list options
8471 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
8472 - BUG: tasks: fix bug introduced by latest scheduler cleanup
8473 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
8474 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
8475 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
8476 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
8477 - BUILD: makefile: further clarify the "help" output and list targets
8478 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
8479 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
8480 - DOC: update few references to the linux* targets and change them to linux-glibc
8481 - BUILD: makefile: detect and reject recently removed linux targets
8482 - BUILD: makefile: enable linux namespaces by default on linux
8483 - BUILD: makefile: enable TFO on linux platforms
8484 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
8485 - DOC: small updates to the CONTRIBUTING file
8486 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
8487 - CLEANUP: removed obsolete examples an move a few to better places
8488 - DOC: Fix typos in CONTRIBUTING
8489 - DOC: update the outdated ROADMAP file
8490 - DOC: create a BRANCHES file to explain the life cycle
8491 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
8492 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
8493 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
8494 - BUILD: tools: work around an internal compiler bug in gcc-3.4
8495 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
8496 - BUILD: makefile: enable USE_RT on Solaris
8497 - BUILD: makefile: do not use echo -n
8498 - DOC: mention a few common build errors in the INSTALL file
8499
Willy Tarreauca3551f2019-06-11 19:28:00 +020085002019/06/11 : 2.0-dev7
8501 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
8502 - MINOR: tools: add new bitmap manipulation functions
8503 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
8504 - MINOR: chunks: Make sure trash_size is only set once.
8505 - Revert "MINOR: chunks: Make sure trash_size is only set once."
8506 - MINOR: threads: serialize threads initialization
8507 - MINOR peers: data structure simplifications for server names dictionary cache.
8508 - DOC: peers: Update for dictionary cache entries for peers protocol.
8509 - MINOR: dict: Store the length of the dictionary entries.
8510 - MINOR: peers: A bit of optimization when encoding cached server names.
8511 - MINOR: peers: Optimization for dictionary cache lookup.
8512 - MEDIUM: tools: improve time format error detection
8513 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
8514 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
8515 - MINOR: threads: avoid clearing harmless twice in thread_release()
8516 - MEDIUM: threads: add thread_sync_release() to synchronize steps
8517 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
8518 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
8519 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
8520 - MEDIUM: init/threads: don't use spinlocks during the init phase
8521 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
8522 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
8523 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
8524 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
8525 - MINOR: htx: Add the function htx_move_blk_before()
8526 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
8527 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
8528 - MINOR: http: turn default error files to HTTP/1.1
8529 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
8530 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
8531 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
8532 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
8533 - MINOR: contrib/spoa_server: Add random IP score
8534 - DOC/MINOR: contrib/spoa_server: Fix typo in README
8535
Willy Tarreaub57f1092019-06-07 06:12:59 +020085362019/06/07 : 2.0-dev6
8537 - BUG/MEDIUM: connection: fix multiple handshake polling issues
8538 - MINOR: connection: also stop receiving after a SOCKS4 response
8539 - MINOR: mux-h1: don't try to recv() before the connection is ready
8540 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
8541 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
8542 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
8543 - CONTRIB: debug: add 4 missing connection/conn_stream flags
8544 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
8545 - MINOR: server: increase the default pool-purge-delay to 5 seconds
8546 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
8547 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
8548 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
8549 - BUILD: task: fix a build warning when threads are disabled
8550 - CLEANUP: peers: Remove tabs characters.
8551 - CLEANUP: peers: Replace hard-coded values by macros.
8552 - BUG/MINOR: peers: Wrong stick-table update message building.
8553 - MINOR: dict: Add dictionary new data structure.
8554 - MINOR: peers: Add a LRU cache implementation for dictionaries.
8555 - MINOR: stick-table: Add "server_name" new data type.
8556 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
8557 - MINOR: proxy: Add a "server by name" tree to proxy.
8558 - MINOR: server: Add a dictionary for server names.
8559 - MINOR: stream: Stickiness server lookup by name.
8560 - MINOR: peers: Make peers protocol support new "server_name" data type.
8561 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
8562 - REGTEST: Add a basic server by name stickiness reg test.
8563 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
8564 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
8565 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
8566 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
8567 - BUILD: travis-ci improvements
8568 - MINOR: SSL: add client/server random sample fetches
8569 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
8570 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
8571 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
8572 - MEDIUM: mux-h1: refactor output processing
8573 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
8574 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
8575 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
8576 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
8577 - MEDIUM: htx: Add the parsing of trailers of chunked messages
8578 - MINOR: htx: Don't use end-of-data blocks anymore
8579 - BUG/MINOR: mux-h1: Don't send more data than expected
8580 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
8581 - BUG/MINOR: peers: Wrong "server_name" decoding.
8582 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
8583 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
8584 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
8585 - MEDIUM: ssl: Handle subscribe by itself.
8586 - MINOR: ssl: Make ssl_sock_handshake() static.
8587 - MINOR: connections: Add a new xprt method, remove_xprt.
8588 - MINOR: connections: Add a new xprt method, add_xprt().
8589 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
8590 - MEDIUM: connections: Remove CONN_FL_SOCK*
8591 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
8592 - BUG/MINOR: peers: Wrong server name parsing.
8593 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
8594 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
8595 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
8596 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
8597 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
8598 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
8599 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
8600 - MEDIUM: stream: re-arrange the connection setup status reporting
8601 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
8602 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
8603 - MEDIUM: stream: rearrange the events to remove the loop
8604 - MEDIUM: stream: only loop on flags relevant to the analysers
8605 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
8606 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
8607 - BUILD: peers: fix a build warning about an incorrect intiialization
8608 - BUG/MINOR: time: make sure only one thread sets global_now at boot
8609 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
8610
Willy Tarreauabc874e2019-06-02 12:06:08 +020086112019/06/02 : 2.0-dev5
8612 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
8613 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
8614 - BUILD: watchdog: condition it to USE_RT
8615 - MINOR: raw_sock: report global traffic statistics
8616 - MINOR: stats: report the global output bit rate in human readable form
8617 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
8618 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
8619 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
8620 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
8621 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
8622 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
8623 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
8624 - DOC: fix typos
8625 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
8626 - OPTIM: freq-ctr: don't take the date lock for most updates
8627 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
8628 - CLEANUP: debug: remove the TRACE() macro
8629 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
8630 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
8631 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
8632 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
8633 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
8634 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
8635 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
8636 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
8637 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
8638 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
8639 - BUILD: ssl: fix latest LibreSSL reg-test error
8640 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
8641 - MINOR: cli/activity: add 3 general purpose counters in development mode
8642 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
8643 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
8644 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
8645 - MEDIUM: config: now alert when two servers have the same name
8646 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
8647 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
8648 - MINOR: htx: Store the head position instead of the wrap one
8649 - MINOR: htx: Store start-line block's position instead of address of its payload
8650 - MINOR: htx: Add functions to get the first block of an HTX message
8651 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
8652 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
8653 - CLEANUP: htx: Remove unused function htx_get_stline()
8654 - MINOR: http/htx: Use sl_pos directly to replace the start-line
8655 - MEDIUM: http/htx: Perform analysis relatively to the first block
8656 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
8657 - MINOR: htx: Add function htx_get_max_blksz()
8658 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
8659 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
8660 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
8661 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
8662 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
8663 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
8664 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
8665 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
8666 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
8667 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
8668 - MEDIUM: htx: 1xx messages are now part of the final reponses
8669 - MINOR: channel/htx: Add function to forward headers of an HTX message
8670 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
8671 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
8672 - MEDIUM: htx: Store the first block position instead of the start-line one
8673 - MINOR: stats/htx: don't use the first block position but the head one
8674 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
8675 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
8676 - MEDIUM: filters/htx: Filter body relatively to the first block
8677 - MINOR: htx: Optimize htx_drain() when all data are drained
8678 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
8679 - MINOR: htx: remove the unused function htx_find_blk()
8680 - MINOR: htx: Remove support of pseudo headers because it is unused
8681 - BUG/MEDIUM: http: fix "http-request reject" when not final
8682 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
8683 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
8684 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
8685 - MINOR: htx: make htx_add_data() return the transmitted byte count
8686 - MEDIUM: htx: make htx_add_data() never defragment the buffer
8687 - MINOR: activity: write totals on the "show activity" output
8688 - MINOR: activity: report totals and average separately
8689 - MEDIUM: poller: separate the wait time from the wake events
8690 - MINOR: activity: report the number of failed pool/buffer allocations
8691 - MEDIUM: buffers: relax the buffer lock a little bit
8692 - MINOR: task: turn the WQ lock to an RW_LOCK
8693 - MEDIUM: task: don't grab the WR lock just to check the WQ
8694 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
8695 - MEDIUM: sessions: Introduce session flags.
8696 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
8697 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
8698 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
8699 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
8700 - MEDIUM: tasks: Get rid of active_tasks_mask.
8701 - MEDIUM: connection: Upstream SOCKS4 proxy support
8702 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
8703 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
8704
Willy Tarreau56740692019-05-22 20:48:33 +020087052019/05/22 : 2.0-dev4
8706 - BUILD: enable freebsd builds on cirrus-ci
8707 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
8708 - MEDIUM: Make 'option forceclose' actually warn
8709 - MEDIUM: Make 'resolution_pool_size' directive fatal
8710 - DOC: management: place "show activity" at the right place
8711 - MINOR: cli/activity: show the dumping thread ID starting at 1
8712 - MINOR: task: export global_task_mask
8713 - MINOR: cli/debug: add a thread dump function
8714 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
8715 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
8716 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
8717 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
8718 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
8719 - BUG/MINOR: debug: don't check the call date on tasklets
8720 - MINOR: thread: implement ha_thread_relax()
8721 - MINOR: task: put barriers after each write to curr_task
8722 - MINOR: task: always reset curr_task when freeing a task or tasklet
8723 - MINOR: stream: detach the stream from its own task on stream_free()
8724 - MEDIUM: debug/threads: implement an advanced thread dump system
8725 - REGTEST: extend the check duration on tls_health_checks and mark it slow
8726 - DOC: fix "successful" typo
8727 - MINOR: init: setenv HAPROXY_CFGFILES
8728 - MINOR: threads/init: synchronize the threads startup
8729 - MEDIUM: init/mworker: make the pipe register function a regular initcall
8730 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
8731 - CLEANUP: threads: remove the now unused START_LOCK label
8732 - MINOR: init/threads: make the global threads an array of structs
8733 - MINOR: threads: add each thread's clockid into the global thread_info
8734 - CLEANUP: stream: remove an obsolete debugging test
8735 - MINOR: tools: add dump_hex()
8736 - MINOR: debug: implement ha_panic()
8737 - MINOR: debug/cli: add some debugging commands for developers
8738 - MINOR: tools: provide a may_access() function and make dump_hex() use it
8739 - MINOR: debug: make ha_panic() report threads starting at 1
8740 - REORG: compat: move some integer limit definitions from standard.h to compat.h
8741 - REORG: threads: move the struct thread_info from global.h to hathreads.h
8742 - MINOR: compat: make sure to always define clockid_t
8743 - MINOR: threads: always place the clockid in the struct thread_info
8744 - MINOR: threads: add a thread-local thread_info pointer "ti"
8745 - MINOR: time: move the cpu, mono, and idle time to thread_info
8746 - MINOR: time: add a function to retrieve another thread's cputime
8747 - MINOR: debug: report each thread's cpu usage in "show thread"
8748 - BUILD: threads: only assign the clock_id when supported
8749 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
8750 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
8751 - MAJOR: polling: add event ports support (Solaris)
8752 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
8753 - CLEANUP: time: refine the test on _POSIX_TIMERS
8754 - MINOR: compat: define a new empty type empty_t for non-implemented fields
8755 - CLEANUP: time: switch clockid_t to empty_t when not available
8756 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
8757 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
8758 - MINOR: debug: switch to SIGURG for thread dumps
8759 - CLEANUP: threads: really move thread_info to hathreads.c
8760 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
8761 - CLEANUP: debug: always report harmless/want_rdv even without threads
8762 - MINOR: threads: implement ha_tkill() and ha_tkillall()
8763 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
8764 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
8765 - MINOR: debug: dump streams when an applet, iocb or stream is known
8766 - MINOR: threads: add a "stuck" flag to the thread_info struct
8767 - MINOR: threads: add a timer_t per thread in thread_info
8768 - MAJOR: watchdog: implement a thread lockup detection mechanism
8769 - MINOR: stream: remove the cpu time detection from process_stream()
8770 - MINOR: connection: report the mux names in "haproxy -vv"
8771 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
8772 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
8773 - MINOR: WURFL: call header_retireve_callback() in dummy library
8774 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
8775 - MINOR: WURFL: shows log messages during module initialization
8776 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
8777 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
8778 - MEDIUM: WURFL: HTX awareness.
8779 - MINOR: WURFL: module version bump to 2.0
8780 - MINOR: WURFL: do not emit warnings when not configured
8781 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
8782 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
8783 - BUILD: travis: add sanitizers to travis-ci builds
8784 - BUILD: time: remove the test on _POSIX_C_SOURCE
8785 - CLEANUP: build: rename some build macros to use the USE_* ones
8786 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
8787 - BUG/MEDIUM: dns: make the port numbers unsigned
8788 - MEDIUM: config: deprecate the antique req* and rsp* commands
8789
Willy Tarreaua257a9b2019-05-15 16:51:48 +020087902019/05/15 : 2.0-dev3
8791 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
8792 - CLEANUP: peers: remove useless annoying tabulations.
8793 - CLEANUP: peers: replace timeout constants by macros.
8794 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
8795 - DOC: The option httplog is no longer valid in a backend.
8796 - DOC: peers: Peers protocol documentation update.
8797 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
8798 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
8799 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
8800 - BUILD: Makefile: remove outdated support for dlmalloc
8801 - BUILD: Makefile: consider a variable's origin and not its value for the options list
8802 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
8803 - BUILD: Makefile: shorten default settings declaration
8804 - BUILD: Makefile: clean up the target declarations
8805 - BUILD: report the whole feature set with their status in haproxy -vv
8806 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
8807 - REGTEST: script: make the script use the new features list
8808 - REGTEST: script: remove platform-specific assigments of OPTIONS
8809 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
8810 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
8811 - BUILD/MINOR: listener: Silent a few signedness warnings.
8812 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
8813 - BUG/MEDIUM: mworker: don't free the wrong child when not found
8814 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
8815 - BUG/MAJOR: checks: segfault during tcpcheck_main
8816 - BUILD: makefile: work around an old bug in GNU make-3.80
8817 - BUILD: makefile: work around another bug in make 3.80
8818 - BUILD: http: properly mark some struct as extern
8819 - BUILD: chunk: properly declare pool_head_trash as extern
8820 - BUILD: cache: avoid a build warning with some compilers/linkers
8821 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
8822 - MINOR: tools: add an unsetenv() implementation
8823 - BUILD: re-implement an initcall variant without using executable sections
8824 - BUILD: use inttypes.h instead of stdint.h
8825 - BUILD: connection: fix naming of ip_v field
8826 - BUILD: makefile: fix build of IPv6 header on aix51
8827 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
8828 - BUILD: define unsetenv on AIX 5.1
8829 - BUILD: Makefile: disable shared cache on AIX 5.1
8830 - MINOR: ssl: Add aes_gcm_dec converter
8831 - REORG: mworker: move serializing functions to mworker.c
8832 - REORG: mworker: move signals functions to mworker.c
8833 - REORG: mworker: move IPC functions to mworker.c
8834 - REORG: mworker: move signal handlers and related functions
8835 - REORG: mworker: move mworker_cleanlisteners to mworker.c
8836 - MINOR: mworker: calloc mworker_proc structures
8837 - MINOR: mworker: don't use children variable anymore
8838 - MINOR: cli: export cli_parse_default() definition in cli.h
8839 - REORG: mworker/cli: move CLI functions to mworker.c
8840 - MEDIUM: mworker-prog: implement program for master-worker
8841 - MINOR: mworker/cli: show programs in 'show proc'
8842 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
8843 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
8844 - MINOR: cli: export HAPROXY_CLI environment variable
8845 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
8846 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
8847 - REGTEST: http-capture/h00000: Relax a regex matching the log message
8848 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
8849 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
8850 - REGTEST: log/b00000: Be sure the client always hits its timeout
8851 - REGTEST: lua/b00003: Relax the regex matching the log message
8852 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
8853 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
8854 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
8855 - BUG/MEDIUM: htx: fix random premature abort of data transfers
8856 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
8857 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
8858 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
8859 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
8860 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
8861 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
8862 - MINOR: skip get_gmtime where tm is unused
8863 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
8864 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
8865 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
8866 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
8867 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
8868 - BUG/MINOR: listener: renice the accept ring processing task
8869 - MINOR: cli/listener: report the number of accepts on "show activity"
8870 - MINOR: cli/activity: report the accept queue sizes in "show activity"
8871 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
8872 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
8873 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
8874 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
8875 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
8876 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
8877 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
8878 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
8879 - MINOR: mux-h1: Simplify handling of 1xx responses
8880 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
8881 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
8882 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
8883 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
8884 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
8885 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
8886 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
8887 - MINOR: stream: Set a flag when the stream uses the HTX
8888 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
8889 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
8890 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
8891 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
8892 - MEDIUM: muxes: Add an optional input buffer during mux initialization
8893 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
8894 - MEDIUM: muxes: Be prepared to don't own connection during the release
8895 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
8896 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
8897 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
8898 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
8899 - MAJOR: htx: Enable the HTX mode by default for all proxies
8900 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
8901 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
8902 - CLEANUP: task: do not export rq_next anymore
8903 - MEDIUM: tasks: improve fairness between the local and global queues
8904 - MEDIUM: tasks: only base the nice offset on the run queue depth
8905 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
8906 - BUG/MEDIUM: map: Fix memory leak in the map converter
8907 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
8908 - BUILD: task/thread: fix single-threaded build of task.c
8909 - BUILD: cli/threads: fix build in single-threaded mode
8910 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
8911 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
8912 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
8913 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
8914 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
8915 - BUILD: address a few cases of "static <type> inline foo()"
8916 - BUILD: do not specify "const" on functions returning structs or scalars
8917 - BUILD: htx: fix a used uninitialized warning on is_cookie2
8918 - MINOR: peers: Add a new command to the CLI for peers.
8919 - DOC: update for "show peers" CLI command.
8920 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
8921 - MEDIUM: mworker: store the leaving state of a process
8922 - MEDIUM: mworker-prog: implements 'option start-on-reload'
8923 - CLEANUP: mworker: remove the type field in mworker_proc
8924 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
8925 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
8926 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
8927 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
8928 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
8929 - BUG/MINOR: mworker: mworker_kill should apply on every children
8930 - BUG/MINOR: mworker: don't exit with an ambiguous value
8931 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
8932 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
8933 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
8934 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
8935 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
8936 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
8937 - MINOR: mux-h1: Handle read0 during TCP splicing
8938 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
8939 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
8940 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
8941 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
8942 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
8943 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
8944 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
8945 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
8946 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
8947 - BUG/MEDIUM: applets: Don't use task_in_rq().
8948 - BUG/MAJOR: task: make sure never to delete a queued task
8949 - MINOR: task/thread: factor out a wake-up condition
8950 - CLEANUP: task: remain consistent when using the task's handler
8951 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
8952 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
8953 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
8954 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
8955 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
8956 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
8957 - BUG/MINOR: mworker: disable busy polling in the master process
8958 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
8959 - MEDIUM: ssl: Give ssl_sock its own context.
8960 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
8961 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
8962 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
8963 - MEDIUM: ssl: provide our own BIO.
8964 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
8965 - MINOR: peers: adds counters on show peers about tasks calls.
8966 - MEDIUM: enable travis-ci builds
8967 - MINOR: fd: Add a counter of used fds.
8968 - MEDIUM: connections: Add a way to control the number of idling connections.
8969 - BUG/MEDIUM: maps: only try to parse the default value when it's present
8970 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
8971 - REGTEST: Missing REQUIRE_VERSION declarations.
8972 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
8973 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
8974 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
8975 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
8976 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
8977 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
8978 - MINOR: gcc: Fix a silly gcc warning in connect_server()
8979 - MINOR: ssl/cli: async fd io-handlers printable on show fd
8980 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
8981 - BUILD: add USE_WURFL to the list of known build options
8982 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
8983 - BUILD: wurfl: build fix for 1.9/2.0 code base
8984 - CLEANUP: wurfl: removed deprecated methods
8985 - DOC: wurfl: added point of contact in MAINTAINERS file
8986 - MINOR: wurfl: enabled multithreading mode
8987 - MINOR: contrib: dummy wurfl library
8988 - MINOR: dns: dns_requester structures are now in a memory pool
8989 - MINOR: dns: move callback affection in dns_link_resolution()
8990 - MINOR: obj_type: new object type for struct stream
8991 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
8992 - MINOR: log: Extract some code to send syslog messages.
8993 - REGTEST: replace LEVEL option by a more human readable one.
8994 - REGTEST: rename the reg test files.
8995 - REGTEST: adapt some reg tests after renaming.
8996 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
8997 - BUG/MAJOR: stream: Missing DNS context initializations.
8998 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
8999 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
9000 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
9001 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
9002 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
9003 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
9004 - CLEANUP: task: report calls as unsigned in show sess
9005 - MINOR: tasks/activity: report the context switch and task wakeup rates
9006 - MINOR: stream: measure and report a stream's call rate in "show sess"
9007 - MINOR: applet: measure and report an appctx's call rate in "show sess"
9008 - BUILD: extend Travis CI config to support more platforms
9009 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
9010 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
9011 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
9012 - BUILD: travis: remove the "allow_failures" entry
9013 - BUG/MINOR: activity: always initialize the profiling variable
9014 - MINOR: activity: make the profiling status per thread and not global
9015 - MINOR: activity: enable automatic profiling turn on/off
9016 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
9017 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
9018 - MINOR: connection: make the debugging helper functions safer
9019 - MINOR: stream/debug: make a stream dump and crash function
9020 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
9021 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
9022 - MEDIUM: streams: measure processing time and abort when detecting bugs
9023 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
9024 - MEDIUM: da: HTX mode support.
9025 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
9026 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
9027 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
9028 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
9029 - DOC: contrib/modsecurity: Typos and fix the reject example
9030 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
9031 - MINOR: log: Add "sample" new keyword to "log" lines.
9032 - MINOR: log: Enable the log sampling and load-balancing feature.
9033 - DOC: log: Document the sampling and load-balancing logging feature.
9034 - REGTEST: Add a new reg test for log load-balancing feature.
9035 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
9036 - REGTEST: Make this reg test be Linux specific.
9037 - CLEANUP: task: move the task_per_thread definition to task.h
9038 - MINOR: activity: report context switch counts instead of rates
9039 - MINOR: threads: Implement HA_ATOMIC_LOAD().
9040 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
9041 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
9042 - MINOR: config: Test validity of tune.maxaccept during the config parsing
9043 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
9044 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
9045 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
9046 - BUG/MINOR: haproxy: fix rule->file memory leak
9047 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
9048 - BUG/MINOR: checks: free memory allocated for tasklets
9049 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
9050 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
9051 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
9052 - MINOR: threads: flatten the per-thread cpu-map
9053 - MINOR: init/threads: remove the useless tids[] array
9054 - MINOR: init/threads: make the threads array global
9055 - BUG/MEDIUM: ssl: Use the early_data API the right way.
9056 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
9057 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
9058 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
9059 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
9060 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
9061 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
9062 - BUG/MINOR: logs/threads: properly split the log area upon startup
9063 - BUILD: extend travis-ci matrix
9064 - CLEANUP: Remove appsession documentation
9065 - DOC: Fix typo in keyword matrix
9066 - BUILD: remove "build_libressl" duplicate declaration
9067 - BUILD: travis-ci: get back to osx without openssl support
9068 - BUILD: enable several LibreSSL hacks, including
9069 - BUILD: temporarily mark LibreSSL builds as allowed to fail
9070 - BUILD: travis: TMPDIR replacement.
9071 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
9072 - MINOR: doc: Document allow-0rtt on the server line.
9073 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
9074 - MEDIUM: proto: Change the prototype of the connect() method.
9075 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
9076 - MINOR: config: Extract the code of "stick-table" line parsing.
9077 - BUILD/MINOR: stick-table: Compilation fix.
9078 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
9079 - MINOR: stick-tables: Add peers process binding computing.
9080 - MINOR: stick-table: Add prefixes to stick-table names.
9081 - MINOR: peers: Do not emit global stick-table names.
9082 - DOC: Update for "table" lines in "peers" section.
9083 - REGTEST: Add reg tests for "table" lines in "peers" sections.
9084 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
9085 - REGTEST: make the tls_health_checks test much faster
9086 - REGTEST: make the "table in peers" test require v2.0
9087 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
9088 - BUG/MEDIUM: h2/htx: always fail on too large trailers
9089 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
9090 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
9091 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
9092 - REGTEST: Flag some slow reg tests.
9093 - REGTEST: Reg tests file renaming.
9094 - REGTEST: Wrong renaming for one reg test.
9095 - REGTEST: Wrong assumption in IP:port logging test.
9096 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
9097 - MINOR: systemd: Use the variables from /etc/default/haproxy
9098 - MINOR: systemd: Make use of master socket in systemd unit
9099 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
9100 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
9101 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
9102 - CLEANUP: task: remove unneeded tests before task_destroy()
9103 - MINOR: mworker: support a configurable maximum number of reloads
9104 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
9105 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
9106 - BUG/MINOR: mux-h1: Fix the parsing of trailers
9107 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
9108 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
9109 - MINOR: htx: Don't try to append a trailer block with the previous one
9110 - MINOR: htx: Remove support for unused OOB HTX blocks
9111 - BUILD: travis-ci bugfixes and improvements
9112 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
9113 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
9114 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
9115 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
9116 - BUILD: ssl: make libressl use its own version numbers
9117 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
9118 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
9119 - BUILD: ssl: fix libressl build again after aes-gcm-enc
9120 - REORG: ssl: move openssl-compat from proto to common
9121 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
9122 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
9123 - CLEANUP: ssl: make inclusion of openssl headers safe
9124 - BUILD: add BoringSSL to travis-ci build matrix
9125 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
9126 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
9127 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
9128 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
9129 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
9130 - MEDIUM: streams: Add a new http action, disable-l7-retry.
9131 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
9132 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
9133 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
9134 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
9135 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
9136 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
9137 - BUILD: threads: fix again the __ha_cas_dw() definition
9138 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
9139 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
9140 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
9141 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
9142 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
9143 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
9144 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
9145 - BUG/MAJOR: ssl: segfault upon an heartbeat request
9146 - MINOR: spoa-server: Clone the v1.7 spoa-example project
9147 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
9148 - MINOR: spoa-server: Externalise debug functions
9149 - MINOR: spoe-server: rename "worker" functions
9150 - MINOR: spoa-server: Replace the thread init system by processes
9151 - MINOR: spoa-server: With debug mode, start only one process
9152 - MINOR: spoa-server: Allow registering external processes
9153 - MINOR: spoa-server: Allow registering message processors
9154 - MINOR: spoa-server: Load files
9155 - MINOR: spoa-server: Prepare responses
9156 - MINOR: spoa-server: Execute registered callbacks
9157 - MINOR: spoa-server: Add Lua processing
9158 - MINOR: spoa-server: Add python
9159 - MINOR/DOC: spoe-server: Add documentation
9160 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
9161 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
9162 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
9163 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
9164 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
9165 - CLEANUP: connection: remove the handle field from the wait_event struct
9166 - BUG/MINOR: log: Wrong log format initialization.
9167 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
9168 - BUG/MINOR: mworker: use after free when the PID not assigned
9169 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
9170 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
9171 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
9172 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
9173 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
9174 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
9175 - MINOR: mux-h2: add macros to check multiple stream states at once
9176 - MINOR: mux-h2: stop relying on CS_FL_REOS
9177 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
9178 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
9179 - MINOR: debug: add a new BUG_ON macro
9180 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
9181 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
9182 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
9183 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
9184
Willy Tarreau6e893b92019-03-26 05:40:51 +010091852019/03/26 : 2.0-dev2
9186 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
9187 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
9188 - MINOR: lists: Implement locked variations.
9189 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
9190 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
9191 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
9192 - MINOR: cfgparse: Add a cast to make gcc happier.
9193 - BUG/MEDIUM: standard: Wrong reallocation size.
9194 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
9195 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
9196 - MAJOR: config: disable support for nbproc and nbthread in parallel
9197 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
9198 - MAJOR: listener: do not hold the listener lock in listener_accept()
9199 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
9200 - MINOR: tools: implement functions to look up the nth bit set in a mask
9201 - MINOR: listener: pre-compute some thread counts per bind_conf
9202 - MINOR: listener: implement multi-queue accept for threads
9203 - MAJOR: listener: use the multi-queue for multi-thread listeners
9204 - MINOR: activity: add accept queue counters for pushed and overflows
9205 - MINOR: config: add global tune.listener.multi-queue setting
9206 - MAJOR: threads: enable one thread per CPU by default
9207 - DOC: update management.txt to reflect that threads are used by default
9208 - BUG/MINOR: config: don't over-count the global maxsock value
9209 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
9210 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
9211 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
9212 - MINOR: list: make the delete and pop operations idempotent
9213 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
9214 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
9215 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
9216 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
9217 - MINOR: listener: introduce listener_backlog() to report the backlog value
9218 - MINOR: listener: do not needlessly set l->maxconn
9219 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
9220 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
9221 - MINOR: peers: Add a message for heartbeat.
9222 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
9223 - BUG/MINOR: init: never lower rlim_fd_max
9224 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
9225 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
9226 - MINOR: init: make the maxpipe computation more accurate
9227 - MINOR: init: move some maxsock updates earlier
9228 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
9229 - REGTEST: fix a spurious "nbthread 4" in the connection test
9230 - DOC: update the text related to the global maxconn value
9231 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
9232 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
9233 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
9234 - MINOR: htx: unconditionally handle parsing errors in requests or responses
9235 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
9236 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
9237 - MINOR: sample: Code factorization "ungrpc" converter.
9238 - MINOR: sample: Rework gRPC converter code.
9239 - CLEANUP: wurfl: remove dead, broken and unmaintained code
9240 - MINOR: config: relax the range checks on cpu-map
9241 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
9242 - MINOR: sample: Extract some protocol buffers specific code.
9243 - DOC: Remove tabs and fixed punctuation.
9244 - MINOR: sample: Add a protocol buffers specific converter.
9245 - REGTEST: Peers reg tests.
9246 - REGTEST: Enable reg tests with HEAD HTTP method usage.
9247 - MINOR: lists: add a LIST_DEL_INIT() macro
9248 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
9249 - MINOR: listener: improve incoming traffic distribution
9250 - MINOR: tools: implement my_flsl()
9251 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
9252 - CLEANUP: listener: remove old thread bit mapping
9253 - MINOR: listener: move thr_idx from the bind_conf to the listener
9254 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
9255 - BUG/MAJOR: config: Wrong maxconn adjustment.
9256 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
9257 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
9258 - MINOR: fd: Remove debugging code.
9259 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
9260 - MINOR: threads: Implement __ha_barrier_atomic*.
9261 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
9262 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
9263 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
9264 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
9265 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
9266 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
9267 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
9268 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
9269 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
9270 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
9271 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
9272 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
9273 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
9274 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
9275 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
9276 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
9277 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
9278 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
9279 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
9280 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
9281 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
9282 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
9283 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
9284 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
9285 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
9286 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
9287 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
9288 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
9289 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
9290 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
9291 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
9292 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
9293 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
9294 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
9295 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
9296 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
9297 - MEDIUM: list: Remove useless barriers.
9298 - MEDIUM: list: Use _HA_ATOMIC_*
9299 - MEDIUM: connections: Use _HA_ATOMIC_*
9300 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
9301 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
9302 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
9303 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
9304 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
9305 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
9306 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
9307 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
9308 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
9309 - MINOR: stats: Move stuff about the stats status codes in stats files
9310 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
9311 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
9312 - BUILD: listener: shut up a build warning when threads are disabled
9313 - BUILD: Makefile: allow the reg-tests target to be verbose
9314 - BUILD: Makefile: resolve LEVEL before calling run-regtests
9315 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
9316 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
9317 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
9318 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
9319 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
9320 - MINOR: muxes: Report the Last read with a dedicated flag
9321 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
9322 - BUILD: tools: fix a build warning on some 32-bit archs
9323 - MINOR: init: report the list of optionally available services
9324 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
9325 - BUG/MINOR: cache: Fully consume large requests in the cache applet
9326 - BUG/MINOR: stats: Fully consume large requests in the stats applet
9327 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
9328 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
9329 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
9330 - MINOR: stats/cache: Handle the header Expect when applets are registered
9331 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
9332 - CLEANUP: cache: don't export http_cache_applet anymore
9333 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
9334 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
9335 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
9336 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
9337 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
9338 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
9339 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
9340 - CLEANUP: mux-h2: add some comments to help understand the code
9341 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
9342 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
9343 - BUG/MEDIUM: h2: Try to be fair when sending data.
9344 - BUG/MINOR: proto-http: Don't forward request body anymore on error
9345 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
9346 - MINOR: connection: and new flag to mark end of input (EOI)
9347 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
9348 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
9349 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
9350 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
9351 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
9352 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
9353 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
9354 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
9355 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
9356 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
9357 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
9358 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
9359 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
9360 - CONTRIB: debug: report the CS and CF's EOI flags
9361 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
9362
Willy Tarreau6c1b6672019-02-26 16:43:49 +010093632019/02/26 : 2.0-dev1
9364 - MINOR: mux-h2: only increase the connection window with the first update
9365 - REGTESTS: remove the expected window updates from H2 handshakes
9366 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
9367 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
9368 - MEDIUM: mux-h2: remove padlen during headers phase
9369 - MINOR: h2: add a bit-based frame type representation
9370 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
9371 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
9372 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
9373 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
9374 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
9375 - MINOR: buffers: add a new b_move() function
9376 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
9377 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
9378 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
9379 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
9380 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
9381 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
9382 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
9383 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
9384 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
9385 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
9386 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
9387 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
9388 - MEDIUM: servers: Be smarter when switching connections.
9389 - MEDIUM: sessions: Keep track of which connections are idle.
9390 - MINOR: payload: add sample fetch for TLS ALPN
9391 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
9392 - MINOR: channel: Add the function channel_add_input
9393 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
9394 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
9395 - BUG/MAJOR: htx: Return the good block address after a defrag
9396 - MINOR: lb: allow redispatch when using consistent hash
9397 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
9398 - BUG/MEDIUM: mux-h2: always restart reading if data are available
9399 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
9400 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
9401 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
9402 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
9403 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
9404 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
9405 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
9406 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
9407 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
9408 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
9409 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
9410 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
9411 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
9412 - MINOR: mux-h2: remove a misleading and impossible test
9413 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
9414 - MINOR: mux-h2: check for too many streams only for idle streams
9415 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
9416 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
9417 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
9418 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
9419 - MINOR: htx: add a new function to add a block without filling it
9420 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
9421 - MEDIUM: mux-h2: pass trailers to HTX
9422 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
9423 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
9424 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
9425 - MINOR: h1: make the H1 headers block parser able to parse headers only
9426 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
9427 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
9428 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
9429 - MINOR: mux-h1: Add the subscription events in "show fd" command
9430 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
9431 - BUG/MINOR: cache/htx: Be sure to count partial trailers
9432 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
9433 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
9434 - MINOR: connections: Remove a stall comment.
9435 - BUG/MEDIUM: cli: make "show sess" really thread-safe
9436 - BUILD: add a new file "version.c" to carry version updates
9437 - MINOR: stream/htx: add the HTX flags output in "show sess all"
9438 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
9439 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
9440 - BUG/MINOR: lua: bad args are returned for Lua actions
9441 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
9442 - MINOR: htx: Add an helper function to get the max space usable for a block
9443 - MINOR: channel/htx: Add HTX version for some helper functions
9444 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
9445 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
9446 - DOC: regtest: make it clearer what the purpose of the "broken" series is
9447 - REGTEST: mailers: add new test for 'mailers' section
9448 - REGTEST: Add a reg test for health-checks over SSL/TLS.
9449 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
9450 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
9451 - BUG/MINOR: compression: Disable it if another one is already in progress
9452 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
9453 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
9454 - REGTEST: Add some informatoin to test results.
9455 - MINOR: htx: Add a function to truncate all blocks after a specific offset
9456 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
9457 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
9458 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
9459 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
9460 - DOC: http-request cache-use / http-response cache-store expects cache name
9461 - REGTEST: "capture (request|response)" regtest.
9462 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
9463 - REGTEST: filters: add compression test
9464 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
9465 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
9466 - DOC: Be a bit more explicit about allow-0rtt security implications.
9467 - MINOR: mux-h1: make the mux_h1_ops struct static
9468 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
9469 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
9470 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
9471 - REGTESTS: test case for map_regm commit 271022150d
9472 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
9473 - REGTESTS: Basic tests for using maps to redirect requests / select backend
9474 - DOC: REGTESTS README varnishtest -Dno-htx= define.
9475 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
9476 - MINOR: checks: Store the proxy in checks.
9477 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
9478 - REGTEST: Switch to vtest.
9479 - REGTEST: Adapt reg test doc files to vtest.
9480 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
9481 - BUG/MINOR: base64: dec func ignores padding for output size checking
9482 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
9483 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
9484 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
9485 - BUG/MINOR: backend: balance uri specific options were lost across defaults
9486 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
9487 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
9488 - MINOR: backend: make headers and RDP cookie also use arg_str/len
9489 - MINOR: backend: add new fields in lbprm to store more LB options
9490 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
9491 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
9492 - MINOR: backend: move hash_balance_factor out of chash
9493 - MEDIUM: backend: move all LB algo parameters into an union
9494 - MINOR: backend: make the random algorithm support a number of draws
9495 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
9496 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
9497 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
9498 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
9499 - DOC: add a missing space in the documentation for bc_http_major
9500 - REGTEST: checks basic stats webpage functionality
9501 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
9502 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
9503 - DOC: add github issue templates
9504 - MINOR: cfgparse: Extract some code to be re-used.
9505 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
9506 - CLEANUP: cfgparse: Code reindentation.
9507 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
9508 - MINOR: cfgparse: Rework peers frontend init.
9509 - MINOR: cfgparse: Simplication.
9510 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
9511 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
9512 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
9513 - DOC: peers: SSL/TLS documentation for "peers"
9514 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
9515 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
9516 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
9517 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
9518 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
9519 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
9520 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
9521 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
9522 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
9523 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
9524 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
9525 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
9526 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
9527 - MINOR: h2: declare new sets of frame types
9528 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
9529 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
9530 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
9531 - BUG/MINOR: hpack: return a compression error on invalid table size updates
9532 - MINOR: server: make sure pool-max-conn is >= -1
9533 - BUG/MINOR: stream: take care of synchronous errors when trying to send
9534 - CLEANUP: server: fix indentation mess on idle connections
9535 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
9536 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
9537 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
9538 - MINOR: server: add a max-reuse parameter
9539 - MINOR: mux-h2: always consider a server's max-reuse parameter
9540 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
9541 - MINOR: stream: don't wait before retrying after a failed connection reuse
9542 - MEDIUM: h2: always parse and deduplicate the content-length header
9543 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
9544 - CLEANUP: h2: Remove debug printf in mux_h2.c
9545 - MINOR: cfgparse: make the process/thread parser support a maximum value
9546 - MINOR: threads: make MAX_THREADS configurable at build time
9547 - DOC: nbthread is no longer experimental.
9548 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
9549 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
9550 - BUG/MINOR: spoe: corrected fragmentation string size
9551 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
9552 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
9553 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
9554 - SCRIPTS: add the issue tracker URL to the announce script
9555 - MINOR: peers: Extract some code to be reused.
9556 - CLEANUP: peers: Indentation fixes.
9557 - MINOR: peers: send code factorization.
9558 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
9559 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
9560 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
9561 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
9562 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
9563 - CLEANUP: peers: Be more generic.
9564 - MINOR: peers: move error handling to reduce the size of the I/O handler.
9565 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
9566 - MINOR: peers: move send code to reduce the size of the I/O handler.
9567 - CLEANUP: peers: Remove useless statements.
9568 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
9569 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
9570 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
9571 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
9572 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
9573 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
9574 - CLEANUP: mux-h2: remove two useless but misleading assignments
9575 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
9576 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
9577 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
9578 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
9579 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
9580 - BUG/MEDIUM: peers: Handle mux creation failure.
9581 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
9582 - BUG/MEDIUM: compression: Rewrite strong ETags
9583 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
9584 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
9585 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
9586 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
9587 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
9588 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
9589 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
9590 - MINOR: h2: add a generic frame checker
9591 - MEDIUM: mux-h2: check the frame validity before considering the stream state
9592 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
9593 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
9594 - DOC: compression: Update the reasons for disabled compression
9595 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
9596 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
9597 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
9598 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
9599 - BUG/MEDIUM: peers: Peer addresses parsing broken.
9600 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
9601 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
9602 - BUG/MINOR: stream: don't close the front connection when facing a backend error
9603 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
9604 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
9605 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
9606 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
9607 - BUG/MINOR: server: fix logic flaw in idle connection list management
9608 - MINOR: mux-h2: max-concurrent-streams should be unsigned
9609 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
9610 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
9611 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
9612 - MINOR: xref: Add missing barriers.
9613 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
9614 - MINOR: debug: Add an option that causes random allocation failures.
9615 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
9616 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
9617 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
9618 - BUG/MINOR: backend: check srv_conn before dereferencing it
9619 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
9620 - BUG/MEDIUM: mux-h2: always set :authority on request output
9621 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
9622 - BUG/MINOR: threads: fix the process range of thread masks
9623 - BUG/MINOR: config: fix bind line thread mask validation
9624 - CLEANUP: threads: fix misleading comment about all_threads_mask
9625 - CLEANUP: threads: use nbits to calculate the thread mask
9626 - OPTIM: listener: optimize cache-line packing for struct listener
9627 - MINOR: tools: improve the popcount() operation
9628 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
9629 - MINOR: global: add proc_mask() and thread_mask()
9630 - MINOR: config: simplify bind_proc processing using proc_mask()
9631 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
9632 - BUG/MINOR: compression: properly report compression stats in HTX mode
9633 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
9634 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
9635 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
9636 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
9637 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
9638 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
9639 - DOC: ssl: Stop documenting ciphers example to use
9640 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
9641 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
9642 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
9643 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
9644 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
9645 - MINOR: config: make MAX_PROCS configurable at build time
9646 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
9647 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
9648 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
9649 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
9650 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
9651 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
9652 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
9653 - BUG/MAJOR: stream: avoid double free on unique_id
9654 - BUILD/MINOR: stream: avoid a build warning with threads disabled
9655 - BUILD/MINOR: tools: fix build warning in the date conversion functions
9656 - BUILD/MINOR: peers: remove an impossible null test in intencode()
9657 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
9658 - BUG/MEDIUM: peers: Missing peer initializations.
9659 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
9660 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
9661 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
9662 - BUILD/MEDIUM: initcall: Fix build on MacOS.
9663 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
9664 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
9665 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
9666 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
9667 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
9668 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
9669 - MINOR: mux-h2: Set HTX extra value when possible
9670 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
9671 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
9672 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
9673 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
9674 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
9675 - MINOR: fd: add a new my_closefrom() function to close all FDs
9676 - MINOR: checks: use my_closefrom() to close all FDs
9677 - MINOR: fd: implement an optimised my_closefrom() function
9678 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
9679 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
9680 - BUG/MAJOR: listener: Make sure the listener exist before using it.
9681 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
9682 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
9683 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
9684 - MINOR: htx: Add function to drain data from an HTX message
9685 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
9686 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
9687 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
9688 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
9689 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
9690 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
9691 - BUG/MEDIUM: h2: advertise to servers that we don't support push
9692 - MINOR: standard: Add a function to parse uints (dotted notation).
9693 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
9694 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
9695 - MINOR: sample: Add two sample converters for protocol buffers.
9696 - DOC: sample: Add gRPC related documentation.
9697
Willy Tarreaufba74ea2018-12-22 11:19:45 +010096982018/12/22 : 2.0-dev0
9699 - BUG/MAJOR: connections: Close the connection before freeing it.
9700 - REGTEST: Require the option LUA to run lua tests
9701 - REGTEST: script: Process script arguments before everything else
9702 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
9703 - REGTEST: script: Add the option --clean to remove previous log direcotries
9704 - REGTEST: script: Add the option --debug to show logs on standard ouput
9705 - REGTEST: script: Add the option --keep-logs to keep all log directories
9706 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
9707 - REGTEST: script: Print only errors in the results report
9708 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
9709 - REGTEST: Make reg-tests target support argument.
9710 - REGTEST: Fix a typo about barrier type.
9711 - REGTEST: Be less Linux specific with a syslog regex.
9712 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
9713 - REGTEST: Exclude freebsd target for some reg tests.
9714 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
9715 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
9716 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
9717 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
9718 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
9719 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
9720 - MEDIUM: mux_h1: Implement h1_show_fd.
9721 - REGTEST: script: Add support of alternatives in requited options list
9722 - REGTEST: Add a basic test for the compression
9723 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
9724 - REGTEST: A basic test for "http-buffer-request"
9725 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
9726 - MINOR: ssl: Add ssl_sock_set_alpn().
9727 - MEDIUM: checks: Add check-alpn.
9728 - wip
9729
Willy Tarreau82230502018-12-19 19:13:17 +010097302018/12/19 : 1.9.0
9731 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
9732 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
9733 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
9734 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
9735 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
9736 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
9737 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
9738 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
9739 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
9740 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
9741 - MINOR: cli/stream: add the conn_stream in "show sess" output
9742 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
9743 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
9744 - MINOR: objtype: report a few missing types in names and base pointers
9745 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
9746 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
9747 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
9748 - BUG/MINOR: mux-h1: report the correct frontend in error captures
9749 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
9750 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
9751 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
9752 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
9753 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
9754 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
9755 - MINOR: compression: Remove the thread_local variable buf_output
9756 - CLEANUP: connection: rename subscription events values and event field
9757 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
9758 - MINOR: connection: remove an unwelcome dependency on struct stream
9759 - CLEANUP: stream-int: consistently call the si/stream_int functions
9760 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
9761 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
9762 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
9763 - MEDIUM: stream-int: always consider all CS errors on the send side
9764 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
9765 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
9766 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
9767 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
9768 - MINOR: connection: add cs_set_error() to set the error bits
9769 - CLEANUP: mux-h2: make use of cs_set_error()
9770 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
9771 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
9772 - MINOR: cli/show_fd: report that a connection is back or not
9773 - SCRIPTS: add the slack channel URL to the announce script
9774 - CLEANUP: remove my name and address from the copyright banner
9775 - DOC: mention in the readme that 1.9 is a stable version now
9776
Willy Tarreau2a7d6502018-12-16 22:35:06 +010097772018/12/16 : 1.9-dev11
9778 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
9779 - REGTEST/MINOR: remove double body specification for server txresp
9780 - BUG/MEDIUM: connections: Remove error flags when retrying.
9781 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
9782 - REGTEST/MINOR: remove health-check that can make the test fail
9783 - DOC: clarify that check-sni needs an argument.
9784 - DOC: refer to check-sni in the documentation of sni
9785 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
9786 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
9787 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
9788 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
9789 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
9790 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
9791 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
9792 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
9793 - MINOR: hpack: simplify the len to bytes conversion
9794 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
9795 - MINOR: hpack: optimize header encoding for short names
9796 - CONTRIB: hpack: add a compressed stream generator for the encoder
9797 - MEDIUM: hpack: make it possible to encode any static header name
9798 - MINOR: hpack: move the length computation and encoding functions to .h
9799 - MINOR: hpack: provide a function to encode a short indexed header
9800 - MINOR: hpack: provide a function to encode a long indexed header
9801 - MINOR: hpack: provide new functions to encode the ":status" header
9802 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
9803 - MINOR: hpack: provide a function to encode an HTTP method
9804 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
9805 - MINOR: hpack: provide a function to encode an HTTP scheme
9806 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
9807 - MINOR: hpack: provide a function to encode an HTTP path
9808 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
9809 - REGTEST: add the HTTP rules test involving HTX processing
9810 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
9811 - MEDIUM: cli: rework the CLI proxy parser
9812 - MINOR: cli: parse prompt command in the CLI proxy
9813 - MINOR: cli: implements 'quit' in the CLI proxy
9814 - BUG/MINOR: cli: wait for payload data even without prompt
9815 - MEDIUM: cli: handle payload in CLI proxy
9816 - MINOR: cli: use pcli_flags for prompt activation
9817 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
9818 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
9819 - MINOR: cache: Register the cache as a data filter only if response is cacheable
9820 - MEDIUM: cache/htx: Add the HTX support into the cache
9821 - MINOR: cache: Improve and simplify the cache configuration check
9822 - MINOR: filters: Export the name of known filters
9823 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
9824 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
9825 - REORG: htx: merge types+proto into common/htx.h
9826 - REORG: http: create http_msg.c to place there some legacy HTTP parts
9827 - REORG: h1: move legacy http functions to http_msg.c
9828 - REORG: h1: move the h1_state definition to proto_http
9829 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
9830 - REORG: h1: merge types+proto into common/h1.h
9831 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
9832 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
9833 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
9834 - BUG/MINOR: mux-h2: refrain from muxing during the preface
9835 - BUG/MINOR: mux-h2: advertise a larger connection window size
9836 - DOC: master CLI documentation in management.txt
9837 - MINOR: mux-h2: avoid copying large blocks into full buffers
9838 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
9839 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
9840 - MINOR: cli: change 'show proc' output of old processes
9841 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
9842 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
9843 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
9844 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
9845 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
9846 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
9847 - REGTEST: the cache regtest requires haproxy 1.9
9848 - MEDIUM: cli: store CLI level in the appctx
9849 - MEDIUM: cli: show and change CLI permissions
9850 - CLEANUP: cli: use dedicated define instead of appctx ones
9851 - MEDIUM: cli: handle CLI level from the master CLI
9852 - BUG/MEDIUM: cli: handle correctly prefix and payload
9853 - BUILD: Makefile: Implements the help target
9854 - REGTESTS: adjust the http-rules regtest to support window updates
9855 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
9856 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
9857 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
9858 - MEDIUM: mux: Add an optional "reset" method.
9859 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
9860 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
9861 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
9862 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
9863 - MEDIUM: htx: Try to take a connection over if it has no owner.
9864 - REGTEST: Reg testing improvements.
9865 - REGTEST: Add a first test for health-checks.
9866 - REGTEST: Reg test for "check" health-check option.
9867 - REGTEST: level 1 health-check test 2.
9868 - REGTEST: Add miscellaneous reg tests for health-checks.
9869 - REGTEST: add a few HTTP messaging tests
9870 - MINOR: lb: make the leastconn algorithm more accurate
9871 - REGTEST: fix missing space in checks/s00001
9872 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
9873 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
9874 - MINOR: connection: realign empty buffers in muxes, not transport layers
9875 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
9876 - MINOR: backend: count the number of connect and reuse per server and per backend
9877 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
9878 - MINOR: tools: increase the number of ITOA strings to 16
9879 - MINOR: cache: report the number of cache lookups and cache hits
9880 - MEDIUM: tasks: check the global task mask instead of the thread number
9881 - MINOR: mworker: set all_threads_mask and pid_bit to 1
9882 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
9883 - BUG/MINOR: stats: Parse post data for HTX streams
9884 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
9885 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
9886 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
9887 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
9888 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
9889 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
9890 - MINOR: lua: Remove useless check on the messages state in HTTP functions
9891 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
9892 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
9893 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
9894 - MINOR: cli: implements 'reload' on master CLI
9895 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
9896 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
9897 - BUG/MAJOR: backend: only update server's counters when the server exists
9898 - MINOR: tools: preset the port of fd-based "sockets" to zero
9899 - BUG/MINOR: log: fix logging to both FD and IP
9900 - REGTEST: Add a reg test for HTTP cookies.
9901 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
9902 - BUILD: thread: properly report multi-thread support
9903 - BUG/MINOR: logs: leave startup-logs global and not per-thread
9904 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
9905 - BUG/MAJOR: compression/cache: Make it really works with these both filters
9906 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
9907 - MEDIUM: proxy: Set http-reuse safe as default.
9908 - MEDIUM: servers: Add a command to limit the number of idling connections.
9909 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
9910 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
9911 - MEDIUM: mux: provide the session to the init() and attach() method.
9912 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
9913 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
9914 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
9915 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
9916 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
9917 - MINOR: pools: Cast to volatile int * instead of int *.
9918 - MINOR: debug: make the ABORT_NOW macro use a volatile int
9919 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
9920 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
9921 - DOC: clarify the agent-check status line syntax
9922 - BUG/MAJOR: hpack: fix length check for short names encoding
9923 - DOC: split the README into README + INSTALL
9924
Willy Tarreau72e92272018-12-08 16:20:55 +010099252018/12/08 : 1.9-dev10
9926 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
9927 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
9928 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
9929 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
9930 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
9931 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
9932 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
9933 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
9934 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
9935 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
9936 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
9937 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
9938 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
9939 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
9940 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
9941 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
9942 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
9943 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
9944 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
9945 - BUG/MEDIUM: h1: Correctly report used data with no len.
9946 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
9947 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
9948 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
9949 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
9950 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
9951 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
9952 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
9953 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
9954 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
9955 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
9956 - MEDIUM: channel/htx: Add functions for forward HTX data
9957 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
9958 - CLEANUP: htx: Fix indentation here and there in HTX files
9959 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
9960 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
9961 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
9962 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
9963 - BUG/MEDIUM: mworker: stop every tasks in the master
9964 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
9965 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
9966 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
9967 - MINOR: stream-int: add a new blocking condition on the remote connection
9968 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
9969 - BUG/MEDIUM: lua: block on remote connection establishment
9970 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
9971 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
9972 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
9973 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
9974 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
9975 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
9976 - REGTEST: Move LUA reg test 4 to level 1.
9977 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
9978 - MEDIUM: ist: always turn header names to lower case
9979 - MINOR: h2: don't turn HTX header names to lower case anymore
9980 - MEDIUM: ist: use local conversion arrays to case conversion
9981 - MINOR: htx: switch to case sensitive search of lower case header names
9982 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
9983 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
9984 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
9985 - REGTEST: add a basic test for HTTP rules manipulating headers
9986 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
9987 - MINOR: sample: add bc_http_major
9988 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
9989 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
9990 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
9991 - MINOR: compiler: add a new macro ALREADY_CHECKED()
9992 - BUILD: h2: mark the start line already checked to avoid warnings
9993 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
9994
Willy Tarreauda7e3be2018-12-02 19:31:37 +010099952018/12/02 : 1.9-dev9
9996 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
9997 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
9998 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
9999 - MINOR: compression: always create the compression pool
10000 - BUG/MEDIUM: mworker: fix FD leak upon reload
10001 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
10002 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
10003 - MINOR: initcall: introduce a way to register init functions to call at boot
10004 - MINOR: init: process all initcalls in order at boot time
10005 - MEDIUM: init: convert all trivial registration calls to initcalls
10006 - MINOR: thread: provide a set of lock initialisers
10007 - MINOR: threads: add new macros to declare self-initializing locks
10008 - MEDIUM: init: use self-initializing spinlocks and rwlocks
10009 - MINOR: initcall: apply initcall to all register_build_opts() calls
10010 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
10011 - MINOR: initcall: use initcalls for section parsers
10012 - MINOR: memory: add a callback function to create a pool
10013 - MEDIUM: init: use initcall for all fixed size pool creations
10014 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
10015 - MEDIUM: initcall: use initcalls for a few initialization functions
10016 - MEDIUM: memory: make the pool cache an array and not a thread_local
10017 - MINOR: ssl: free ctx when libssl doesn't support NPN
10018 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
10019 - MINOR: h2: make struct h2_ops static
10020 - BUG/MEDIUM: mworker: avoid leak of client socket
10021 - REORG: mworker: declare master variable in global.h
10022 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
10023 - CLEANUP: http: Fix typo in init_http's comment
10024 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
10025 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
10026 - REGTEST/MINOR: script: add run-regtests.sh script
10027 - REGTEST: Add a basic test for the cache.
10028 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
10029 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
10030 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
10031 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
10032 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
10033 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
10034 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
10035 - REGTEST: Fix several issues.
10036 - REGTEST: lua: check socket functionality from a lua-task
10037 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
10038 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
10039 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
10040 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
10041 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
10042 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
10043 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
10044 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
10045 - MAJOR: sessions: Store multiple outgoing connections in the session.
10046 - MEDIUM: session: Steal owner-less connections on end of transaction.
10047 - MEDIUM: server: Be smarter about deciding to reuse the last server.
10048 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
10049 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
10050 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
10051 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
10052 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
10053 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
10054 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
10055 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
10056 - BUG/MINOR: connection: report mux modes when HTX is supported
10057 - MINOR: htx: add a function to cut the beginning of a DATA block
10058 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
10059 - MINOR: mux-h1: Implement get_cs_info() callback
10060 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
10061 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
10062 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
10063 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
10064 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
10065 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
10066 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
10067 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
10068 - MINOR: htx: Add function to add an HTX block just before another one
10069 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
10070 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
10071 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
10072 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
10073 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
10074 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
10075 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
10076 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
10077 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
10078 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
10079 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
10080 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
10081 - MINOR: proto_htx: Send valid HTX message to send 30x responses
10082 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
10083 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
10084 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
10085 - MINOR: mux-h1: Capture bad H1 messages
10086 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
10087 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
10088 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
10089 - MEDIUM: compression: Adapt to be compatible with the HTX representation
10090 - MINOR: h2: implement H2->HTX request header frame transcoding
10091 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
10092 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
10093 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
10094 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
10095 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
10096 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
10097 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
10098 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
10099 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
10100 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
10101 - MINOR: listener: the mux_proto entry in the bind_conf is const
10102 - MINOR: connection: create conn_get_best_mux_entry()
10103 - MINOR: server: the mux_proto entry in the server is const
10104 - MINOR: config: make sure to associate the proper mux to bind and servers
10105 - MINOR: hpack: add ":path" to the list of common header fields
10106 - MINOR: h2: add new functions to produce an HTX message from an H2 response
10107 - MINOR: mux-h2: mention that the mux is compatible with both sides
10108 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
10109 - MEDIUM: mux-h2: start to create the outgoing mux
10110 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
10111 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
10112 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
10113 - MEDIUM: mux-h2: Implement h2_attach().
10114 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
10115 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
10116 - MINOR: connection: Fix a comment.
10117 - MINOR: mux: add a "max_streams" method.
10118 - MEDIUM: servers: Add a way to keep idle connections alive.
10119 - CLEANUP: fix typos in the htx subsystem
10120 - CLEANUP: Fix typo in the chunk headers file
10121 - CLEANUP: Fix typos in the h1 subsystem
10122 - CLEANUP: Fix typos in the h2 subsystem
10123 - CLEANUP: Fix a typo in the mini-clist header
10124 - CLEANUP: Fix a typo in the proto_htx subsystem
10125 - CLEANUP: Fix typos in the proto_tcp subsystem
10126 - CLEANUP: Fix a typo in the signal subsystem
10127 - CLEANUP: Fix a typo in the session subsystem
10128 - CLEANUP: Fix a typo in the queue subsystem
10129 - CLEANUP: Fix typos in the shctx subsystem
10130 - CLEANUP: Fix typos in the socket pair protocol subsystem
10131 - CLEANUP: Fix typos in the map management functions
10132 - CLEANUP: Fix typo in the fwrr subsystem
10133 - CLEANUP: Fix typos in the cli subsystem
10134 - CLEANUP: Fix typo in the 51d subsystem
10135 - CLEANUP: Fix a typo in the base64 subsystem
10136 - CLEANUP: Fix a typo in the connection subsystem
10137 - CLEANUP: Fix a typo in the protocol header file
10138 - CLEANUP: Fix a typo in the checks header file
10139 - CLEANUP: Fix typos in the file descriptor subsystem
10140 - CLEANUP: Fix a typo in the listener subsystem
10141 - BUG/MINOR: lb-map: fix unprotected update to server's score
10142 - BUILD: threads: fix minor build warnings when threads are disabled
10143
Willy Tarreau0b936ad2018-11-25 09:16:46 +0100101442018/11/25 : 1.9-dev8
10145 - REORG: config: extract the global section parser into cfgparse-global
10146 - REORG: config: extract the proxy parser into cfgparse-listen.c
10147 - BUILD: update the list of supported targets and compilers in makefile and readme
10148 - BUILD: reorder the objects in the makefile
10149 - BUILD: Makefile: make "V=1" show some of the commands that are executed
10150 - BUILD: Makefile: add the quiet mode to a few more targets
10151 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
10152 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
10153 - MINOR: cli: format `show proc` to be more readable
10154 - MINOR: cli: displays uptime in `show proc`
10155 - MINOR: cli: show master information in 'show proc'
10156 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
10157 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
10158 - BUG/MINOR: mux-h1: Enable keep-alive on server side
10159 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
10160 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
10161 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
10162 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
10163 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
10164 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
10165 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
10166 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
10167 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
10168 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
10169 - MEDIUM: mworker: wait mode use standard init code path
10170 - MINOR: log: introduce ha_notice()
10171 - MINOR: mworker: use ha_notice to announce a new worker
10172 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
10173 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
10174 - MEDIUM: signal: signal_unregister() removes every handlers
10175 - BUG/MEDIUM: mworker: unregister the signals of main()
10176 - MINOR: cli: add a few missing includes in proto/cli.h
10177 - REORG: time/activity: move activity measurements to activity.{c,h}
10178 - MINOR: activity: report the average loop time in "show activity"
10179 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
10180 - MEDIUM: tasks: collect per-task CPU time and latency
10181 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
10182 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
10183 - BUG/MINOR: cli: Fix memory leak
10184 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
10185 - MINOR: poller: move the call of tv_update_date() back to the pollers
10186 - MINOR: polling: add an option to support busy polling
10187 - MINOR: server: Add "alpn" and "npn" keywords.
10188 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
10189 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
10190 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
10191 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
10192 - REGTEST: add the option to test only a specific set of files
10193 - REGTEST: add a test for connections to a "dispatch" address
10194 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
10195 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
10196 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
10197 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
10198 - MEDIUM: servers: Store the connection in the SI until we have a mux.
10199 - BUG/MEDIUM: h2: wake the processing task up after demuxing
10200 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
10201
Willy Tarreau5c0e41b2018-11-18 22:33:00 +0100102022018/11/18 : 1.9-dev7
10203 - BUILD: cache: fix a build warning regarding too large an integer for the age
10204 - CLEANUP: fix typos in the comments of the Makefile
10205 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
10206 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
10207 - CLEANUP: fix typos in comments for contrib/spoa_example
10208 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
10209 - DOC: Fix typos in README and CONTRIBUTING
10210 - MINOR: log: slightly improve error message syntax on log failure
10211 - DOC: logs: the format directive was missing from the second log part
10212 - MINOR: log: report the number of dropped logs in the stats
10213 - MEDIUM: log: add support for logging to existing file descriptors
10214 - MEDIUM: log: support a new "short" format
10215 - MEDIUM: log: add a new "raw" format
10216 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
10217 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
10218 - MINOR: namespaces: don't build namespace.c if disabled
10219 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
10220 - MINOR: http: Add new "early-hint" http-request action.
10221 - MINOR: http: Make new "early-hint" http-request action really be parsed.
10222 - MINOR: http: Implement "early-hint" http request rules.
10223 - MINOR: doc: Add information about "early-hint" http-request action.
10224 - DOC: early-hints: fix truncated line.
10225 - MINOR: mworker: only close std{in,out,err} in daemon mode
10226 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
10227 - BUG/MEDIUM: Make sure stksess is properly aligned.
10228 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
10229 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
10230 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
10231 - CONTRIB: debug: fix build related to conn_stream flags change
10232 - REGTEST: fix scripts 1 and 3 to accept development version
10233 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
10234 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
10235 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
10236 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
10237 - MEDIUM: jobs: support unstoppable jobs for soft stop
10238 - MEDIUM: listeners: support unstoppable listener
10239 - MEDIUM: cli: worker socketpair is unstoppable
10240 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
10241 - MINOR: stream: move the conn_stream specific calls to the stream-int
10242 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
10243 - CLEANUP: h2: minimum documentation for recent API changes
10244 - MINOR: mux: implement a get_first_cs() method
10245 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
10246 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
10247 - MINOR: stream-int: expand the flags to 32-bit
10248 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
10249 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
10250 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
10251 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
10252 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
10253 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
10254 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
10255 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
10256 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
10257 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
10258 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
10259 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
10260 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
10261 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
10262 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
10263 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
10264 - MEDIUM: connections: Wait until the connection is established to try to recv.
10265 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
10266 - MINOR: mux: Add a new "avail_streams" method.
10267 - MINOR: mux: Add a destroy() method.
10268 - MINOR: sessions: Start to store the outgoing connection in sessions.
10269 - MAJOR: connections: Detach connections from streams.
10270 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
10271 - MINOR: htx: Add proto_htx.c file
10272 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
10273 - MINOR: http: Add standalone functions to parse a start-line or a header
10274 - MINOR: http: Call http_send_name_header with the stream instead of the txn
10275 - MINOR: conn_stream: Add a flag to notify the SI some data were received
10276 - MINOR: http: Add macros to check if a stream uses the HTX representation
10277 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
10278 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
10279 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
10280 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
10281 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
10282 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
10283 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
10284 - MINOR: proto_htx: Add some functions to handle HTX messages
10285 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
10286 - MINOR: http_htx: Add functions to replace part of the start-line
10287 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
10288 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
10289 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
10290 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
10291 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
10292 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
10293 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
10294 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
10295 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
10296 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
10297 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
10298 - MINOR: proto_htx: Add functions htx_send_name_header
10299 - MINOR: proto_htx: Add functions htx_perform_server_redirect
10300 - MINOR: proto_htx: Add functions to handle the stats applet
10301 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
10302 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
10303 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
10304 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
10305 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
10306 - MINOR: http_fetch: Add smp_prefetch_htx
10307 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
10308 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
10309 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
10310 - MINOR: stream: Don't reset sov value with HTX messages
10311 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
10312 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
10313 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
10314 - CLEANUP: Fix some typos in the haproxy subsystem
10315 - CLEANUP: Fix typos in the dns subsystem
10316 - CLEANUP: Fix typos in the pattern subsystem
10317 - CLEANUP: fix 2 typos in the xxhash subsystem
10318 - CLEANUP: fix a few typos in the comments of the server subsystem
10319 - CLEANUP: fix a misspell in tests/filltab25.c
10320 - CLEANUP: fix a typo found in the stream subsystem
10321 - CLEANUP: fix typos in comments in ebtree
10322 - CLEANUP: fix typos in reg-tests
10323 - CLEANUP: fix typos in the comments of the vars subsystem
10324 - CLEANUP: fix typos in the hlua_fcn subsystem
10325 - CLEANUP: fix typos in the proto_http subsystem
10326 - CLEANUP: fix typos in the proxy subsystem
10327 - CLEANUP: fix typos in the ssl_sock subsystem
10328 - DOC: Fix typos in different subsections of the documentation
10329 - DOC: fix a few typos in the documentation
10330 - MINOR: Fix an error message thrown when we run out of memory
10331 - MINOR: Fix typos in error messages in the proxy subsystem
10332 - MINOR: fix typos in the examples files
10333 - CLEANUP: Fix a typo in the stats subsystem
10334 - CLEANUP: Fix typos in the acl subsystem
10335 - CLEANUP: Fix typos in the cache subsystem
10336 - CLEANUP: Fix typos in the cfgparse subsystem
10337 - CLEANUP: Fix typos in the filters subsystem
10338 - CLEANUP: Fix typos in the http subsystem
10339 - CLEANUP: Fix typos in the log subsystem
10340 - CLEANUP: Fix typos in the peers subsystem
10341 - CLEANUP: Fix typos in the regex subsystem
10342 - CLEANUP: Fix typos in the sample subsystem
10343 - CLEANUP: Fix typos in the spoe subsystem
10344 - CLEANUP: Fix typos in the standard subsystem
10345 - CLEANUP: Fix typos in the stick_table subsystem
10346 - CLEANUP: Fix typos in the task subsystem
10347 - MINOR: Fix typo in error message in the standard subsystem
10348 - CLEANUP: fix typos in the comments of hlua
10349 - MINOR: Fix typo in the error 500 output of hlua
10350 - MINOR: Fix a typo in a warning message in the spoe subsystem
10351
Willy Tarreau96079492018-11-11 10:43:39 +0100103522018/11/11 : 1.9-dev6
10353 - BUG/MEDIUM: tools: fix direction of my_ffsl()
10354 - BUG/MINOR: cli: forward the whole command on master CLI
10355 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
10356 - MINOR: compat: automatically detect support for crypt_r()
10357 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
10358 - DOC: split the http-request actions in their own section
10359 - DOC: split the http-response actions in their own section
10360 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
10361 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
10362 - MINOR: stats: report the number of active jobs and listeners in "show info"
10363 - MINOR: stats: report the number of active peers in "show info"
10364 - MINOR: stats: report the number of currently connected peers
10365 - MINOR: cli: show the number of reload in 'show proc'
10366 - MINOR: cli: can't connect to the target CLI
10367 - MEDIUM: mworker: does not create the CLI proxy when no listener
10368 - MINOR: mworker: displays more information when leaving
10369 - MEDIUM: mworker: exit with the incriminated exit code
10370 - MINOR: mworker: displays a message when a worker is forked
10371 - MEDIUM: mworker: leave when the master die
10372 - CLEANUP: stream-int: retro-document si_cs_io_cb()
10373 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
10374 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
10375 - BUG/MEDIUM: cli: crash when trying to access a worker
10376 - DOC: restore note about "independant" typo
10377 - MEDIUM: stream: implement stream_buf_available()
10378 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
10379 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
10380 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
10381 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
10382 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
10383 - MINOR: stream-int: make it clear that si_ops cannot be null
10384 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
10385 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
10386 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
10387 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
10388 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
10389 - MINOR: stream-int: replace si_update() with si_update_both()
10390 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
10391 - CLEANUP: stream-int: remove the now unused si->update() function
10392 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
10393 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
10394 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
10395
Willy Tarreaubddf2922018-10-28 20:39:31 +0100103962018/10/28 : 1.9-dev5
10397 - BUILD: Makefile: add the new ERR variable to force -Werror
10398 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
10399 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
10400 - CLEANUP: http: Remove the unused function http_find_header
10401 - MINOR: h1: Export some functions parsing the value of some HTTP headers
10402 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
10403 - MINOR: proxy: add a new option "http-use-htx"
10404 - BUG/MEDIUM: pools: fix the minimum allocation size
10405 - MINOR: shctx: Shared objects block by block allocation.
10406 - MINOR: cache: Larger HTTP objects caching.
10407 - MINOR: shctx: Add a maximum object size parameter.
10408 - MINOR: cache: Add "max-object-size" option.
10409 - DOC: Update about the cache support for big objects.
10410 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
10411 - BUG/MINOR: cache: Wrong usage of shctx_init().
10412 - BUG/MINOR: ssl: Wrong usage of shctx_init().
10413 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
10414 - MINOR: shctx: Change max. object size type to unsigned int.
10415 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
10416 - CLEANUP: tools: fix misleading comment above function LIM2A
10417 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
10418 - BUG/MINOR: only mark connections private if NTLM is detected
10419 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
10420 - MINOR: stream: don't prune variables if the list is empty
10421 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
10422 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
10423 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
10424 - MEDIUM: stream: don't try to send first in process_stream()
10425 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
10426 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
10427 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
10428 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
10429 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
10430 - MINOR: mworker: number of reload in the life of a worker
10431 - MEDIUM: mworker: each worker socketpair is a CLI listener
10432 - REORG: mworker: move struct mworker_proc to global.h
10433 - MINOR: server: export new_server() function
10434 - MEDIUM: mworker: move proc_list gen before proxies startup
10435 - MEDIUM: mworker: add proc_list in global.h
10436 - MEDIUM: mworker: proxy for the master CLI
10437 - MEDIUM: mworker: create CLI listeners from argv[]
10438 - MEDIUM: cli: disable some keywords in the master
10439 - MEDIUM: mworker: find the server ptr using a CLI prefix
10440 - MEDIUM: cli: 'show proc' displays processus
10441 - MEDIUM: cli: implement 'mode cli' proxy analyzers
10442 - MINOR: cli: displays sockpair@ in "show cli sockets"
10443 - MEDIUM: cli: enable "show cli sockets" for the master
10444 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
10445 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
10446 - MEDIUM: mworker: stop the master proxy in the workers
10447 - MEDIUM: channel: reorder the channel analyzers for the cli
10448 - MEDIUM: cli: write a prompt for the CLI proxy of the master
10449 - MINOR: cli: helper to write an response message and close
10450 - MINOR: cache: Add "Age" header.
10451 - REGTEST: make the IP+port logging test more reliable
10452 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
10453 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
10454 - BUG/MINOR: backend: assign the wait list after the error check
10455
Willy Tarreau01fbe742018-10-21 20:28:30 +0200104562018/10/21 : 1.9-dev4
10457 - BUILD: Allow configuration of pcre-config path
10458 - DOC: clarify force-private-cache is an option
10459 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
10460 - REORG: http: move the code to different files
10461 - REORG: http: move HTTP rules parsing to http_rules.c
10462 - CLEANUP: http: remove some leftovers from recent cleanups
10463 - BUILD: Makefile: add a "make opts" target to simply show the build options
10464 - BUILD: Makefile: speed up compiler options detection
10465 - BUG/MINOR: backend: check that the mux installed properly
10466 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
10467 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
10468 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
10469 - MINOR: ssl: cleanup old openssl API call
10470 - MINOR: ssl: generate-certificates for BoringSSL
10471 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
10472 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
10473 - CLEANUP: haproxy: Remove unused variable
10474 - CLEANUP: h1: Fix debug warnings for h1 headers
10475 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
10476 - MEDIUM: task: perform a single tree lookup per run queue batch
10477 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
10478 - BUG/MINOR: threads: move declaration of capabilities to config.h
10479 - OPTIM: tools: optimize my_ffsl() for x86_64
10480 - BUG/MINOR: h2: null-deref
10481 - BUG/MINOR: checks: queues null-deref
10482 - MINOR: connections: Introduce an unsubscribe method.
10483 - MEDIUM: connections: Change struct wait_list to wait_event.
10484 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
10485 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
10486 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
10487 - MINOR: http: Move comment about some HTTP macros in the right header file
10488 - MINOR: stats: Add missing include
10489 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
10490 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
10491 - MEDIUM: http: Ignore http-tunnel option on backend
10492 - MINOR: http: Use same flag for httpclose and forceclose options
10493 - MINOR: h1: Add EOH marker during headers parsing
10494 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
10495 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
10496 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
10497 - MINOR: log: make sess_log() support sess=NULL
10498 - MINOR: chunk: add chunk_cpy() and chunk_cat()
10499 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
10500 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
10501 - MINOR: h2: don't try to send data before preface
10502 - MINOR: h2: unify the mux init function
10503 - MINOR: h2: retrieve the front proxy from the caller instead of the session
10504 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
10505 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
10506 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
10507 - BUG/MEDIUM: stream: don't crash on out-of-memory
10508 - BUILD: compiler: add a new statement "__unreachable()"
10509 - BUILD: lua: silence some compiler warnings about potential null derefs
10510 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
10511 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
10512 - BUILD: stick-table: make sure not to fail on task_new() during initialization
10513 - BUILD: peers: check allocation error during peers_init_sync()
10514 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
10515 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
10516 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
10517 - MAJOR: tasks: create per-thread wait queues
10518 - OPTIM: tasks: group all tree roots per cache line
10519 - DOC: Fix a few typos
10520 - MINOR: pools: allocate most memory pools from an array
10521 - MINOR: pools: split pool_free() in the lockfree variant
10522 - MEDIUM: pools: implement a thread-local cache for pool entries
10523 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
10524 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
10525 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
10526 - MINOR: lua: all functions calling lua_yieldk() may return
10527 - BUILD: lua: silence some compiler warnings after WILL_LJMP
10528 - BUILD: Makefile: silence an option conflict warning with clang
10529 - MINOR: server: Use memcpy() instead of strncpy().
10530 - CLEANUP: state-file: make the path concatenation code a bit more consistent
10531 - MINOR: build: Disable -Wstringop-overflow.
10532 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
10533 - MINOR: peers: use defines instead of enums to appease clang.
10534 - DOC: fix reference to map files in MAINTAINERS
10535 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
10536 - MINOR: poller: move time and date computation out of the pollers
10537 - BUILD: memory: fix pointer declaration for atomic CAS
10538 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
10539 - MINOR: time: add now_mono_time() and now_cpu_time()
10540 - MEDIUM: time: measure the time stolen by other threads
10541 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
10542 - BUILD: compiler: rename __unreachable() to my_unreachable()
10543 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
10544 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
10545 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
10546 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
10547 - BUG/MEDIUM: stream: Make sure polling is right on retry.
10548 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
10549 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
10550 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
10551 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
10552 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
10553 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
10554
Willy Tarreau27010f02018-09-29 20:17:33 +0200105552018/09/29 : 1.9-dev3
10556 - BUG/MINOR: h1: don't consider the status for each header
10557 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
10558 - MINOR: h1: parse the Connection header field
10559 - DOC: Fix typos in lua documentation
10560 - MINOR: h1: Add H1_MF_XFER_LEN flag
10561 - MINOR: http: add http_hdr_del() to remove a header from a list
10562 - MINOR: h1: add headers to the list after controls, not before
10563 - MEDIUM: h1: better handle transfer-encoding vs content-length
10564 - MEDIUM: h1: deduplicate the content-length header
10565 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
10566 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
10567 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
10568 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
10569 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
10570 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
10571 - MINOR: stream-int: make si_appctx() never fail
10572 - BUILD: ssl_sock: remove build warnings on potential null-derefs
10573 - BUILD: stats: remove build warnings on potential null-derefs
10574 - BUILD: stream: address null-deref build warnings at -Wextra
10575 - BUILD: http: address a couple of null-deref warnings at -Wextra
10576 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
10577 - BUILD: dns: fix null-deref build warning at -Wextra
10578 - BUILD: checks: silence a null-deref build warning at -Wextra
10579 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
10580 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
10581 - BUILD: sockpair: silence a build warning at -Wextra
10582 - BUILD: build with -Wextra and sort out certain warnings
10583 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
10584 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
10585 - DOC: Update configuration doc about the maximum number of stick counters.
10586 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
10587 - MINOR: h2/stream_interface: Reintroduce te wake() method.
10588 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
10589 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
10590 - MEDIUM: lua: Add stick table support for Lua.
10591
Willy Tarreau253006d2018-09-12 18:59:48 +0200105922018/09/12 : 1.9-dev2
10593 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
10594 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
10595 - BUG/MEDIUM: servers: check the queues once enabling a server
10596 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
10597 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
10598 - CLEANUP: backend: Move mux install to call it at only one place
10599 - MINOR: conn_stream: add an tx buffer to the conn_stream
10600 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
10601 - MINOR: backend: Try to find the best mux for outgoing connections
10602 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
10603 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
10604 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
10605 - MINOR: mux: Print the list of existing mux protocols during HA startup
10606 - MEDIUM: checks: use the new rendez-vous point to spread check result
10607 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
10608 - MINOR: threads: remove the previous synchronization point
10609 - MAJOR: server: make server state changes synchronous again
10610 - CLEANUP: server: remove the update list and the update lock
10611 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
10612 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
10613 - MINOR: mux: Change get_mux_proto to get an ist as parameter
10614 - MINOR: mux: Improve the message with the list of existing mux protocols
10615 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
10616 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
10617 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
10618 - BUG/MEDIUM: connection/mux: take care of serverless proxies
10619 - MINOR: queue: make sure the pendconn is released before logging
10620 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
10621 - MINOR: queue: store the queue index in the stream when enqueuing
10622 - MINOR: queue: replace the linked list with a tree
10623 - MEDIUM: add set-priority-class and set-priority-offset
10624 - MEDIUM: queue: adjust position based on priority-class and priority-offset
10625 - DOC: update the roadmap about priority queues
10626 - BUG/MINOR: ssl: empty connections reported as errors.
10627 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
10628 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
10629 - MINOR: connections: Get rid of txbuf.
10630 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
10631 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
10632 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
10633 - MINOR: stream_interface: Give stream_interface its own wait_list.
10634 - MINOR: mux_h2: Don't use h2_send() as a callback.
10635 - MINOR: checks: Add event_srv_chk_io().
10636 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
10637 - BUG/MEDIUM: sessions: Don't use t->state.
10638 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
10639 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
10640 - BUG/MINOR: map: fix map_regm with backref
10641 - DOC: dns: explain set server ... fqdn requires resolver
10642 - DOC: add documentation for prio_class and prio_offset sample fetches.
10643 - DOC: ssl: Use consistent naming for TLS protocols
10644 - DOC: update the layering design notes
10645 - MINOR: tasks: Don't special-case when nbthreads == 1
10646 - MINOR: fd cache: And the thread_mask with all_threads_mask.
10647 - BUG/MEDIUM: lua: socket timeouts are not applied
10648 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
10649 - BUG/MEDIUM: server: update our local state before propagating changes
10650 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
10651 - DOC: server/threads: document which functions need to be called with/without locks
10652 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
10653 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
10654 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
10655 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
10656 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
10657 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
10658 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
10659 - BUG/MEDIUM: connection: don't forget to always delete the list's head
10660 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
10661 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
10662 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
10663 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
10664 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
10665 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
10666 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
10667 - BUG/MEDIUM: connection: don't store recv() result into trash.data
10668 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
10669 - MINOR: chunk: remove impossible tests on negative chunk->data
10670 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
10671 - DOC: Fix spelling error in configuration doc
10672 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
10673 - REGTEST/MINOR: Add a new class of regression testing files.
10674 - BUG/MEDIUM: unix: provide a ->drain() function
10675 - MINOR: connection: make conn_sock_drain() work for all socket families
10676 - BUG/MINOR: lua: Bad HTTP client request duration.
10677 - REGEST/MINOR: Add reg testing files.
10678 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
10679 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
10680 - BUG/MEDIUM: lua: reset lua transaction between http requests
10681 - MINOR: add be_conn_free sample fetch
10682 - MINOR: Add srv_conn_free sample fetch
10683 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
10684 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
10685 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
10686 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
10687 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
10688 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
10689 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
10690 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
10691 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
10692 - MINOR: tools: make date2str_log() take some consts
10693 - MINOR: thread: implement HA_ATOMIC_XADD()
10694 - BUG/MINOR: stream: use atomic increments for the request counter
10695 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
10696 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
10697 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
10698 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
10699 - MINOR: log: make the backend fall back to the frontend when there's no stream
10700 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
10701 - MINOR: log: don't unconditionally pick log info from s->logs
10702 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
10703 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
10704 - MINOR: log: do not dereference a null stream to access captures
10705 - MINOR: log: be sure not to dereference a null stream for a target
10706 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
10707 - MINOR: log: use NULL for the unique_id if there is no stream
10708 - MINOR: log: keep a copy of s->flags early to avoid a dereference
10709 - MINOR: log: use zero as the request counter if there is no stream
10710 - MEDIUM: log: make sess_build_logline() support being called with no stream
10711 - MINOR: log: provide a function to emit a log for a session
10712 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
10713 - BUG/MINOR: h1: fix buffer shift after realignment
10714 - MINOR: connection: make the initialization more consistent
10715 - MINOR: connection: add new function conn_get_proxy()
10716 - MINOR: connection: add new function conn_is_back()
10717 - MINOR: log: One const should be enough.
10718 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
10719 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
10720 - MINOR: snapshot: restart on the event ID and not the stream ID
10721 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
10722 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
10723 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
10724 - MINOR: proxy: add a new generic proxy_capture_error()
10725 - MINOR: http: make the HTTP error capture rely on the generic proxy code
10726 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
10727 - REORG: cli: move the "show errors" handler from http to proxy
10728 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
10729 - MEDIUM: snapshots: dynamically allocate the snapshots
10730 - MEDIUM: snapshot: merge the captured data after the descriptor
10731 - MEDIUM: mworker: remove register/unregister signal functions
10732 - MEDIUM: mworker: use the haproxy poll loop
10733 - BUG/MINOR: mworker: no need to stop peers for each proxy
10734 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
10735 - MEDIUM: mworker: block SIGCHLD until the master is ready
10736 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
10737 - MEDIUM: startup: unify signal init between daemon and mworker mode
10738 - MINOR: mworker: don't deinit the poller fd when in wait mode
10739 - MEDIUM: mworker: master wait mode use its own initialization
10740 - MEDIUM: mworker: replace the master pipe by socketpairs
10741 - MINOR: mworker: keep and clean the listeners
10742 - MEDIUM: threads: close the thread-waker pipe during deinit
10743 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
10744 - REORG: http: move the HTTP semantics definitions to http.h/http.c
10745 - REORG: http: move http_get_path() to http.c
10746 - REORG: http: move error codes production and processing to http.c
10747 - REORG: http: move the log encoding tables to log.c
10748 - REORG: http: move some header value processing functions to http.c
10749 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
10750 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
10751 - MEDIUM: protocol: sockpair protocol
10752 - TESTS: add a python wrapper for sockpair@
10753 - BUG/MINOR: server: Crash when setting FQDN via CLI.
10754 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
10755 - BUILD: fix build without thread
10756 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
10757 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
10758 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
10759 - MEDIUM: connections: Get rid of the recv() method.
10760 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
10761 - MEDIUM: h2: always subscribe to receive if allowed.
10762 - MEDIUM: h2: Don't use a wake() method anymore.
10763 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
10764 - MINOR: connections: Add a "handle" field to wait_list.
10765 - MEDIUM: mux_h2: Revamp the send path when blocking.
10766 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
10767 - MINOR: checks: Give checks their own wait_list.
10768 - MINOR: conn_streams: Remove wait_list from conn_streams.
10769 - REORG: h1: create a new h1m_state
10770 - MINOR: h1: add the restart offsets into struct h1m
10771 - MINOR: h1: remove the unused states from h1m_state
10772 - MINOR: h1: provide a distinct init() function for request and response
10773 - MINOR: h1: add a message flag to indicate that a message carries a response
10774 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
10775 - MINOR: h1: properly pre-initialize err_pos to -2
10776 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
10777 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
10778 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
10779 - MEDIUM: h1: make the parser support a pointer to a start line
10780 - MEDIUM: h1: let the caller pass the initial parser's state
10781 - MINOR: h1: make the message parser support a null <hdr> argument
10782 - MEDIUM: h1: support partial message parsing
10783 - MEDIUM: h1: remove the useless H1_MSG_BODY state
10784 - MINOR: h2: store the HTTP status into the H2S, not the H1M
10785 - MINOR: h1: remove the HTTP status from the H1M struct
10786 - MEDIUM: h1: implement the request parser as well
10787 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
10788 - MINOR: connection: pass the proxy when creating a connection
10789 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
10790 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
10791 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
10792
Willy Tarreau65e94d12018-08-02 18:12:50 +0200107932018/08/02 : 1.9-dev1
10794 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
10795 - DOC: cache: update sections and fix some typos
10796 - BUILD/MINOR: deviceatlas: enable thread support
10797 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
10798 - BUG/MEDIUM: ssl: don't allocate shctx several time
10799 - BUG/MEDIUM: cache: bad computation of the remaining size
10800 - BUILD: checks: don't include server.h
10801 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
10802 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
10803 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
10804 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
10805 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
10806 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
10807 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
10808 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
10809 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
10810 - MINOR: config: report when "monitor fail" rules are misplaced
10811 - BUG/MINOR: mworker: fix validity check for the pipe FDs
10812 - BUG/MINOR: mworker: detach from tty when in daemon mode
10813 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
10814 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
10815 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
10816 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
10817 - BUG/MINOR: hpack: fix debugging output of pseudo header names
10818 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
10819 - BUG/MINOR: hpack: reject invalid header index
10820 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
10821 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
10822 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
10823 - BUG/MINOR: h2: try to abort closed streams as soon as possible
10824 - BUG/MINOR: h2: ":path" must not be empty
10825 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
10826 - BUG/MINOR: h2: the TE header if present may only contain trailers
10827 - BUG/MEDIUM: h2: enforce the per-connection stream limit
10828 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
10829 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
10830 - BUG/MINOR: h2: properly check PRIORITY frames
10831 - BUG/MINOR: h2: reject response pseudo-headers from requests
10832 - BUG/MEDIUM: h2: remove connection-specific headers from request
10833 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
10834 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
10835 - BUG/MINOR: action: Don't check http capture rules when no id is defined
10836 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
10837 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
10838 - BUG/MEDIUM: mworker: also close peers sockets in the master
10839 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
10840 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
10841 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
10842 - BUG/MEDIUM: h2: fix handling of end of stream again
10843 - MINOR: mworker: Update messages referencing exit-on-failure
10844 - MINOR: mworker: Improve wording in `void mworker_wait()`
10845 - CONTRIB: halog: Add help text for -s switch in halog program
10846 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
10847 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
10848 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
10849 - DOC: notifications: add precisions about thread usage
10850 - BUG/MEDIUM: lua/notification: memory leak
10851 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
10852 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
10853 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
10854 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
10855 - BUG/MEDIUM: h2: work around a connection API limitation
10856 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
10857 - MINOR: h2: store the demux padding length in the h2c struct
10858 - BUG/MEDIUM: h2: support uploading partial DATA frames
10859 - MINOR: h2: don't demand that a DATA frame is complete before processing it
10860 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
10861 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
10862 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
10863 - BUG/MEDIUM: h2: fix stream limit enforcement
10864 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
10865 - MINOR: sample: add len converter
10866 - BUG: MAJOR: lb_map: server map calculation broken
10867 - BUG: MINOR: http: don't check http-request capture id when len is provided
10868 - MINOR: sample: rename the "len" converter to "length"
10869 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
10870 - DOC/MINOR: intro: typo, wording, formatting fixes
10871 - MINOR: netscaler: respect syntax
10872 - MINOR: netscaler: remove the use of cip_magic only used once
10873 - MINOR: netscaler: rename cip_len to clarify its uage
10874 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
10875 - BUG/MAJOR: netscaler: address truncated CIP header detection
10876 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
10877 - MEDIUM: netscaler: do not analyze original IP packet size
10878 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
10879 - MINOR: spoe: add force-set-var option in spoe-agent configuration
10880 - CONTRIB: iprange: Fix compiler warning in iprange.c
10881 - CONTRIB: halog: Fix compiler warnings in halog.c
10882 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
10883 - MINOR: mux: add flags to describe a mux's capabilities
10884 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
10885 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
10886 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
10887 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
10888 - MINOR: http: adjust the list of supposedly cacheable methods
10889 - MINOR: http: update the list of cacheable status codes as per RFC7231
10890 - MINOR: http: start to compute the transaction's cacheability from the request
10891 - BUG/MINOR: http: do not ignore cache-control: public
10892 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
10893 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
10894 - MINOR: http: add a function to check request's cache-control header field
10895 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
10896 - BUG/MEDIUM: cache: replace old object on store
10897 - BUG/MEDIUM: cache: respect the request cache-control header
10898 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
10899 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
10900 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
10901 - BUG/MEDIUM: h2: properly handle and report some stream errors
10902 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
10903 - DOC/MINOR: configuration: typo, formatting fixes
10904 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
10905 - BUG/MEDIUM: mworker: don't close stdio several time
10906 - MINOR: don't close stdio anymore
10907 - BUG/MEDIUM: http: don't automatically forward request close
10908 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
10909 - MINOR: h2: add a function to report pseudo-header names
10910 - DEBUG: hpack: make hpack_dht_dump() expose the output file
10911 - DEBUG: hpack: add more traces to the hpack decoder
10912 - CONTRIB: hpack: add an hpack decoder
10913 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
10914 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
10915 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
10916 - CLEANUP: rbtree: remove
10917 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
10918 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
10919 - DOC: lua: Fix typos in comments of hlua_socket_receive
10920 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
10921 - BUG/MINOR: lua: Fix return value of Socket.settimeout
10922 - MINOR: dns: Handle SRV record weight correctly.
10923 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
10924 - MINOR: hathreads: add support for gcc < 4.7
10925 - BUILD/MINOR: ancient gcc versions atomic fix
10926 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
10927 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
10928 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
10929 - DOC: clarify the scope of ssl_fc_is_resumed
10930 - CONTRIB: debug: fix a few flags definitions
10931 - BUG/MINOR: poll: too large size allocation for FD events
10932 - MINOR: sample: add date_us sample
10933 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
10934 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
10935 - MINOR: global/threads: move cpu_map at the end of the global struct
10936 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
10937 - MINOR: global: add some global activity counters to help debugging
10938 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
10939 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
10940 - BUG/MEDIUM: fd: maintain a per-thread update mask
10941 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
10942 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
10943 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
10944 - BUG/MEDIUM: threads/mworker: fix a race on startup
10945 - BUG/MINOR: mworker: only write to pidfile if it exists
10946 - MINOR: threads: Fix build when we're not compiling with threads.
10947 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
10948 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
10949 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
10950 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
10951 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
10952 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
10953 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
10954 - CLEANUP: sample: Fix comment encoding of sample.c
10955 - CLEANUP: sample: Fix outdated comment about sample casts functions
10956 - BUG/MINOR: sample: Fix output type of c_ipv62ip
10957 - CLEANUP: Fix typo in ARGT_MSK6 comment
10958 - CLEANUP: standard: Use len2mask4 in str2mask
10959 - MINOR: standard: Add str2mask6 function
10960 - MINOR: config: Add support for ARGT_MSK6
10961 - MEDIUM: sample: Add IPv6 support to the ipmask converter
10962 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
10963 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
10964 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
10965 - MINOR: fd: don't report maxfd in alert messages
10966 - MEDIUM: polling: start to move maxfd computation to the pollers
10967 - CLEANUP: fd/threads: remove the now unused fdtab_lock
10968 - MINOR: poll: more accurately compute the new maxfd in the loop
10969 - CLEANUP: fd: remove the unused "new" field
10970 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
10971 - MEDIUM: select: make use of hap_fd_* functions
10972 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
10973 - MEDIUM: select: don't use the old FD state anymore
10974 - MEDIUM: poll: don't use the old FD state anymore
10975 - MINOR: fd: pass the iocb and owner to fd_insert()
10976 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
10977 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
10978 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
10979 - DOC: don't suggest using http-server-close
10980 - MINOR: introduce proxy-v2-options for send-proxy-v2
10981 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
10982 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
10983 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
10984 - MINOR: spoe: Always link a SPOE context with the applet processing it
10985 - MINOR: spoe: Replace sending_rate by a frequency counter
10986 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
10987 - MEDIUM: spoe: Use an ebtree to manage idle applets
10988 - MINOR: spoa_example: Count the number of frames processed by each worker
10989 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
10990 - MINOR: init: make stdout unbuffered
10991 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
10992 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
10993 - MINOR: compiler: introduce offsetoff().
10994 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
10995 - MINOR: threads: add test and set/reset operations
10996 - MINOR: pools/threads: Implement lockless memory pools.
10997 - MAJOR: fd/threads: Make the fdcache mostly lockless.
10998 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
10999 - MAJOR: fd: compute the new fd polling state out of the fd lock
11000 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
11001 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
11002 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
11003 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
11004 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
11005 - MEDIUM: fd: make updt_fd_polling() use atomics
11006 - MEDIUM: poller: use atomic ops to update the fdtab mask
11007 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
11008 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
11009 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
11010 - MINOR: fd: reorder fd_add_to_fd_list()
11011 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
11012 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
11013 - MINOR: init: emit warning when -sf/-sd cannot parse argument
11014 - BUILD: fd/threads: fix breakage build breakage without threads
11015 - DOC: Describe routing impact of using interface keyword on bind lines
11016 - DOC: Mention -Ws in the list of available options
11017 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
11018 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
11019 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
11020 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
11021 - BUILD/MINOR: memory: stdint is needed for uintptr_t
11022 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
11023 - DOC: lua: new prototype for function "register_action()"
11024 - DOC: cfgparse: Warn on option (tcp|http)log in backend
11025 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
11026 - MINOR: sample: add a new "concat" converter
11027 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
11028 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
11029 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
11030 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
11031 - CLEANUP: cfgparse: Remove unused label end
11032 - CLEANUP: spoe: Remove unused label retry
11033 - CLEANUP: h2: Remove unused labels from mux_h2.c
11034 - CLEANUP: pools: Remove unused end label in memory.h
11035 - CLEANUP: standard: Fix typo in IPv6 mask example
11036 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
11037 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
11038 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
11039 - MINOR: stats: display the number of threads in the statistics.
11040 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
11041 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
11042 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
11043 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
11044 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
11045 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
11046 - MINOR: ssl: extract full pkey info in load_certificate
11047 - MINOR: ssl: add ssl_sock_get_pkey_algo function
11048 - MINOR: ssl: add ssl_sock_get_cert_sig function
11049 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
11050 - MINOR: connection: add proxy-v2-options authority
11051 - MINOR: systemd: Add section for SystemD sandboxing to unit file
11052 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
11053 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
11054 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
11055 - MINOR: h2: provide and use h2s_detach() and h2s_free()
11056 - MEDIUM: h2: use a single buffer allocator
11057 - MINOR/BUILD: fix Lua build on Mac OS X
11058 - BUILD/MINOR: fix Lua build on Mac OS X (again)
11059 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
11060 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
11061 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
11062 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
11063 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
11064 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
11065 - CLEANUP: ssl: Remove a duplicated #include
11066 - CLEANUP: cli: Remove a leftover debug message
11067 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
11068 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
11069 - BUG/MINOR: force-persist and ignore-persist only apply to backends
11070 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
11071 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
11072 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
11073 - TESTS: Add a testcase for multi-port + multi-server listener issue
11074 - CLEANUP: dns: remove duplicate code in src/dns.c
11075 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
11076 - BUG/MINOR: cli: Ensure all command outputs end with a LF
11077 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
11078 - BUILD: ssl: Fix build with OpenSSL without NPN capability
11079 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
11080 - BUG/MINOR: lua: return bad error messages
11081 - CLEANUP: lua/syntax: lua is a name and not an acronym
11082 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
11083 - BUG/MINOR: tcp-check: use the server's service port as a fallback
11084 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
11085 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
11086 - BUILD/BUG: enable -fno-strict-overflow by default
11087 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
11088 - DOC: log: more than 2 log servers are allowed
11089 - MINOR: hash: add new function hash_crc32c
11090 - MINOR: proxy-v2-options: add crc32c
11091 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
11092 - REORG: compact "struct server"
11093 - MINOR: samples: add crc32c converter
11094 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
11095 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
11096 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
11097 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
11098 - BUG/MINOR: lua: the function returns anything
11099 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
11100 - CLEANUP: lua: typo fix in comments
11101 - BUILD/MINOR: fix build when USE_THREAD is not defined
11102 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
11103 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
11104 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
11105 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
11106 - BUILD/MINOR: cli: fix a build warning introduced by last commit
11107 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
11108 - MINOR: h2: always call h2s_detach() in h2_detach()
11109 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
11110 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
11111 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
11112 - BUILD/MINOR: threads: always export thread_sync_io_handler()
11113 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
11114 - MINOR: h2: implement a basic "show_fd" function
11115 - MINOR: cli: report cache indexes in "show fd"
11116 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
11117 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
11118 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
11119 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
11120 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
11121 - BUG/MINOR: cache: fix "show cache" output
11122 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
11123 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
11124 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
11125 - BUG/MINOR: spoe: Register the variable to set when an error occurred
11126 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
11127 - MINOR: spoe: Add metrics in to know time spent in the SPOE
11128 - MINOR: spoe: Add options to store processing times in variables
11129 - MINOR: log: move 'log' keyword parsing in dedicated function
11130 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
11131 - MINOR: spoe: Add loggers dedicated to the SPOE agent
11132 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
11133 - MINOR: spoe: use agent's logger to log SPOE messages
11134 - MINOR: spoe: Add counters to log info about SPOE agents
11135 - BUG/MAJOR: cache: always initialize newly created objects
11136 - MINOR: servers: Support alphanumeric characters for the server templates names
11137 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
11138 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
11139 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
11140 - MINOR: proxy: Add fe_defbe fetcher
11141 - MINOR: config: Warn if resolvers has no nameservers
11142 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
11143 - MINOR: cli: Ensure the CLI always outputs an error when it should
11144 - MEDIUM: sample: Extend functionality for field/word converters
11145 - MINOR: export localpeer as an environment variable
11146 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
11147 - BUILD: sample: avoid build warning in sample.c
11148 - BUG/CRITICAL: h2: fix incorrect frame length check
11149 - DOC: lua: update the links to the config and Lua API
11150 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
11151 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
11152 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
11153 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
11154 - MINOR: h2: detect presence of CONNECT and/or content-length
11155 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
11156 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
11157 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
11158 - MEDIUM: cli: Add payload support
11159 - MINOR: map: Add payload support to "add map"
11160 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
11161 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
11162 - MINOR: sample: Add strcmp sample converter
11163 - MINOR: http: Add support for 421 Misdirected Request
11164 - BUG/MINOR: config: disable http-reuse on TCP proxies
11165 - MINOR: ssl: disable SSL sample fetches when unsupported
11166 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
11167 - BUG/MINOR: checks: Fix check->health computation for flapping servers
11168 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
11169 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
11170 - MINOR: backend: implement random-based load balancing
11171 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
11172 - MINOR: lua: Add server name & puid to LUA Server class.
11173 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
11174 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
11175 - BUG/MEDIUM: task: Don't free a task that is about to be run.
11176 - MINOR: fd: Make the lockless fd list work with multiple lists.
11177 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
11178 - MINOR: pollers: move polled_mask outside of struct fdtab.
11179 - BUG/MINOR: lua: schedule socket task upon lua connect()
11180 - BUG/MINOR: lua: ensure large proxy IDs can be represented
11181 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
11182 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
11183 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
11184 - BUG/MEDIUM: ssl: properly protect SSL cert generation
11185 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
11186 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
11187 - BUG/MEDIUM: spoe: Flags are not encoded in network order
11188 - CLEANUP: spoe: Remove unused variables the agent structure
11189 - DOC: spoe: fix a typo
11190 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
11191 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
11192 - DOC: add some description of the pending rework of the buffer structure
11193 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
11194 - MINOR: lua: Improve error message
11195 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
11196 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
11197 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
11198 - BUG/BUILD: threads: unbreak build without threads
11199 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
11200 - BUG/MEDIUM: lua/socket: Length required read doesn't work
11201 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
11202 - MAJOR: tasks: Create a per-thread runqueue.
11203 - MAJOR: tasks: Introduce tasklets.
11204 - MINOR: tasks: Make the number of tasks to run at once configurable.
11205 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
11206 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
11207 - MINOR: http: Log warning if (add|set)-header fails
11208 - DOC: management: add the new wrew stats column
11209 - MINOR: stats: also report the failed header rewrites warnings on the stats page
11210 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
11211 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
11212 - MINOR: task: Also consider the task list size when getting global tasks.
11213 - MINOR: dns: Implement `parse-resolv-conf` directive
11214 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
11215 - MINOR: task/notification: Is notifications registered ?
11216 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
11217 - BUG/MAJOR: lua: Dead lock with sockets
11218 - BUG/MEDIUM: lua/socket: Notification error
11219 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
11220 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
11221 - DOC: contrib/modsecurity: few typo fixes
11222 - DOC: SPOE.txt: fix a typo
11223 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
11224 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
11225 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
11226 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
11227 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
11228 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
11229 - MINOR: task: Fix a compiler warning by adding a cast.
11230 - MINOR: stats: also report the nice and number of calls for applets
11231 - MINOR: applet: assign the same nice value to a new appctx as its owner task
11232 - MINOR: task: Fix compiler warning.
11233 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
11234 - MINOR: tasks: Don't define rqueue if we're building without threads.
11235 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
11236 - MINOR: lua: Increase debug information
11237 - BUG/MEDIUM: threads: handle signal queue only in thread 0
11238 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
11239 - BUG/MINOR: signals: ha_sigmask macro for multithreading
11240 - BUG/MAJOR: map: fix a segfault when using http-request set-map
11241 - DOC: regression testing: Add a short starting guide.
11242 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
11243 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
11244 - BUG/MINOR: lua: Segfaults with wrong usage of types.
11245 - BUG/MAJOR: ssl: Random crash with cipherlist capture
11246 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
11247 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
11248 - MINOR: tests: First regression testing file.
11249 - MINOR: reg-tests: Add reg-tests/README file.
11250 - MINOR: reg-tests: Add a few regression testing files.
11251 - DOC: Add new REGTEST tag info about reg testing.
11252 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
11253 - MINOR: Some spelling cleanup in the comments.
11254 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
11255 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
11256 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
11257 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
11258 - REGTEST/MINOR: Add levels to reg-tests target.
11259 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
11260 - BUG/BUILD: threads: unbreak build without threads
11261 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
11262 - MINOR: stick-tables: make stktable_release() do nothing on NULL
11263 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
11264 - MINOR: startup: change session/process group settings
11265 - MINOR: systemd: consider exit status 143 as successful
11266 - REGTEST/MINOR: Wrong URI syntax.
11267 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
11268 - CLEANUP: dns: inacurate comment about prefered IP score
11269 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
11270 - MINOR: dns: new DNS options to allow/prevent IP address duplication
11271 - REGTEST/MINOR: Unexpected curl URL globling.
11272 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
11273 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
11274 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
11275 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
11276 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
11277 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
11278 - MINOR: tasklet: Set process to NULL.
11279 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
11280 - MINOR: buffer: switch buffer sizes and offsets to size_t
11281 - MINOR: buffer: add a few basic functions for the new API
11282 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
11283 - MINOR: buffer: Add b_set_data().
11284 - MINOR: buffer: introduce b_realign_if_empty()
11285 - MINOR: compression: pass the channel to http_compression_buffer_end()
11286 - MINOR: channel: add a few basic functions for the new buffer API
11287 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
11288 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
11289 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
11290 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
11291 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
11292 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
11293 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
11294 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
11295 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
11296 - MINOR: buffer: remove bi_ptr()
11297 - MINOR: buffer: remove bo_ptr()
11298 - MINOR: buffer: remove bo_end()
11299 - MINOR: buffer: remove bi_end()
11300 - MINOR: buffer: remove bo_contig_data()
11301 - MINOR: buffer: merge b{i,o}_contig_space()
11302 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
11303 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
11304 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
11305 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
11306 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
11307 - MINOR: h2: clarify the fact that the send functions are unsigned
11308 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
11309 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
11310 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
11311 - MINOR: h1: make h1_measure_trailers() use an offset and a count
11312 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
11313 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
11314 - MINOR: buffer: get rid of b_end() and b_to_end()
11315 - MINOR: buffer: make b_getblk_nc() take const pointers
11316 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
11317 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
11318 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
11319 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
11320 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
11321 - MINOR: connection: add a flags argument to rcv_buf()
11322 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
11323 - MINOR: buffer: get rid of b_ptr() and convert its last users
11324 - MINOR: buffer: use b_room() to determine available space in a buffer
11325 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
11326 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
11327 - MINOR: buffer: make bo_putchar() use b_tail()
11328 - MINOR: buffer: replace buffer_full() with channel_full()
11329 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
11330 - MINOR: buffer: replace buffer_pending() with ci_data()
11331 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
11332 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
11333 - MINOR: buffer: use b_orig() to replace most references to b->data
11334 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
11335 - MINOR: channel: remove almost all references to buf->i and buf->o
11336 - MINOR: channel: Add co_set_data().
11337 - MEDIUM: channel: adapt to the new buffer API
11338 - MINOR: checks: adapt to the new buffer API
11339 - MEDIUM: h2: update to the new buffer API
11340 - MINOR: buffer: remove unused bo_add()
11341 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
11342 - MINOR: stats: adapt to the new buffers API
11343 - MINOR: cli: use the new buffer API
11344 - MINOR: cache: use the new buffer API
11345 - MINOR: stream-int: use the new buffer API
11346 - MINOR: stream: use wrappers instead of directly manipulating buffers
11347 - MINOR: backend: use new buffer API
11348 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
11349 - MINOR: filters: convert to the new buffer API
11350 - MINOR: payload: convert to the new buffer API
11351 - MEDIUM: h1: port to new buffer API.
11352 - MINOR: flt_trace: adapt to the new buffer API
11353 - MEDIUM: compression: start to move to the new buffer API
11354 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
11355 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
11356 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
11357 - MAJOR: start to change buffer API
11358 - MINOR: buffer: remove the check for output on b_del()
11359 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
11360 - MINOR: buffer: rename the "data" field to "area"
11361 - MEDIUM: buffers: move "output" from struct buffer to struct channel
11362 - MINOR: buffer: replace bi_fast_delete() with b_del()
11363 - MINOR: buffer: replace b{i,o}_put* with b_put*
11364 - MINOR: buffer: add a new file for ist + buffer manipulation functions
11365 - MINOR: checks: use b_putist() instead of b_putstr()
11366 - MINOR: buffers: remove b_putstr()
11367 - CLEANUP: buffer: minor cleanups to buffer.h
11368 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
11369 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
11370 - MINOR: buffer: rename the data length member to '->data'
11371 - MAJOR: buffer: finalize buffer detachment
11372 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
11373 - MAJOR: chunks: replace struct chunk with struct buffer
11374 - DOC: buffers: document the new buffers API
11375 - DOC: buffers: remove obsolete docs about buffers
11376 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
11377 - MINOR: connections/mux: Add a new "subscribe" method.
11378 - MEDIUM: connections/mux: Revamp the send direction.
11379 - MINOR: connection: simplify subscription by adding a registration function
11380 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
11381 - BUG/MINOR: build: Fix compilation with debug mode enabled
11382 - BUILD: Generate sha256 checksums in publish-release
11383 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
11384 - MINOR: debug: Add checks for conn_stream flags
11385 - MINOR: ist: Add the function isteqi
11386 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
11387 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
11388 - MINOR: buffers: simplify b_contig_space()
11389 - MINOR: buffers: split b_putblk() into __b_putblk()
11390 - MINOR: buffers: add b_xfer() to transfer data between buffers
11391 - DOC: add some design notes about the new layering model
11392 - MINOR: conn_stream: add a new CS_FL_REOS flag
11393 - MINOR: conn_stream: add an rx buffer to the conn_stream
11394 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
11395 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
11396 - MINOR: h2: make each H2 stream support an intermediary input buffer
11397 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
11398 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
11399 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
11400 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
11401 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
11402 - MEDIUM: h2: perform a single call to the data layer in demux()
11403 - MEDIUM: h2: don't call data_cb->recv() anymore
11404 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
11405 - MEDIUM: h2: use the default conn_stream's receive function
11406 - DOC: add more design feedback on the new layering model
11407 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
11408 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
11409 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
11410 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
11411 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
11412 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
11413 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
11414 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
11415 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
11416 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
11417 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
11418 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
11419 - MINOR: queue: centralize dequeuing code a bit better
11420 - MEDIUM: queue: make pendconn_free() work on the stream instead
11421 - DOC: queue: document the expected locking model for the server's queue
11422 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
11423 - MINOR: queue: use a distinct variable for the assigned server and the queue
11424 - MINOR: queue: implement pendconn queue locking functions
11425 - MEDIUM: queue: get rid of the pendconn lock
11426 - MINOR: tasks: Make active_tasks_mask volatile.
11427 - MINOR: tasks: Make global_tasks_mask volatile.
11428 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
11429 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
11430 - BUG/MEDIUM: threads/sync: use sched_yield when available
11431 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
11432 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
11433 - BUG/MINOR: config: stick-table is not supported in defaults section
11434 - BUILD/MINOR: threads: unbreak build with threads disabled
11435 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
11436 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
11437 - MINOR: threads: move "nbthread" parsing to hathreads.c
11438 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
11439 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
11440 - BUILD/MINOR: compiler: fix offsetof() on older compilers
11441 - SCRIPTS: git-show-backports: add missing quotes to "echo"
11442 - MINOR: threads: add more consistency between certain variables in no-thread case
11443 - MEDIUM: hathreads: implement a more flexible rendez-vous point
11444 - BUG/MEDIUM: cli: make "show fd" thread-safe
11445
Willy Tarreaub3066502017-11-26 19:50:17 +0100114462017/11/26 : 1.9-dev0
11447
Willy Tarreau0b787922017-11-26 19:25:23 +0100114482017/11/26 : 1.8.0
11449 - BUG/MEDIUM: stream: don't automatically forward connect nor close
11450 - BUG/MAJOR: stream: ensure analysers are always called upon close
11451 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
11452 - MEDIUM: mworker: Add systemd `Type=notify` support
11453 - BUG/MEDIUM: cache: free callback to remove from tree
11454 - CLEANUP: cache: remove unused struct
11455 - MEDIUM: cache: enable the HTTP analysers
11456 - CLEANUP: cache: remove wrong comment
11457 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
11458 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
11459 - MINOR: threads/atomic: implement pl_mb() in asm on x86
11460 - MINOR: threads/atomic: implement pl_bts() on non-x86
11461 - MINOR: threads/build: atomic: replace the few inlines with macros
11462 - BUILD: threads/plock: fix a build issue on Clang without optimization
11463 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
11464 - BUILD: compiler: add a new type modifier __maybe_unused
11465 - BUILD: h2: mark some inlined functions "unused"
11466 - BUILD: server: check->desc always exists
11467 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
11468 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
11469 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
11470 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
11471 - BUG/MINOR: systemd: ignore daemon mode
11472 - CONTRIB: spoa_example: allow to compile outside HAProxy.
11473 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
11474 - CONTRIB: spoa_example: remove last dependencies on type "sample"
11475 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
11476 - CLEANUP: cache: reorder includes
11477 - MEDIUM: shctx: use unsigned int for len and block_count
11478 - MEDIUM: cache: "show cache" on the cli
11479 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
11480 - BUG/MEDIUM: cache: refcount forbids to free the objects
11481 - BUG/MEDIUM: cache fix cli_kws structure
11482 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
11483 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
11484 - MINOR: ssl: Don't disable early data handling if we could not write.
11485 - MINOR: pools: prepare functions to override malloc/free in pools
11486 - MINOR: pools: implement DEBUG_UAF to detect use after free
11487 - BUG/MEDIUM: threads/time: fix time drift correction
11488 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
11489 - MINOR: sample: Add "thread" sample fetch
11490 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
11491 - BUG/MINOR: stream: fix tv_request calculation for applets
11492 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
11493 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
11494 - MINOR: ssl: Handle reading early data after writing better.
11495 - MINOR: mux: Make sure every string is woken up after the handshake.
11496 - MEDIUM: cache: store sha1 for hashing the cache key
11497 - MINOR: http: implement the "http-request reject" rule
11498 - MINOR: h2: send RST_STREAM before GOAWAY on reject
11499 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
11500 - MINOR: h2: make use of client-fin timeout after GOAWAY
11501 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
11502 - MINOR: ssl: Handle early data with BoringSSL
11503 - BUG/MEDIUM: stream: always release the stream-interface on abort
11504 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
11505 - MINOR: cache: move the refcount decrease in the applet release
11506 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
11507 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
11508 - MINOR: config: Slightly change how parse_process_number works
11509 - MINOR: config: Export parse_process_number and use it wherever it's applicable
11510 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
11511 - MINOR: config: Add auto-increment feature for cpu-map
11512 - MINOR: config: Support partial ranges in cpu-map directive
11513 - MINOR:: config: Remove thread-map directive
11514 - MINOR: config: Add the threads support in cpu-map directive
11515 - MINOR: config: Add threads support for "process" option on "bind" lines
11516 - MEDIUM: listener: Bind listeners on a thread subset if specified
11517 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
11518 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
11519 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
11520 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
11521 - DOC: update the roadmap file with the latest changes merged in 1.8
11522 - DOC: fix mangled version in peers protocol documentation
11523 - DOC: add initial peers protovol v2.0 documentation.
11524 - DOC: mention William as maintainer of the cache and master-worker
11525 - DOC: add Christopher and Emeric as maintainers of the threads
11526 - MINOR: cache: replace a fprint() by an abort()
11527 - MEDIUM: cache: max-age configuration keyword
11528 - DOC: explain HTTP2 timeout behavior
11529 - DOC: cache: configuration and management
11530 - MAJOR: mworker: exits the master on failure
11531 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
11532 - MINOR: task: keep a pointer to the currently running task
11533 - MINOR: task: align the rq and wq locks
11534 - MINOR: fd: cache-align fdtab and fdcache locks
11535 - MINOR: buffers: cache-align buffer_wq_lock
11536 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
11537 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
11538 - CLEANUP: checks: remove 16 bytes of holes in struct check
11539 - CLEANUP: cache: more efficiently pack the struct cache
11540 - CLEANUP: fd: place the lock at the beginning of struct fdtab
11541 - CLEANUP: pools: align pools on a cache line
11542 - DOC: config: add a few bits about how to configure HTTP/2
11543 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
11544 - BUILD: Makefile: reorder object files by size
11545
Willy Tarreaucfe14662017-11-19 09:55:29 +0100115462017/11/19 : 1.8-rc4
11547 - BUG/MEDIUM: cache: does not cache if no Content-Length
11548 - BUILD: thread/pipe: fix build without threads
11549 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
11550 - MINOR: debug/flags: Add missing flags
11551 - MINOR: threads: Use __decl_hathreads to declare locks
11552 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
11553 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
11554 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
11555 - MINOR: ebtree/scope: add a function to find next node from a parent
11556 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
11557 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
11558 - BUG/MEDIUM: cache: use msg->sov to forward header
11559 - MINOR: cache: forward data with headers
11560 - MINOR: cache: disable cache if shctx_row_data_append fail
11561 - BUG/MINOR: threads: tid_bit must be a unsigned long
11562 - CLEANUP: tasks: Remove useless double test on rq_next
11563 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
11564 - MINOR: tools: add a function to dump a scope-aware tree to a file
11565 - MINOR: tools: improve the DOT dump of the ebtree
11566 - MINOR: tools: emphasize the node being worked on in the tree dump
11567 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
11568 - DOC: peers: Add a first version of peers protocol v2.1.
11569 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
11570 - MINOR: mworker: display an accurate error when the reexec fail
11571 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
11572 - BUG/MEDIUM: mworker: does not deinit anymore
11573 - BUG/MEDIUM: mworker: does not close inherited FD
11574 - MINOR: tests: add a python wrapper to test inherited fd
11575 - BUG/MINOR: Allocate the log buffers before the proxies startup
11576 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
11577 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
11578 - MINOR: applets: Use a bitfield to track applets activity per-thread
11579 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
11580 - MEDIUM: applets: Don't process more than 200 active applets at once
11581 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
11582 - MINOR: SSL: Store the ASN1 representation of client sessions.
11583 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
11584 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
11585
Willy Tarreau34650d52017-11-11 09:06:48 +0100115862017/11/11 : 1.8-rc3
11587 - BUILD: use MAXPATHLEN instead of NAME_MAX.
11588 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
11589 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
11590 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
11591 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
11592 - CLEANUP: checks: remove return statements in locked functions
11593 - BUG/MINOR: cli: add severity in "set server addr" parser
11594 - CLEANUP: server: get rid of return statements in the CLI parser
11595 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
11596 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
11597 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
11598 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
11599 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
11600 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
11601 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
11602 - BUG/MEDIUM: threads: don't try to free build option message on exit
11603 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
11604 - MINOR: add master-worker in the warning about nbproc
11605 - MINOR: mworker: allow pidfile in mworker + foreground
11606 - MINOR: mworker: write parent pid in the pidfile
11607 - MINOR: mworker: do not store child pid anymore in the pidfile
11608 - MINOR: ebtree: implement the scope-aware functions for eb32
11609 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
11610 - MINOR: ebtree: update the eb32sc parent node's scope on delete
11611 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
11612 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
11613 - MAJOR: task: make use of the scope-aware ebtree functions
11614 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
11615 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
11616 - MINOR: threads: use faster locks for the spin locks
11617 - MINOR: tasks: only visit filled task slots after processing them
11618 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
11619 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
11620 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
11621 - DOC: Add note about encrypted password CPU usage
11622 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
11623 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
11624 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
11625 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
11626 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
11627 - BUG/MEDIUM: h2: fix some wrong error codes on connections
11628 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
11629 - BUILD: enable USE_THREAD for Solaris build.
11630 - BUG/MEDIUM: h2: don't close the connection is there are data left
11631 - MINOR: h2: don't re-enable the connection's task when we're closing
11632 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
11633 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
11634 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
11635 - BUG/MINOR: h2: don't send GOAWAY on failed response
11636 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
11637 - BUG/MINOR: comp: fix compilation warning compiling without compression.
11638 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
11639 - BUG/MAJOR: threads/tasks: fix the scheduler again
11640 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
11641 - MINOR: ssl: Handle session resumption with TLS 1.3
11642 - MINOR: ssl: Spell 0x10101000L correctly.
11643 - MINOR: ssl: Handle sending early data to server.
11644 - BUILD: ssl: fix build of backend without ssl
11645 - BUILD: shctx: do not depend on openssl anymore
11646 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
11647 - BUG/MEDIUM: h2: reject non-3-digit status codes
11648 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
11649 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
11650 - BUG/MEDIUM: h2: split the function to send RST_STREAM
11651 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
11652 - MINOR: tools: don't use unlikely() in hex2i()
11653 - BUG/MEDIUM: h2: support orphaned streams
11654 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
11655 - CLEANUP: mux: remove the unused "release()" function
11656 - MINOR: cli: make "show fd" report the fd's thread mask
11657 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
11658 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
11659 - MEDIUM: http: always reject the "PRI" method
11660
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +0100116612017/11/03 : 1.8-rc2
11662 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
11663 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
11664 - MINOR: mux: Only define pipe functions on linux.
11665 - MINOR: cache: Remove useless test for nonzero.
11666 - MINOR: cache: Don't confuse act_return and act_parse_ret.
11667 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
11668 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
11669 - BUG/MAJOR: fix deadlock on healthchecks.
11670 - BUG/MINOR: thread: fix a typo in the debug code
11671 - BUILD: shctx: allow to be built without openssl
11672 - BUG/MEDIUM: cache: don't try to resolve wrong filters
11673 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
11674 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
11675 - BUG/MINOR: stdarg.h inclusion
11676 - BUG/MINOR: dns: fix missing lock protection on server.
11677 - BUG/MINOR: lua: fix missing lock protection on server.
11678 - BUILD: enable USE_THREAD for OpenBSD build.
11679 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
11680 - MINOR: thread: report multi-thread support in haproxy -vv
11681
Willy Tarreau901f75c2017-10-31 23:18:29 +0100116822017/10/31 : 1.8-rc1
11683 - BUG/MEDIUM: server: Allocate tmptrash before using it.
11684 - CONTRIB: trace: add the possibility to place trace calls in the code
11685 - CONTRIB: trace: try to display the function's return value on exit
11686 - CONTRIB: trace: report the base name only for file names
11687 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
11688 - MINOR: ssl: build with recent BoringSSL library
11689 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
11690 - BUG/MINOR: cli: restore "set ssl tls-key" command
11691 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
11692 - IMPORT: sha1: import SHA1 functions
11693 - MINOR: sample: add the sha1 converter
11694 - MINOR: sample: add the hex2i converter
11695 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
11696 - MINOR: ssl: don't abort after sending 16kB
11697 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
11698 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
11699 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
11700 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
11701 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
11702 - BUG/MINOR: checks: Don't forget to release the connection on error case.
11703 - MINOR: buffer: add the buffer input manipulation functions
11704 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
11705 - MEDIUM: cfgparse: post section callback
11706 - MEDIUM: cfgparse: post parsing registration
11707 - MINOR: lua: add uuid to the Class Proxy
11708 - MINOR: hlua: Add regex class
11709 - MINOR: http: Mark the 425 code as "Too Early".
11710 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
11711 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
11712 - MINOR: ssl: generated certificate is missing in switchctx early callback
11713 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
11714 - BUILD: Makefile: disable -Wunused-label
11715 - MINOR: ssl/proto_http: Add keywords to take care of early data.
11716 - BUG/MINOR: lua: const attribute of a string is overridden
11717 - MINOR: ssl: Don't abuse ssl_options.
11718 - MINOR: update proxy-protocol-v2 #define
11719 - MINOR: merge ssl_sock_get calls for log and ppv2
11720 - MINOR: add ALPN information to send-proxy-v2
11721 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
11722 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
11723 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
11724 - REORG: shctx: move lock functions and struct
11725 - MEDIUM: shctx: allow the use of multiple shctx
11726 - REORG: shctx: move ssl functions to ssl_sock.c
11727 - MEDIUM: shctx: separate ssl and shctx
11728 - MINOR: shctx: rename lock functions
11729 - MINOR: h1: store the status code in the H1 message
11730 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
11731 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
11732 - MINOR: action: Add trk_idx inline function
11733 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
11734 - MINOR: action: Add a function pointer in act_rule struct to check its validity
11735 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
11736 - MINOR: action: Add a functions to check http capture rules
11737 - MINOR: action: Factorize checks on rules calling check_ptr if defined
11738 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
11739 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
11740 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
11741 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
11742 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
11743 - MINOR: spoe: Move message encoding in its own function
11744 - MINOR: spoe: Add a type to qualify the message list during encoding
11745 - MINOR: spoe: Add a generic function to encode a list of SPOE message
11746 - MEDIUM: spoe/rules: Process "send-spoe-group" action
11747 - BUG/MINOR: dns: Fix CLI keyword declaration
11748 - MAJOR: dns: Refactor the DNS code
11749 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
11750 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
11751 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
11752 - MINOR: standard: Add memvprintf function
11753 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
11754 - MINOR: cli: Add "show startup-logs" command
11755 - MINOR: startup: Extend the scope the MODE_STARTING flag
11756 - MINOR: threads: Prepare makefile to link with pthread
11757 - MINOR: threads: Add THREAD_LOCAL macro
11758 - MINOR: threads: Add atomic-ops and plock includes in import dir
11759 - MEDIUM: threads: Add hathreads header file
11760 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
11761 - MINOR: threads: Add nbthread parameter
11762 - MEDIUM: threads: Adds a set of functions to handle sync-point
11763 - MAJOR: threads: Start threads to experiment multithreading
11764 - MINOR: threads: Define the sync-point inside run_poll_loop
11765 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
11766 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
11767 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
11768 - MEDIUM: threads/logs: Make logs thread-safe
11769 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
11770 - MAJOR: threads/fd: Make fd stuffs thread-safe
11771 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
11772 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
11773 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
11774 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
11775 - WIP: SQUASH WITH SYNC POINT
11776 - MAJOR: threads/task: handle multithread on task scheduler
11777 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
11778 - MEDIUM: threads/listeners: Make listeners thread-safe
11779 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
11780 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
11781 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
11782 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
11783 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
11784 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
11785 - MINOR: threads/sample: Change temp_smp into a thread local variable
11786 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
11787 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
11788 - MAJOR: threads/applet: Handle multithreading for applets
11789 - MAJOR: threads/peers: Make peers thread safe
11790 - MAJOR: threads/buffer: Make buffer wait queue thread safe
11791 - MEDIUM: threads/stream: Make streams list thread safe
11792 - MAJOR: threads/ssl: Make SSL part thread-safe
11793 - MEDIUM: threads/queue: Make queues thread-safe
11794 - MAJOR: threads/map: Make acls/maps thread safe
11795 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
11796 - MEDIUM: thread/vars: Make vars thread-safe
11797 - MEDIUM: threads/filters: Add init/deinit callback per thread
11798 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
11799 - MEDIUM: threads/compression: Make HTTP compression thread-safe
11800 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
11801 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
11802 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
11803 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
11804 - MEDIUM: threads/xref: Convert xref function to a thread safe model
11805 - MEDIUM: threads/tasks: Add lock around notifications
11806 - MEDIUM: thread/spoe: Make the SPOE thread-safe
11807 - MEDIUM: thread/dns: Make DNS thread-safe
11808 - MINOR: threads: Add thread-map config parameter in the global section
11809 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
11810 - MINOR: threads/checks: Set the task process_mask when a check is executed
11811 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
11812 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
11813 - MINOR: threads: Don't start when device a detection module is used
11814 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
11815 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
11816 - MAJOR: threads: Offically enable the threads support in HAProxy
11817 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
11818 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
11819 - BUILD: stick-tables: silence an uninitialized variable warning
11820 - BUG/MINOR: dns: Fix SRV records with the new thread code.
11821 - MINOR: ssl: Remove the global allow-0rtt option.
11822 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
11823 - CLEANUP: threads: rename process_mask to thread_mask
11824 - MINOR: h1: add a function to measure the trailers length
11825 - MINOR: threads: add a portable barrier for threads and non-threads
11826 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
11827 - BUG/MEDIUM: threads: Initialize the sync-point
11828 - MEDIUM: connection: start to introduce a mux layer between xprt and data
11829 - MINOR: connection: implement alpn registration of muxes
11830 - MINOR: mux: register the pass-through mux for any ALPN string
11831 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
11832 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
11833 - MINOR: connection: introduce conn_stream
11834 - MINOR: mux: add more methods to mux_ops
11835 - MINOR: connection: introduce the conn_stream manipulation functions
11836 - MINOR: mux_pt: implement remaining mux_ops methods
11837 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
11838 - MINOR: connection: make conn_stream users also check for per-stream error flag
11839 - MINOR: conn_stream: new shutr/w status flags
11840 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
11841 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
11842 - MINOR: connection: add cs_close() to close a conn_stream
11843 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
11844 - MEDIUM: connection: replace conn_full_close() with cs_close()
11845 - MEDIUM: connection: make mux->detach() release the connection
11846 - MEDIUM: stream: do not forcefully close the client connection anymore
11847 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
11848 - MEDIUM: connection: add a destroy callback
11849 - MINOR: session: release the listener with the session, not the stream
11850 - MEDIUM: session: make use of the connection's destroy callback
11851 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
11852 - MINOR: hpack: implement the HPACK Huffman table decoder
11853 - MINOR: hpack: implement the header tables management
11854 - MINOR: hpack: implement the decoder
11855 - MEDIUM: hpack: implement basic hpack encoding
11856 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
11857 - MINOR: h2: create a very minimalistic h2 mux
11858 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
11859 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
11860 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
11861 - MINOR: h2: create the h2c struct and allocate its pool
11862 - MINOR: h2: create the h2s struct and the associated pool
11863 - MINOR: h2: handle two extra stream states for errors
11864 - MINOR: h2: add a frame header descriptor for incoming frames
11865 - MEDIUM: h2: allocate and release the h2c context on connection init/end
11866 - MEDIUM: h2: implement basic recv/send/wake functions
11867 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
11868 - MEDIUM: h2: implement the mux buffer allocator
11869 - MINOR: h2: add the connection and stream flags listing the causes for blocking
11870 - MINOR: h2: add function h2s_id() to report a stream's ID
11871 - MINOR: h2: small function to know when the mux is busy
11872 - MINOR: h2: new function h2c_error to mark an error on the connection
11873 - MINOR: h2: new function h2s_error() to mark an error on a stream
11874 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
11875 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
11876 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
11877 - MINOR: h2: add stream lookup function based on the stream ID
11878 - MINOR: h2: create dummy idle and closed streams
11879 - MINOR: h2: add the function to create a new stream
11880 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
11881 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
11882 - MINOR: h2: also terminate the connection on shutr
11883 - MEDIUM: h2: properly consider all conditions for end of connection
11884 - MEDIUM: h2: wake the connection up for send on pending streams
11885 - MEDIUM: h2: start to implement the frames processing loop
11886 - MINOR: h2: add a function to send a GOAWAY error frame
11887 - MINOR: h2: match the H2 connection preface on init
11888 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
11889 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
11890 - MEDIUM: h2: process streams pending for sending
11891 - MINOR: h2: send a real SETTINGS frame based on the configuration
11892 - MEDIUM: h2: detect the presence of the first settings frame
11893 - MINOR: h2: create a stream parser for the demuxer
11894 - MINOR: h2: implement PING frames
11895 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
11896 - MINOR: h2: lookup the stream during demuxing
11897 - MEDIUM: h2: honor WINDOW_UPDATE frames
11898 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
11899 - MINOR: h2: handle CONTINUATION frames
11900 - MEDIUM: h2: partial implementation of h2_detach()
11901 - MEDIUM: h2: unblock a connection when its current stream detaches
11902 - MEDIUM: h2: basic processing of HEADERS frame
11903 - MEDIUM: h2: don't use trash to decode headers!
11904 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
11905 - MEDIUM: h2: send the H1 response body as DATA frames
11906 - MEDIUM: h2: skip the response trailers if any
11907 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
11908 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
11909 - MEDIUM: h2: handle request body in DATA frames
11910 - MINOR: h2: handle RST_STREAM frames
11911 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
11912 - MINOR: h2: use a common function to signal some and all streams.
11913 - MEDIUM: h2: handle GOAWAY frames
11914 - MINOR: h2: centralize the check for the idle streams
11915 - MINOR: h2: centralize the check for the half-closed(remote) streams
11916 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
11917 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
11918 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
11919 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
11920 - MEDIUM: h2: apply a timeout to h2 connections
11921 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
11922 - MEDIUM: shctx: forbid shctx to read more than expected
11923 - MEDIUM: cache: configuration parsing and initialization
11924 - MEDIUM: cache: store objects in cache
11925 - MEDIUM: cache: deliver objects from cache
11926
Willy Tarreauf08137c2017-10-22 10:13:45 +0200119272017/10/22 : 1.8-dev3
11928 - REORG: ssl: move defines and methodVersions table upper
11929 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
11930 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
11931 - MEDIUM: ssl: disable SSLv3 per default for bind
11932 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
11933 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
11934 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
11935 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
11936 - BUG/MEDIUM: build without openssl broken
11937 - BUG/MINOR: warning: need_resend may be used uninitialized
11938 - BUG/MEDIUM: misplaced exit and wrong exit code
11939 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
11940 - BUILD: scripts: make publish-release support bare repositories
11941 - BUILD: scripts: add an automatic mode for publish-release
11942 - BUILD: scripts: add a "quiet" mode to publish-release
11943 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
11944 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
11945 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
11946 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
11947 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
11948 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
11949 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
11950 - BUG/MAJOR: server: Segfault after parsing server state file.
11951 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
11952 - scripts: create-release pass -n to tail
11953 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
11954 - BUG/MEDIUM: fix segfault when no argument to -x option
11955 - MINOR: warning on multiple -x
11956 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
11957 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
11958 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
11959 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
11960 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
11961 - DOC: fix references to the section about the unix socket
11962 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
11963 - MAJOR: task: task scheduler rework.
11964 - MINOR: task/stream: tasks related to a stream must be init by the caller.
11965 - MINOR: queue: Change pendconn_get_next_strm into private function
11966 - MINOR: backends: Change get_server_sh/get_server_uh into private function
11967 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
11968 - MEDIUM: stream: make stream_new() always set the target and analysers
11969 - MINOR: frontend: initialize HTTP layer after the debugging code
11970 - MINOR: connection: add a .get_alpn() method to xprt_ops
11971 - MINOR: ssl: add a get_alpn() method to ssl_sock
11972 - MINOR: frontend: retrieve the ALPN name when available
11973 - MINOR: frontend: report the connection's ALPN in the debug output
11974 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
11975 - MINOR: connection: send data before receiving
11976 - MAJOR: applet: applet scheduler rework.
11977 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
11978 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
11979 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
11980 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
11981 - MINOR: compression: Use a memory pool to allocate compression states
11982 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
11983 - DOC: fix references to the section about time format.
11984 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
11985 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
11986 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
11987 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
11988 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
11989 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
11990 - MINOR: peers: Add additional information to stick-table definition messages.
11991 - BUG/MINOR: http: properly handle all 1xx informational responses
11992 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
11993 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
11994 - CLEANUP: hdr_idx: make some function arguments const where possible
11995 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
11996 - BUG/MINOR: lua: In error case, the safe mode is not removed
11997 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
11998 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
11999 - BUG/MEDIUM: lua: bad memory access
12000 - BUG/MINOR: Lua: variable already initialized
12001 - DOC: update CONTRIBUTING regarding optional parts and message format
12002 - DOC: update the list of OpenSSL versions in the README
12003 - BUG/MINOR: http: Set the response error state in http_sync_res_state
12004 - MINOR: http: Reorder/rewrite checks in http_resync_states
12005 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
12006 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
12007 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
12008 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
12009 - BUG/MINOR: contrib/modsecurity: BSD build fix
12010 - BUG/MINOR: contrib/mod_defender: build fix
12011 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
12012 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
12013 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
12014 - MINOR: tools: add a portable timegm() alternative
12015 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
12016 - DOC: Updated 51Degrees git URL to point to a stable version.
12017 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
12018 - MINOR: memory: remove macros
12019 - BUG/MINOR: lua: Fix Server.get_addr() port values
12020 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
12021 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
12022 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
12023 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
12024 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
12025 - MINOR: task: always preinitialize the task's timeout in task_init()
12026 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
12027 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
12028 - MINOR: lua: Add proxy as member of proxy object.
12029 - DOC: lua: Proxy class doc update
12030 - MINOR: lua: Add lists of frontends and backends
12031 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
12032 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
12033 - MINOR: ssl: add a new error codes for wrong server certificates
12034 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
12035 - MINOR: ssl: add "no-ca-names" parameter for bind
12036 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
12037 - DOC: fix alphabetical order of "show commands" in management.txt
12038 - MINOR: listener: add a function to return a listener's state as a string
12039 - MINOR: cli: add a new "show fd" command
12040 - BUG/MEDIUM: ssl: Fix regression about certificates generation
12041 - MINOR: Add server port field to server state file.
12042 - MINOR: ssl: allow to start without certificate if strict-sni is set
12043 - MINOR: dns: Cache previous DNS answers.
12044 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
12045 - Add a few functions to do unaligned access.
12046 - MINOR: dns: Handle SRV records.
12047 - MINOR: check: Fix checks when using SRV records.
12048 - MINOR: doc: Document SRV label usage.
12049 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
12050 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
12051 - BUILD/MINOR: build without openssl still broken
12052 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
12053 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
12054 - MINOR: init: Fix CPU affinity setting on FreeBSD.
12055 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
12056 - MINOR: dns: update record dname matching for SRV query types
12057 - MINOR: dns: update dns response buffer reading pointer due to SRV record
12058 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
12059 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
12060 - MINOR: dns: ability to use a SRV resolution for multiple backends
12061 - MINOR: dns: enable caching of responses for server set by a SRV record
12062 - MINOR: dns: new dns record type (RTYPE) for OPT
12063 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
12064 - MINOR: dns: default "hold obsolete" timeout set to 0
12065 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
12066 - MINOR: session: add a streams field to the session struct
12067 - MINOR: stream: link the stream to its session
12068 - MEDIUM: session: do not free a session until no stream references it
12069 - MINOR: ist: implement very simple indirect strings
12070 - TESTS: ist: add a test file for the functions
12071 - MINOR: http: export some of the HTTP parser macros
12072 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
12073 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
12074 - MINOR: dns: Maximum DNS udp payload set to 8192
12075 - MINOR: dns: automatic reduction of DNS accpeted payload size
12076 - MINOR: dns: make SRV record processing more verbose
12077 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
12078 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
12079 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
12080 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
12081 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
12082 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
12083 - MINOR: lua: properly process the contents of the content-length field
12084 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
12085 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
12086 - OPTIM: lua: don't add "Connection: close" on the response
12087 - REORG/MEDIUM: connection: introduce the notion of connection handle
12088 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
12089 - MEDIUM: connection: get rid of data->init() which was not for data
12090 - MEDIUM: stream: make stream_new() allocate its own task
12091 - CLEANUP: listener: remove the unused handler field
12092 - MEDIUM: session: add a pointer to a struct task in the session
12093 - MINOR: stream: provide a new stream creation function for connections
12094 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
12095 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
12096 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
12097 - DOC: add CLI info on privilege levels
12098 - DOC: Refer to Mozilla TLS info / config generator
12099 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
12100 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
12101 - DOC: Add note about "* " prefix in CSV stats
12102 - CLEANUP: memory: Remove unused function pool_destroy
12103 - MINOR: listeners: Change listener_full and limit_listener into private functions
12104 - MINOR: listeners: Change enable_listener and disable_listener into private functions
12105 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
12106 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
12107 - MINOR: backends: Make get_server_* functions explicitly static
12108 - MINOR: applet: Check applets_active_queue before processing applets queue
12109 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
12110 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
12111 - MINOR: logs: Use dedicated function to init/deinit log buffers
12112 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
12113 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
12114 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
12115 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
12116 - MINOR: fd: Add fd_active function
12117 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
12118 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
12119 - MINOR: freq_ctr: Return the new value after an update
12120 - MEDIUM: check: server states and weight propagation re-work
12121 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
12122 - MINOR: fd: Add fd_update_events function
12123 - MINOR: polling: Use fd_update_events to update events seen for a fd
12124 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
12125 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
12126 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
12127 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
12128 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
12129 - MINOR: xref: Add a new xref system
12130 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
12131 - MINOR: tasks: Move Lua notification from Lua to tasks
12132 - MINOR: net_helper: Inline functions meant to be inlined.
12133 - MINOR: cli: add socket commands and config to prepend informational messages with severity
12134 - MINOR: add severity information to cli feedback messages
12135 - BUILD: Makefile: add a function to detect support by the compiler of certain options
12136 - BUILD: Makefile: shut certain gcc/clang stupid warnings
12137 - BUILD: Makefile: improve detection of support for compiler warnings
12138 - MINOR: peers: don't reference the incoming listener on outgoing connections
12139 - MINOR: frontend: don't retrieve ALPN on the critical path
12140 - MINOR: protocols: always pass a "port" argument to the listener creation
12141 - MINOR: protocols: register the ->add function and stop calling them directly
12142 - MINOR: unix: remove the now unused proto_uxst.h file
12143 - MINOR: listeners: new function create_listeners
12144 - MINOR: listeners: make listeners count consistent with reality
12145 - MEDIUM: session: take care of incrementing/decrementing jobs
12146 - MINOR: listener: new function listener_release
12147 - MINOR: session: small cleanup of conn_complete_session()
12148 - MEDIUM: session: factor out duplicated code for conn_complete_session
12149 - MEDIUM: session: count the frontend's connections at a single place
12150 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
12151 - BUG/MINOR: compression: Check response headers before http-response rules eval
12152 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
12153 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
12154 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
12155 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
12156 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
12157 - MINOR: tools: make my_htonll() more efficient on x86_64
12158 - MINOR: buffer: add b_del() to delete a number of characters
12159 - MINOR: buffer: add b_end() and b_to_end()
12160 - MINOR: net_helper: add functions to read from vectors
12161 - MINOR: net_helper: add write functions
12162 - MINOR: net_helper: add 64-bit read/write functions
12163 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
12164 - MINOR: ist: add a macro to ease const array initialization
12165 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
12166 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
12167 - BUG/MINOR: log: fixing small memory leak in error code path.
12168 - BUG/MINOR: contrib/halog: fixing small memory leak
12169 - BUG/MEDIUM: tcp/http: set-dst-port action broken
12170 - CLEANUUP: checks: don't set conn->handle.fd to -1
12171 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
12172 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
12173 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
12174 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
12175 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
12176 - CLEANUP: checks: remove misleading comments and statuses for external process
12177 - CLEANUP: checks: don't report report the fork() error twice
12178 - CLEANUP: checks: do not allocate a connection for process checks
12179 - TESTS: checks: add a simple test config for external checks
12180 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
12181 - TESTS: checks: add a simple test config for tcp-checks
12182 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
12183 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
12184 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
12185 - MEDIUM: checks: do not allocate a permanent connection anymore
12186 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
12187 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
12188 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
12189 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
12190 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
12191 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
12192 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
12193 - MINOR: session: remove the list of streams from struct session
12194 - DOC: fix some typos
12195 - MINOR: server: add the srv_queue() sample fetch method
12196 - MINOR: payload: add new sample fetch functions to process distcc protocol
12197 - MAJOR: servers: propagate server status changes asynchronously.
12198 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
12199 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
12200 - MINOR: server: Handle weight increase in consistent hash.
12201 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
12202 - BUG/MINOR: tools: fix my_htonll() on x86_64
12203 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
12204 - BUG/MAJOR: lua: scheduled task is freezing.
12205 - MINOR: buffer: add bo_del() to delete a number of characters from output
12206 - MINOR: buffer: add a function to match against string patterns
12207 - MINOR: buffer: add two functions to inject data into buffers
12208 - MINOR: buffer: add buffer_space_wraps()
12209 - REORG: channel: finally rename the last bi_* / bo_* functions
12210 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
12211 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
12212 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
12213 - MINOR: ist: add ist0() to add a trailing zero to a string.
12214 - BUG/MEDIUM: log: check result details truncated.
12215 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
12216 - REORG: http: move some very http1-specific parts to h1.{c,h}
12217 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
12218 - REORG: http: move the HTTP/1 header block parser to h1.c
12219 - MEDIUM: http: make the chunk size parser only depend on the buffer
12220 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
12221 - MINOR: h1: add struct h1m for basic HTTP/1 messages
12222 - MINOR: http: add very simple header management based on double strings
12223 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
12224 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
12225 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
12226 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
12227 - MINOR: connection: add conn_stop_tracking() to disable tracking
12228 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
12229 - MINOR: unix: use conn_full_close() instead of conn_force_close()
12230 - MINOR: checks: use conn_full_close() instead of conn_force_close()
12231 - MINOR: session: use conn_full_close() instead of conn_force_close()
12232 - MINOR: stream: use conn_full_close() instead of conn_force_close()
12233 - MINOR: stream: use conn_full_close() instead of conn_force_close()
12234 - MINOR: backend: use conn_full_close() instead of conn_force_close()
12235 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
12236 - MINOR: connection: remove conn_force_close()
12237 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
12238
Willy Tarreauf57a29a2017-06-02 15:59:51 +0200122392017/06/02 : 1.8-dev2
12240 - CLEANUP: server: moving netinet/tcp.h inclusion
12241 - DOC: changed "block"(deprecated) examples to http-request deny
12242 - DOC: add few comments to examples.
12243 - DOC: update sample code for PROXY protocol
12244 - DOC: mention lighttpd 1.4.46 implements PROXY
12245 - MINOR server: Restrict dynamic cookie check to the same proxy.
12246 - DOC: stick-table is available in frontend sections
12247 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
12248 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
12249 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
12250 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
12251 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
12252 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
12253 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
12254 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
12255 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
12256 - BUG/MEDIUM: servers: unbreak server weight propagation
12257 - MINOR: lua: ensure the memory allocator is used all the time
12258 - MINOR: cli: Add a command to send listening sockets.
12259 - MINOR: global: Add an option to get the old listening sockets.
12260 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
12261 - MINOR: doc: document the -x flag
12262 - MINOR: proxy: Don't close FDs if not our proxy.
12263 - MINOR: socket transfer: Set a timeout on the socket.
12264 - MINOR: systemd wrapper: add support for passing the -x option.
12265 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
12266 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
12267 - CLEANUP: logs: typo: simgle => single
12268 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
12269 - MEDIUM: config: don't check config validity when there are fatal errors
12270 - BUG/MAJOR: Use -fwrapv.
12271 - BUG/MINOR: server: don't use "proxy" when px is really meant.
12272 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
12273 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
12274 - MINOR: server: Extract the code responsible of copying default-server settings.
12275 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
12276 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
12277 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
12278 - DOC: Add documentation for new "server-template" keyword.
12279 - DOC: add layer 4 links/cross reference to "block" keyword.
12280 - DOC: errloc/errorloc302/errorloc303 missing status codes.
12281 - BUG/MEDIUM: lua: memory leak
12282 - CLEANUP: lua: remove test
12283 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
12284 - BUG/MINOR: change header-declared function to static inline
12285 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
12286 - MINOR: Add binary encoding request header sample fetch
12287 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
12288 - MINOR: Add ModSecurity wrapper as contrib
12289 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
12290 - DOC: update RFC references
12291 - CONTRIB: tcploop: add action "X" to execute a command
12292 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
12293 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
12294 - BUG/MINOR: checks: don't send proxy protocol with agent checks
12295 - MINOR: ssl: add prefer-client-ciphers
12296 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
12297 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
12298 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
12299 - MINOR: ssl: support TLSv1.3 for bind and server
12300 - MINOR: ssl: show methods supported by openssl
12301 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
12302 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
12303 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
12304 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
12305 - MINOR: sample: Add b64dec sample converter
12306 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
12307 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
12308 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
12309 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
12310 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
12311 - MAJOR: ssl: add openssl async mode support
12312 - MEDIUM: ssl: handle multiple async engines
12313 - MINOR: boringssl: basic support for OCSP Stapling
12314 - MEDIUM: mworker: replace systemd mode by master worker mode
12315 - MEDIUM: mworker: handle reload and signals
12316 - MEDIUM: mworker: wait mode on reload failure
12317 - MEDIUM: mworker: try to guess the next stats socket to use with -x
12318 - MEDIUM: mworker: exit-on-failure option
12319 - MEDIUM: mworker: workers exit when the master leaves
12320 - DOC: add documentation for the master-worker mode
12321 - MEDIUM: systemd: Type=forking in unit file
12322 - MAJOR: systemd-wrapper: get rid of the wrapper
12323 - MINOR: log: Add logurilen tunable.
12324 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
12325 - MINOR: dns: smallest DNS fqdn size
12326 - MINOR: dns: functions to manage memory for a DNS resolution structure
12327 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
12328 - REORG: dns: dns_option structure, storage of hostname_dn
12329 - MINOR: dns: new snr_check_ip_callback function
12330 - MAJOR: dns: save a copy of the DNS response in struct resolution
12331 - MINOR: dns: implement a LRU cache for DNS resolutions
12332 - MINOR: dns: make 'ancount' field to match the number of saved records
12333 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
12334 - MAJOR/REORG: dns: DNS resolution task and requester queues
12335 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
12336 - MINOR: Add Mod Defender integration as contrib
12337 - CLEANUP: str2mask return code comment: non-zero -> zero.
12338 - MINOR: tools: make debug_hexdump() use a const char for the string
12339 - MINOR: tools: make debug_hexdump() take a string prefix
12340 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
12341
Willy Tarreau7b677262017-04-03 09:27:49 +0200123422017/04/03 : 1.8-dev1
12343 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
12344 - BUG/MINOR: stats: make field_str() return an empty string on NULL
12345 - DOC: Spelling fixes
12346 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
12347 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
12348 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
12349 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
12350 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
12351 - BUG/MAJOR: stream: fix session abort on resource shortage
12352 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
12353 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
12354 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
12355 - DOC: Fix map table's format
12356 - DOC: Added 51Degrees conv and fetch functions to documentation.
12357 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
12358 - DOC: mention that req_tot is for both frontends and backends
12359 - BUG/MEDIUM: variables: some variable name can hide another ones
12360 - MINOR: lua: Allow argument for actions
12361 - BUILD: rearrange target files by build time
12362 - CLEANUP: hlua: just indent functions
12363 - MINOR: lua: give HAProxy variable access to the applets
12364 - BUG/MINOR: stats: fix be/sessions/max output in html stats
12365 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
12366 - DOC: lua: Documentation about some entry missing
12367 - DOC: lua: Add documentation about variable manipulation from applet
12368 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
12369 - DOC: Add undocumented argument of the trace filter
12370 - DOC: Fix some typo in SPOE documentation
12371 - MINOR: cli: Remove useless call to bi_putchk
12372 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
12373 - MINOR: applet: Count number of (active) applets
12374 - MINOR: task: Rename run_queue and run_queue_cur counters
12375 - BUG/MEDIUM: stream: Save unprocessed events for a stream
12376 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
12377 - BUILD/MEDIUM: Fixing the build using LibreSSL
12378 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
12379 - SCRIPTS: git-show-backports: fix a harmless typo
12380 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
12381 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
12382 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
12383 - CLEANUP: applet/table: add an "action" entry in ->table context
12384 - CLEANUP: applet: remove the now unused appctx->private field
12385 - DOC: lua: documentation about time parser functions
12386 - DOC: lua: improve links
12387 - DOC: lua: section declared twice
12388 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
12389 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
12390 - BUG/MINOR: cli: "show cli sockets" would always report process 64
12391 - CLEANUP: lua: rename one of the lua appctx union
12392 - BUG/MINOR: lua/cli: bad error message
12393 - MEDIUM: lua: use memory pool for hlua struct in applets
12394 - MINOR: lua/signals: Remove Lua part from signals.
12395 - DOC: cli: show cli sockets
12396 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
12397 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
12398 - CLEANUP: applet: group all CLI contexts together
12399 - CLEANUP: stats: move a misplaced stats context initialization
12400 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
12401 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
12402 - MINOR: appctx/cli: remove the env entry from the appctx union
12403 - MINOR: appctx/cli: remove the "be" entry from the appctx union
12404 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
12405 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
12406 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
12407 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
12408 - MINOR/DOC: lua: just precise one thing
12409 - DOC: fix small typo in fe_id (backend instead of frontend)
12410 - BUG/MINOR: Fix the sending function in Lua's cosocket
12411 - BUG/MINOR: lua: memory leak executing tasks
12412 - BUG/MINOR: lua: bad return code
12413 - BUG/MINOR: lua: memleak when Lua/cli fails
12414 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
12415 - CLEANUP: haproxy: statify unexported functions
12416 - MINOR: haproxy: add a registration for build options
12417 - CLEANUP: wurfl: use the build options list to report it
12418 - CLEANUP: 51d: use the build options list to report it
12419 - CLEANUP: da: use the build options list to report it
12420 - CLEANUP: namespaces: use the build options list to report it
12421 - CLEANUP: tcp: use the build options list to report transparent modes
12422 - CLEANUP: lua: use the build options list to report it
12423 - CLEANUP: regex: use the build options list to report the regex type
12424 - CLEANUP: ssl: use the build options list to report the SSL details
12425 - CLEANUP: compression: use the build options list to report the algos
12426 - CLEANUP: auth: use the build options list to report its support
12427 - MINOR: haproxy: add a registration for post-check functions
12428 - CLEANUP: checks: make use of the post-init registration to start checks
12429 - CLEANUP: filters: use the function registration to initialize all proxies
12430 - CLEANUP: wurfl: make use of the late init registration
12431 - CLEANUP: 51d: make use of the late init registration
12432 - CLEANUP: da: make use of the late init registration code
12433 - MINOR: haproxy: add a registration for post-deinit functions
12434 - CLEANUP: wurfl: register the deinit function via the dedicated list
12435 - CLEANUP: 51d: register the deinitialization function
12436 - CLEANUP: da: register the deinitialization function
12437 - CLEANUP: wurfl: move global settings out of the global section
12438 - CLEANUP: 51d: move global settings out of the global section
12439 - CLEANUP: da: move global settings out of the global section
12440 - MINOR: cfgparse: add two new functions to check arguments count
12441 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
12442 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
12443 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
12444 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
12445 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
12446 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
12447 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
12448 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
12449 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
12450 - MINOR: tcp-rules: check that the listener exists before updating its counters
12451 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
12452 - MINOR: listener: move the transport layer pointer to the bind_conf
12453 - MEDIUM: move listener->frontend to bind_conf->frontend
12454 - MEDIUM: ssl: remote the proxy argument from most functions
12455 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
12456 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
12457 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
12458 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
12459 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
12460 - MINOR: connection: add a minimal transport layer registration system
12461 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
12462 - CLEANUP: connection: unexport raw_sock and ssl_sock
12463 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
12464 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
12465 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
12466 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
12467 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
12468 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
12469 - BUG/MINOR: systemd: potential zombie processes
12470 - DOC: Add timings events schemas
12471 - BUILD: lua: build failed on FreeBSD.
12472 - MINOR: samples: add xx-hash functions
12473 - MEDIUM: regex: pcre2 support
12474 - BUG/MINOR: option prefer-last-server must be ignored in some case
12475 - MINOR: stats: Support "select all" for backend actions
12476 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
12477 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
12478 - BUG/MINOR: http: report real parser state in error captures
12479 - BUILD: scripts: automatically update the branch in version.h when releasing
12480 - MINOR: tools: add a generic hexdump function for debugging
12481 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
12482 - MINOR: http: custom status reason.
12483 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
12484 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
12485 - BUG/MINOR: tools: fix off-by-one in port size check
12486 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
12487 - MEDIUM: server: split the address and the port into two different fields
12488 - MINOR: tools: make str2sa_range() return the port in a separate argument
12489 - MINOR: server: take the destination port from the port field, not the addr
12490 - MEDIUM: server: disable protocol validations when the server doesn't resolve
12491 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
12492 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
12493 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
12494 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
12495 - MINOR: proto_http.c 502 error txt typo.
12496 - DOC: add deprecation notice to "block"
12497 - MINOR: compression: fix -vv output without zlib/slz
12498 - BUG/MINOR: Reset errno variable before calling strtol(3)
12499 - MINOR: ssl: don't show prefer-server-ciphers output
12500 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
12501 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
12502 - MAJOR: ssl: bind configuration per certificat
12503 - MINOR: ssl: add curve suite for ECDHE negotiation
12504 - MINOR: checks: Add agent-addr config directive
12505 - MINOR: cli: Add possiblity to change agent config via CLI/socket
12506 - MINOR: doc: Add docs for agent-addr configuration variable
12507 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
12508 - BUILD: ssl: fix to build (again) with boringssl
12509 - BUILD: ssl: fix build on OpenSSL 1.0.0
12510 - BUILD: ssl: silence a warning reported for ERR_remove_state()
12511 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
12512 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
12513 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
12514 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
12515 - MINOR: server: extend the flags to 32 bits
12516 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
12517 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
12518 - BUG/MAJOR: dns: restart sockets after fork()
12519 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
12520 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
12521 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
12522 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
12523 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
12524 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
12525 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
12526 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
12527 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
12528 - MINOR: http: don't close when redirect location doesn't start with "/"
12529 - MEDIUM: boringssl: support native multi-cert selection without bundling
12530 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
12531 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
12532 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
12533 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
12534 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
12535 - MEDIUM: ssl: remove ssl-options from crt-list
12536 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
12537 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
12538 - MINOR: ssl: improved cipherlist captures
12539 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
12540 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
12541 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
12542 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
12543 - MINOR: spoe: Remove SPOE details from the appctx structure
12544 - MINOR: spoe: Add status code in error variable instead of hardcoded value
12545 - MINOR: spoe: Send a log message when an error occurred during event processing
12546 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
12547 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
12548 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
12549 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
12550 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
12551 - MAJOR: spoe: refactor the filter to clean up the code
12552 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
12553 - REORG: spoe: Move struct and enum definitions in dedicated header file
12554 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
12555 - MINOR: spoe: Improve implementation of the payload fragmentation
12556 - MINOR: spoe: Add support of negation for options in SPOE configuration file
12557 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
12558 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
12559 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
12560 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
12561 - DOC: spoe: Update SPOE documentation to reflect recent changes
12562 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
12563 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
12564 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
12565 - BUG/MINOR: Fix "get map <map> <value>" CLI command
12566 - MINOR: Add nbsrv sample converter
12567 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
12568 - MINOR: Add hostname sample fetch
12569 - CLEANUP: Remove comment that's no longer valid
12570 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
12571 - MINOR: http-request tarpit deny_status.
12572 - CLEANUP: http: make http_server_error() not set the status anymore
12573 - MEDIUM: stats: Add JSON output option to show (info|stat)
12574 - MEDIUM: stats: Add show json schema
12575 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
12576 - MINOR: server: Add dynamic session cookies.
12577 - MINOR: cli: Let configure the dynamic cookies from the cli.
12578 - BUG/MINOR: checks: attempt clean shutw for SSL check
12579 - CONTRIB: tcploop: make it build on FreeBSD
12580 - CONTRIB: tcploop: fix time format to silence build warnings
12581 - CONTRIB: tcploop: report action 'K' (kill) in usage message
12582 - CONTRIB: tcploop: fix connect's address length
12583 - CONTRIB: tcploop: use the trash instead of NULL for recv()
12584 - BUG/MEDIUM: listener: do not try to rebind another process' socket
12585 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
12586 - CLEANUP: config: Typo in comment.
12587 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
12588 - TESTS: add a test configuration to stress handshake combinations
12589 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
12590 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
12591 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
12592 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
12593 - BUG: payload: fix payload not retrieving arbitrary lengths
12594 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
12595 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
12596 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
12597 - MINOR: doc: 2.4. Examples should be 2.5. Examples
12598 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
12599 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
12600 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
12601 - OPTIM: poll: enable support for POLLRDHUP
12602 - MINOR: kqueue: exclusively rely on the kqueue returned status
12603 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
12604 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
12605 - DOC/MINOR: Fix typos in proxy protocol doc
12606 - DOC: Protocol doc: add checksum, TLV type ranges
12607 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
12608 - DOC: Protocol doc: add noop TLV
12609 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
12610 - MINOR: dns: improve DNS response parsing to use as many available records as possible
12611 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
12612 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
12613 - MINOR: server: Make 'default-server' support 'backup' keyword.
12614 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
12615 - CLEANUP: server: code alignement.
12616 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
12617 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
12618 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
12619 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
12620 - CLEANUP: server: code alignement.
12621 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
12622 - MINOR: server: Make 'default-server' support 'ssl' keyword.
12623 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
12624 - CLEANUP: server: code alignement.
12625 - MINOR: server: Make 'default-server' support 'verify' keyword.
12626 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
12627 - MINOR: server: Make 'default-server' support 'check' keyword.
12628 - MINOR: server: Make 'default-server' support 'track' setting.
12629 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
12630 - MINOR: server: Make 'default-server' support 'redir' keyword.
12631 - MINOR: server: Make 'default-server' support 'observe' keyword.
12632 - MINOR: server: Make 'default-server' support 'cookie' keyword.
12633 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
12634 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
12635 - MINOR: server: Make 'default-server' support 'namespace' keyword.
12636 - MINOR: server: Make 'default-server' support 'source' keyword.
12637 - MINOR: server: Make 'default-server' support 'sni' keyword.
12638 - MINOR: server: Make 'default-server' support 'addr' keyword.
12639 - MINOR: server: Make 'default-server' support 'disabled' keyword.
12640 - MINOR: server: Add 'no-agent-check' server keyword.
12641 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
12642 - MINOR: doc: fix use-server example (imap vs mail)
12643 - BUG/MEDIUM: tcp: don't require privileges to bind to device
12644 - BUILD: make the release script use shortlog for the final changelog
12645 - BUILD: scripts: fix typo in announce-release error message
12646 - CLEANUP: time: curr_sec_ms doesn't need to be exported
12647 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
12648 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
12649 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
12650 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
12651 - CLEANUP: http: Remove channel_congested function
12652 - CLEANUP: buffers: Remove buffer_bounce_realign function
12653 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
12654 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
12655 - MINOR: http: Add debug messages when HTTP body analyzers are called
12656 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
12657 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
12658 - DOC: fix parenthesis and add missing "Example" tags
12659 - DOC: update the contributing file
12660 - DOC: log-format/tcplog/httplog update
12661 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
12662
Willy Tarreau0e658fb2016-11-25 16:55:50 +0100126632016/11/25 : 1.8-dev0
12664
Willy Tarreaue59fcdd2016-11-25 16:39:17 +0100126652016/11/25 : 1.7.0
12666 - SCRIPTS: make publish-release also copy the new SPOE doc
12667 - BUILD: http: include types/sample.h in proto_http.h
12668 - BUILD: debug/flags: remove test for SF_COMP_READY
12669 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
12670 - MINOR: lua: add function which return true if the channel is full.
12671 - MINOR: lua: add ip addresses and network manipulation function
12672 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
12673 - CONTRIB: tcploop: implement fork()
12674 - CONTRIB: tcploop: implement logging when called with -v
12675 - CONTRIB: tcploop: update the usage output
12676 - CONTRIB: tcploop: support sending plain strings
12677 - CONTRIB: tcploop: don't report failed send() or recv()
12678 - CONTRIB: tcploop: add basic loops via a jump instruction
12679 - BUG/MEDIUM: channel: bad unlikely macro
12680 - CLEANUP: lua: move comment
12681 - CLEANUP: lua: control executed twice
12682 - BUG/MEDIUM: ssl: Store certificate filename in a variable
12683 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
12684 - CLEANUP: ssl: Remove goto after return dead code
12685 - CLEANUP: ssl: Fix bind keywords name in comments
12686 - DOC: ssl: Use correct wording for ca-sign-pass
12687 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
12688 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
12689 - MINOR: cli: add private pointer and release function
12690 - MEDIUM: lua: Add cli handler for Lua
12691 - BUG/MEDIUM: connection: check the control layer before stopping polling
12692 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
12693 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
12694 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
12695 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
12696 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
12697 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
12698 - MINOR: spoe: Remove useless 'timeout ack' option
12699 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
12700 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
12701 - MINOR: spoe: Add "option set-on-error" statement
12702 - MINOR: stats: correct documentation of process ID for typed output
12703 - BUILD: contrib: fix ip6range build on Centos 7
12704 - BUILD: fix build on Solaris 10/11
12705 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
12706 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
12707 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
12708 - MINOR: connection: add a few functions to report the data and xprt layers' names
12709 - MINOR: connection: add names for transport and data layers
12710 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
12711 - REORG: cli: split dumpstats.h in stats.h and cli.h
12712 - REORG: cli: move ssl CLI functions to ssl_sock.c
12713 - REORG: cli: move map and acl code to map.c
12714 - REORG: cli: move show stat resolvers to dns.c
12715 - MINOR: cli: create new function cli_has_level() to validate permissions
12716 - MINOR: server: create new function cli_find_server() to find a server
12717 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
12718 - REORG: cli: move 'set server' to server.c
12719 - REORG: cli: move 'show pools' to memory.c
12720 - REORG: cli: move 'show servers' to proxy.c
12721 - REORG: cli: move 'show sess' to stream.c
12722 - REORG: cli: move 'show backend' to proxy.c
12723 - REORG: cli: move get/set weight to server.c
12724 - REORG: cli: move "show stat" to stats.c
12725 - REORG: cli: move "show info" to stats.c
12726 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
12727 - REORG: cli: move table dump/clear/set to stick_table.c
12728 - REORG: cli: move "show errors" out of cli.c
12729 - REORG: cli: make "show env" also use the generic keyword registration
12730 - REORG: cli: move "set timeout" to its own handler
12731 - REORG: cli: move "clear counters" to stats.c
12732 - REORG: cli: move "set maxconn global" to its own handler
12733 - REORG: cli: move "set maxconn server" to server.c
12734 - REORG: cli: move "set maxconn frontend" to proxy.c
12735 - REORG: cli: move "shutdown sessions server" to stream.c
12736 - REORG: cli: move "shutdown session" to stream.c
12737 - REORG: cli: move "shutdown frontend" to proxy.c
12738 - REORG: cli: move "{enable|disable} frontend" to proxy.c
12739 - REORG: cli: move "{enable|disable} server" to server.c
12740 - REORG: cli: move "{enable|disable} health" to server.c
12741 - REORG: cli: move "{enable|disable} agent" to server.c
12742 - REORG: cli: move the "set rate-limit" functions to their own parser
12743 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
12744 - CLEANUP: cli: simplify the request parser a little bit
12745 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
12746 - BUILD: server: remove a build warning introduced by latest series
12747 - BUG/MINOR: log-format: uncatched memory allocation functions
12748 - CLEANUP: log-format: useless file and line in json converter
12749 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
12750 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
12751 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
12752 - CLEANUP: log-format: remove unused arguments
12753 - MEDIUM: log-format: strict parsing and enable fail
12754 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
12755 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
12756 - BUILD: vars: remove a build warning on vars.c
12757 - MINOR: lua: add utility function for check boolean argument
12758 - MINOR: lua: Add tokenize function.
12759 - BUG/MINOR: conf: calloc untested
12760 - MINOR: http/conf: store the use_backend configuration file and line for logs
12761 - MEDIUM: log-format: Use standard HAProxy log system to report errors
12762 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
12763 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
12764 - MINOR: cli: make "show stat" support a proxy name
12765 - MINOR: cli: make "show errors" support a proxy name
12766 - MINOR: cli: make "show errors" capable of dumping only request or response
12767 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
12768 - CLEANUP: counters: move from 3 types to 2 types
12769 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
12770 - REORG: tcp-rules: move tcp rules processing to their own file
12771 - REORG: stkctr: move all the stick counters processing to stick-tables.c
12772 - DOC: update the roadmap file with the latest changes
12773
Willy Tarreaud5d890b2016-11-09 23:18:17 +0100127742016/11/09 : 1.7-dev6
12775 - DOC: fix the entry for hash-balance-factor config option
12776 - DOC: Fix typo in description of `-st` parameter in man page
12777 - CLEANUP: cfgparse: Very minor spelling correction
12778 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
12779 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
12780 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
12781 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
12782 - MINOR: peers: remove the pointer to the stream
12783 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
12784 - DOC: stats: provide state details for show servers state
12785 - MEDIUM: tools: make str2ip2() preserve existing ports
12786 - CLEANUP: tools: make ipcpy() preserve the original port
12787 - OPTIM: http: move all http character classs tables into a single one
12788 - OPTIM: http: improve parsing performance of long header lines
12789 - OPTIM: http: improve parsing performance of long URIs
12790 - OPTIM: http: optimize lookup of comma and quote in header values
12791 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
12792 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
12793 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
12794 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
12795 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
12796 - DOC: move the device detection modules documentation to their own files
12797 - CLEANUP: wurfl: reduce exposure in the rest of the code
12798 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
12799 - MINOR: stream: make option contstats usable again
12800 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
12801 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
12802 - MAJOR: server: postpone address resolution
12803 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
12804 - MINOR: server: indicate in the logs when RMAINT is cleared
12805 - MINOR: stats: indicate it when a server is down due to resolution
12806 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
12807 - MINOR: dns: implement extra 'hold' timers.
12808 - MAJOR: dns: runtime resolution can change server admin state
12809 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
12810 - MEDIUM: server: add a new init-addr server line setting
12811 - MEDIUM: server: make use of init-addr
12812 - MINOR: server: implement init-addr none
12813 - MEDIUM: server: make libc resolution failure non-fatal
12814 - MINOR: server: add support for explicit numeric address in init-addr
12815 - DOC: add some documentation for the "init-addr" server keyword
12816 - MINOR: init: add -dr to ignore server address resolution failures
12817 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
12818 - BUG: vars: Fix 'set-var' converter because of a typo
12819 - CLEANUP: remove last references to 'ruleset' section
12820 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
12821 - MINOR: filters: Update filters documentation accordingly to recent changes
12822 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
12823 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
12824 - MINOR: flt_trace: Add hexdump option to dump forwarded data
12825 - MINOR: cfgparse: Add functions to backup and restore registered sections
12826 - MINOR: cfgparse: Parse scope lines and save the last one parsed
12827 - REORG: sample: move code to release a sample expression in sample.c
12828 - MINOR: vars: Allow '.' in variable names
12829 - MINOR: vars: Add vars_set_by_name_ifexist function
12830 - MEDIUM: vars: Add a per-process scope for variables
12831 - MINOR: vars: Add 'unset-var' action/converter
12832 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
12833 - MINOR: spoe: add random ip-reputation service as SPOA example
12834 - MINOR: spoe/checks: Add support for SPOP health checks
12835 - DOC: update ROADMAP file
12836
Willy Tarreau608efa12016-10-25 22:22:00 +0200128372016/10/25 : 1.7-dev5
12838 - MINOR: cfgparse: few memory leaks fixes.
12839 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
12840 - CLEANUP: logs: remove unused log format field definitions
12841 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
12842 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
12843 - CLEANUP: proto_http: Removing useless variable assignation
12844 - CLEANUP: dumpstats: Removing useless variables allocation
12845 - CLEANUP: dns: Removing usless variable & assignation
12846 - BUG/MINOR: payload: fix SSLv2 version parser
12847 - MINOR: cli: allow the semi-colon to be escaped on the CLI
12848 - MINOR: cli: change a server health check port through the stats socket
12849 - BUG/MINOR: Fix OSX compilation errors
12850 - MAJOR: check: find out which port to use for health check at run time
12851 - MINOR: server: introduction of 3 new server flags
12852 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
12853 - MINOR: cli: ability to change a server's port
12854 - CLEANUP/MINOR dns: comment do not follow up code update
12855 - MINOR: chunk: new strncat function
12856 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
12857 - MINOR: dns: new MAX values
12858 - MINOR: dns: new macro to compute DNS header size
12859 - MINOR: dns: new DNS structures to store received packets
12860 - MEDIUM: dns: new DNS response parser
12861 - MINOR: dns: query type change when last record is a CNAME
12862 - MINOR: dns: proper domain name validation when receiving DNS response
12863 - MINOR: dns: comments in types/dns.h about structures endianness
12864 - BUG/MINOR: displayed PCRE version is running release
12865 - MINOR: show Built with PCRE version
12866 - MINOR: show Running on zlib version
12867 - MEDIUM: make SO_REUSEPORT configurable
12868 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
12869 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
12870 - BUG/MINOR: stats: report the correct conn_time in backend's html output
12871 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
12872 - MINOR: Add fe_req_rate sample fetch
12873 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
12874 - MEDIUM: cli: register CLI keywords with cli_register_kw()
12875 - BUILD: Make use of accept4() on OpenBSD.
12876 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
12877 - DOC: fix missed entry for "set-{src,dst}{,-port}"
12878 - BUG/MINOR: vars: use sess and not s->sess in action_store()
12879 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
12880 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
12881 - MINOR: stats: output dcon
12882 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
12883 - MINOR: counters: add new fields for denied_sess
12884 - MEDIUM: tcp: add registration and processing of TCP L5 rules
12885 - MINOR: stats: emit dses
12886 - DOC: document tcp-request session
12887 - MINOR: ssl: add debug traces
12888 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
12889 - BUG/MINOR: ssl: Check malloc return code
12890 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
12891 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
12892 - BUG/MINOR: systemd: always restore signals before execve()
12893 - BUG/MINOR: systemd: check return value of calloc()
12894 - MINOR: systemd: report it when execve() fails
12895 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
12896 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
12897 - MINOR: backend: add hash-balance-factor option for hash-type consistent
12898 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
12899 - MEDIUM: server: Implement bounded-load hash algorithm
12900 - SCRIPTS: make git-show-backports also dump a "git show" command
12901 - MINOR: build: Allow linking to device-atlas library file
12902 - MINOR: stats: Escape equals sign on socket dump
12903
Willy Tarreau41d5e3a2016-08-14 12:25:21 +0200129042016/08/14 : 1.7-dev4
12905 - MINOR: add list_append_word function
12906 - MEDIUM: init: use list_append_word in haproxy.c
12907 - MEDIUM: init: allow directory as argument of -f
12908 - CLEANUP: config: detect double registration of a config section
12909 - MINOR: log: add the %Td log-format specifier
12910 - MEDIUM: filters: Move HTTP headers filtering in its own callback
12911 - MINOR: filters: Simplify calls to analyzers using 2 new macros
12912 - MEDIUM: filters: Add pre and post analyzer callbacks
12913 - DOC: filters: Update the filters documentation accordingly to recent changes
12914 - BUG/MEDIUM: init: don't use environment locale
12915 - SCRIPTS: teach git-show-backports how to report upstream commits
12916 - SCRIPTS: make git-show-backports capable of limiting its history
12917 - BUG/MAJOR: fix listening IP address storage for frontends
12918 - BUG/MINOR: fix listening IP address storage for frontends (cont)
12919 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
12920 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
12921 - BUG/MEDIUM: stick-tables: fix breakage in table converters
12922 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
12923 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
12924 - BUILD: fix build on Solaris 11
12925 - BUG/MEDIUM: config: fix multiple declaration of section parsers
12926 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
12927 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
12928 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
12929 - DOC: update doc about tls-tickets-keys dump
12930 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
12931 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
12932 - MEDIUM: tcp/http: add 'set-src-port' action
12933 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
12934 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
12935 - BUILD/MEDIUM: rebuild everything when an include file is changed
12936 - BUILD/MEDIUM: force a full rebuild if some build options change
12937 - BUG/MEDIUM: lua: converters doesn't work
12938 - BUG/MINOR: http: add-header: header name copied twice
12939 - BUG/MEDIUM: http: add-header: buffer overwritten
12940 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
12941 - MINOR: stream: export the function 'smp_create_src_stkctr'
12942 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
12943 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
12944 - BUG/MINOR: http: url32+src should use the big endian version of url32
12945 - BUG/MINOR: http: url32+src should check cli_conn before using it
12946 - DOC: http: add documentation for url32 and url32+src
12947 - BUG/MINOR: fix http-response set-log-level parsing error
12948 - MINOR: systemd: Use variable for config and pidfile paths
12949 - MINOR: systemd: Perform sanity check on config before reload
12950 - MEDIUM: ssl: support SNI filters with multicerts
12951 - MINOR: ssl: crt-list parsing factor
12952 - BUILD: ssl: fix typo causing a build failure in the multicert patch
12953 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
12954 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
12955 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
12956 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
12957 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
12958 - BUG/MAJOR: external-checks: use asynchronous signal delivery
12959 - BUG/MINOR: external-checks: do not unblock undesired signals
12960 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
12961 - BUG/MEDIUM: filters: Fix data filtering when data are modified
12962 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
12963 - BUG/MINOR: srv-state: fix incorrect output of state file
12964 - BUG/MINOR: ssl: close ssl key file on error
12965 - BUG/MINOR: http: fix misleading error message for response captures
12966 - BUG/BUILD: don't automatically run "make" on "make install"
12967 - DOC: add missing doc for http-request deny [deny_status <status>]
12968 - CLEANUP: dumpstats: u64 field is an unsigned type.
12969 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
12970 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
12971 - MINOR: new function my_realloc2 = realloc + free upon failure
12972 - CLEANUP: fixed some usages of realloc leading to memory leak
12973 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
12974 - CLEANUP: connection: using internal struct to hold source and dest port.
12975 - DOC: spelling fixes
12976 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
12977 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
12978 - BUG/MINOR: Fix endiness issue in DNS header creation code
12979 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
12980 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
12981 - MEDIUM: http: implement http-response track-sc* directive
12982 - BUG/MINOR: peers: Fix peers data decoding issue
12983 - BUG/MINOR: peers: don't count track-sc multiple times on errors
12984 - MINOR: standard: add function "escape_string"
12985 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
12986 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
12987 - DOC: lua: remove old functions
12988 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
12989 - DOC: fix json converter example and error message
12990 - BUG/MEDIUM: stream-int: completely detach connection on connect error
12991 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
12992 - BUILD: make proto_tcp.c compatible with musl library
12993 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
12994 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
12995 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
12996 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
12997 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
12998 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
12999 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
13000 - MINOR: sample: use smp_make_rw() in upper/lower converters
13001 - MINOR: tcp: add dst_is_local and src_is_local
13002 - BUG/MINOR: peers: some updates are pushed twice after a resync.
13003 - BUILD: protocol: fix some build errors on OpenBSD
13004 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
13005 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
13006 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
13007 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
13008 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
13009 - BUILD: compression: remove a warning when no compression lib is used
13010 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
13011 - MINOR: tcp: add further tcp info fetchers
13012 - BUG/MINOR: peers: empty chunks after a resync.
13013 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
13014 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
13015 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
13016 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
13017
Willy Tarreau7d1b48f2016-05-10 15:36:58 +0200130182016/05/10 : 1.7-dev3
13019 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
13020 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
13021 - BUILD: namespaces: fix a potential build warning in namespaces.c
13022 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
13023 - DOC: add encoding to json converter example
13024 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
13025 - DOC: Clarify tunes.vars.xxx-max-size settings
13026 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
13027 - CLEANUP: connection: fix double negation on memcmp()
13028 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
13029 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
13030 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
13031 - BUG/MINOR: lua: can't load external libraries
13032 - BUG/MINOR: prevent the dump of uninitialized vars
13033 - CLEANUP: map: it seems that the map were planed to be chained
13034 - MINOR: lua: move class registration facilities
13035 - MINOR: lua: remove some useless checks
13036 - CLEANUP: lua: Remove two same functions
13037 - MINOR: lua: refactor the Lua object registration
13038 - MINOR: lua: precise message when a critical error is catched
13039 - MINOR: lua: post initialization
13040 - MINOR: lua: Add internal function which strip spaces
13041 - MINOR: lua: convert field to lua type
13042 - DOC: "addr" parameter applies to both health and agent checks
13043 - DOC: timeout client: pointers to timeout http-request
13044 - DOC: typo on stick-store response
13045 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
13046 - DOC: typo: ACL subdir match
13047 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
13048 - DOC: regsub: parser limitation about the inability to use closing square brackets
13049 - DOC: typo: req.uri is now replaced by capture.req.uri
13050 - DOC: name set-gpt0 mismatch with the expected keyword
13051 - MINOR: http: sample fetch which returns unique-id
13052 - MINOR: dumpstats: extract stats fields enum and names
13053 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
13054 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
13055 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
13056 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
13057 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
13058 - MINOR: lua: dump general info
13059 - MINOR: lua: add class proxy
13060 - MINOR: lua: add class server
13061 - MINOR: lua: add class listener
13062 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
13063 - MEDIUM: proxy: use dynamic allocation for error dumps
13064 - CLEANUP: remove unneeded casts
13065 - CLEANUP: uniformize last argument of malloc/calloc
13066 - DOC: fix "needed" typo
13067 - BUG/MINOR: dumpstats: fix write to global chunk
13068 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
13069 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
13070 - CLEANUP: proto_http: few corrections for gcc warnings.
13071 - BUG/MINOR: DNS: resolution structure change
13072 - BUG/MINOR : allow to log cookie for tarpit and denied request
13073 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
13074 - OPTIM/MINOR: session: abort if possible before connecting to the backend
13075 - DOC: http: rename the unique-id sample and add the documentation
13076 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
13077 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
13078 - BUG/MINOR: server: risk of over reading the pref_net array.
13079 - BUG/MINOR: cfgparse: couple of small memory leaks.
13080 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
13081 - DOC: fix discrepancy in the example for http-request redirect
13082 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
13083 - CLEANUP: .gitignore cleanup
13084 - DOC: Clarify IPv4 address / mask notation rules
13085 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
13086 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
13087 - BUG/MINOR: listener: stop unbound listeners on startup
13088 - BUG/MINOR: fix maxaccept computation according to the frontend process range
13089 - TESTS: add blocksig.c to run tests with all signals blocked
13090 - MEDIUM: unblock signals on startup.
13091 - MINOR: filters: Print the list of existing filters during HA startup
13092 - MINOR: filters: Typo in an error message
13093 - MINOR: filters: Filters must define the callbacks struct during config parsing
13094 - DOC: filters: Add filters documentation
13095 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
13096 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
13097 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
13098 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
13099 - MINOR: Add ability for agent-check to set server maxconn
13100 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
13101 - MINOR: filters: add opaque data
13102 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
13103 - MINOR: lua: migrate the argument mask to 64 bits type.
13104 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
13105 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
13106 - BUG/MEDIUM: http: fix incorrect reporting of server errors
13107 - MINOR: channel: add new function channel_congested()
13108 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
13109 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
13110 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
13111 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
13112 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
13113 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
13114 - MINOR: stats: fix typo in help messages
13115 - MINOR: stats: show stat resolvers missing in the help message
13116 - BUG/MINOR: dns: fix DNS header definition
13117 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
13118 - CLEANUP: don't ignore scripts in .gitignore
13119 - BUILD: add a few release and backport scripts in scripts/
13120
Willy Tarreau8234f6d2016-03-14 00:10:05 +0100131212016/03/14 : 1.7-dev2
13122 - DOC: lua: fix lua API
13123 - DOC: mailers: typo in 'hostname' description
13124 - DOC: compression: missing mention of libslz for compression algorithm
13125 - BUILD/MINOR: regex: missing header
13126 - BUG/MINOR: stream: bad return code
13127 - DOC: lua: fix somme errors and add implicit types
13128 - MINOR: lua: add set/get priv for applets
13129 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
13130 - BUG/MINOR: http: Be sure to process all the data received from a server
13131 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
13132 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
13133 - DOC: ssl: fixed some formatting errors in crt tag
13134 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
13135 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
13136 - MINOR: chunk: make chunk_initstr() take a const string
13137 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
13138 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
13139 - MINOR: lru: new function to delete <nb> least recently used keys
13140 - DOC: add Ben Shillito as the maintainer of 51d
13141 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
13142 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
13143 - BUG/MINOR: 51d: Releases workset back to pool.
13144 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
13145 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
13146 - MINOR: rename master process name in -Ds (systemd mode)
13147 - DOC: fix a few spelling mistakes
13148 - DOC: fix "workaround" spelling
13149 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
13150 - MINOR: fix the return type for dns_response_get_query_id() function
13151 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
13152 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
13153 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
13154 - BUG/MEDIUM: servers state: server port is used uninitialized
13155 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
13156 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
13157 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
13158 - MEDIUM: pools: add a new flag to avoid rounding pool size up
13159 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
13160 - BUG/MINOR: stream: don't force retries if the server is DOWN
13161 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
13162 - MINOR: unix: don't mention free ports on EAGAIN
13163 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
13164 - MINOR: stats: send content-length with the redirect to allow keep-alive
13165 - BUG: stream_interface: Reuse connection even if the output channel is empty
13166 - DOC: remove old tunnel mode assumptions
13167 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
13168 - BUG/MEDIUM: http-reuse: do not share private connections across backends
13169 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
13170 - BUG/MINOR: stats: fix missing comma in stats on agent drain
13171 - MAJOR: filters: Add filters support
13172 - MINOR: filters: Do not reset stream analyzers if the client is gone
13173 - REORG: filters: Prepare creation of the HTTP compression filter
13174 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
13175 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
13176 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
13177 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
13178 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
13179 - MINOR: filters: Add stream_filters structure to hide filters info
13180 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
13181 - MINOR: filters: Remove unused or useless stuff and do small optimizations
13182 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
13183 - MINOR: filters/http: Slightly update the parsing of chunks
13184 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
13185 - MINOR: filters: Add an filter example
13186 - MINOR: filters: Extract proxy stuff from the struct filter
13187 - MINOR: map: Add regex matching replacement
13188 - BUG/MINOR: lua: unsafe initialization
13189 - DOC: lua: fix somme errors
13190 - MINOR: lua: file dedicated to unsafe functions
13191 - MINOR: lua: add "now" time function
13192 - MINOR: standard: add RFC HTTP date parser
13193 - MINOR: lua: Add date functions
13194 - MINOR: lua: move common function
13195 - MINOR: lua: merge function
13196 - MINOR: lua: Add concat class
13197 - MINOR: standard: add function "escape_chunk"
13198 - MEDIUM: log: add a new log format flag "E"
13199 - DOC: add server name at rate-limit sessions example
13200 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
13201 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
13202 - DOC: LUA: fix some typos and syntax errors
13203 - MINOR: cli: add a new "show env" command
13204 - MEDIUM: config: allow to manipulate environment variables in the global section
13205 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
13206 - MINOR: mailers: increase default timeout to 10 seconds
13207 - MINOR: mailers: use <CRLF> for all line endings
13208 - BUG/MAJOR: lua: segfault using Concat object
13209 - DOC: lua: copyrights
13210 - MINOR: common: mask conversion
13211 - MEDIUM: dns: extract options
13212 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
13213 - MINOR: mailers: make it possible to configure the connection timeout
13214 - BUG/MAJOR: lua: applets can't sleep.
13215 - BUG/MINOR: server: some prototypes are renamed
13216 - BUG/MINOR: lua: Useless copy
13217 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
13218 - BUG/MINOR: server: fix the format of the warning on address change
13219 - CLEANUP: server: add "const" to some message strings
13220 - MINOR: server: generalize the "updater" source
13221 - BUG/MEDIUM: chunks: always reject negative-length chunks
13222 - BUG/MINOR: systemd: ensure we don't miss signals
13223 - BUG/MINOR: systemd: report the correct signal in debug message output
13224 - BUG/MINOR: systemd: propagate the correct signal to haproxy
13225 - MINOR: systemd: ensure a reload doesn't mask a stop
13226 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
13227 - CLEANUP: stats: Avoid computation with uninitialized bits.
13228 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
13229 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
13230 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
13231 - BUG/MAJOR: samples: check smp->strm before using it
13232 - MINOR: sample: add a new helper to initialize the owner of a sample
13233 - MINOR: sample: always set a new sample's owner before evaluating it
13234 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
13235 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
13236 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
13237 - MINOR: stats: create fields types suitable for all CSV output data
13238 - MINOR: stats: add all the "show info" fields in a table
13239 - MEDIUM: stats: fill all the show info elements prior to displaying them
13240 - MINOR: stats: add a function to emit fields into a chunk
13241 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
13242 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
13243 - MINOR: stats: add a declaration of all stats fields
13244 - MINOR: stats: don't hard-code the CSV fields list anymore
13245 - MINOR: stats: create stats fields storage and CSV dump function
13246 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
13247 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
13248 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
13249 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
13250 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
13251 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
13252 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
13253 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
13254 - MEDIUM: stats: move the server state coloring logic to the server dump function
13255 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
13256 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
13257 - MINOR: stats: make CSV report server check status only when enabled
13258 - MINOR: stats: only report backend's down time if it has servers
13259 - MINOR: stats: prepend '*' in front of the check status when in progress
13260 - MINOR: stats: make HTML stats dump rely on the table for the check status
13261 - MINOR: stats: add agent_status, agent_code, agent_duration to output
13262 - MINOR: stats: add check_desc and agent_desc to the output fields
13263 - MINOR: stats: add check and agent's health values in the output
13264 - MEDIUM: stats: make the HTML server state dump use the CSV states
13265 - MEDIUM: stats: only report observe errors when observe is set
13266 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
13267 - MEDIUM: stats: report server's address in the CSV output
13268 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
13269 - MEDIUM: stats: compute the color code only in the HTML form
13270 - MEDIUM: stats: report the listeners' address in the CSV output
13271 - MEDIUM: stats: make it possible to report the WAITING state for listeners
13272 - REORG: stats: dump the frontend's HTML stats via a generic function
13273 - REORG: stats: dump the socket stats via the generic function
13274 - REORG: stats: dump the server stats via the generic function
13275 - REORG: stats: dump the backend stats via the generic function
13276 - MEDIUM: stats: add a new "mode" column to report the proxy mode
13277 - MINOR: stats: report the load balancing algorithm in CSV output
13278 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
13279 - MINOR: stats: report number of intercepted requests for frontend and backends
13280 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
13281 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
13282 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
13283 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
13284 - MINOR: stats: add functions to emit typed fields into a chunk
13285 - MEDIUM: stats: support "show info typed" on the CLI
13286 - MEDIUM: stats: implement a typed output format for stats
13287 - DOC: document the "show info typed" and "show stat typed" output formats
13288 - MINOR: cfgparse: warn when uid parameter is not a number
13289 - MINOR: cfgparse: warn when gid parameter is not a number
13290 - BUG/MINOR: standard: Avoid free of non-allocated pointer
13291 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
13292 - CLEANUP: http: fix a build warning introduced by a recent fix
13293 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
13294
Willy Tarreaucb928252015-12-20 23:33:18 +0100132952015/12/20 : 1.7-dev1
13296 - DOC: specify that stats socket doc (section 9.2) is in management
13297 - BUILD: install only relevant and existing documentation
13298 - CLEANUP: don't ignore debian/ directory if present
13299 - BUG/MINOR: dns: parsing error of some DNS response
13300 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
13301 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
13302 - MEDIUM: dns: Don't use the ANY query type
13303 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
13304 - DOC: fix a typo for a "deviceatlas" keyword
13305 - FIX: small typo in an example using the "Referer" header
13306 - MINOR: cli: ability to set per-server maxconn
13307 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
13308 - DEBUG/MEDIUM: memory: optionally protect free data in pools
13309 - DEBUG/MEDIUM: memory: add optional control pool memory operations
13310 - MEDIUM: memory: add accounting for failed allocations
13311 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
13312 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
13313 - BUG/MINOR: dns: unable to parse CNAMEs response
13314 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
13315 - DOC: deviceatlas: more example use cases.
13316 - MINOR: config: allow IPv6 bracketed literals
13317 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
13318 - BUILD: add Haiku as supported target.
13319 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
13320 - DOC: typo on capture.res.hdr and capture.req.hdr
13321 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
13322 - CLEANUP: use direction names in place of numeric values
13323 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
13324 - MINOR: check: add agent-send server parameter
13325 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
13326 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
13327 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
13328 - BUILD: freebsd: double declaration
13329 - BUG/MEDIUM: lua: clean output buffer
13330 - BUILD: check for libressl to be able to build against it
13331 - DOC: lua-api/index.rst small example fixes, spelling correction.
13332 - DOC: lua: architecture and first steps
13333 - DOC: relation between timeout http-request and option http-buffer-request
13334 - BUILD: Make deviceatlas require PCRE
13335 - BUG: http: do not abort keep-alive connections on server timeout
13336 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
13337 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
13338 - BUILD/MINOR: http: proto_http.h needs sample.h
13339 - BUG/MEDIUM: http: don't enable auto-close on the response side
13340 - BUG/MEDIUM: stream: fix half-closed timeout handling
13341 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
13342 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
13343 - BUG/MEDIUM: sample: urlp can't match an empty value
13344 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
13345 - CLEANUP: proxy: calloc call inverted arguments
13346 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
13347 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
13348 - DOC: Edited 51Degrees section of README/
13349 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
13350 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
13351 - BUG/MINOR: checks: typo in an email-alert error message
13352 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
13353 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
13354 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
13355 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
13356 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
13357 - MINOR: ssl: Added cert_key_and_chain struct
13358 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
13359 - MINOR: ssl: Added multi cert support for crt-list config keyword
13360 - MEDIUM: ssl: Added multi cert support for loading crt directories
13361 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
13362 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
13363 - MINOR: config: make tune.recv_enough configurable
13364 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
13365 - DOC: ssl: Adding docs for Multi-Cert bundling
13366 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
13367 - BUG/MEDIUM: peers: old stick table updates could be repushed.
13368 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
13369 - REORG/MINOR: lua: convert boolean "int" to bitfield
13370 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
13371 - BUG/MINOR: lua: Lua applets must not use http_txn
13372 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
13373 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
13374 - CLEANUP: lua: bad error messages
13375 - CONTRIB: initiate a debugging suite to make debugging easier
13376
Willy Tarreau991b4782015-10-13 21:48:10 +0200133772015/10/13 : 1.7-dev0
13378 - exact copy of 1.6.0
13379
Willy Tarreau844028b2015-10-13 18:52:22 +0200133802015/10/13 : 1.6.0
13381 - BUG/MINOR: Handle interactive mode in cli handler
13382 - DOC: global section missing parameters
13383 - DOC: backend section missing parameters
13384 - DOC: stats paramaters available in frontend
13385 - MINOR: lru: do not allocate useless memory in lru64_lookup
13386 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
13387 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
13388 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
13389 - MINOR: ssl: Read the file used to generate certificates in any order
13390 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
13391 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
13392 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
13393 - BUILD: Fix the build on OSX (htonll/ntohll)
13394 - BUILD: enable build on Linux/s390x
13395 - BUG/MEDIUM: lua: direction test failed
13396 - MINOR: lua: fix a spelling error in some error messages
13397 - CLEANUP: cli: ensure we can never double-free error messages
13398 - BUG/MEDIUM: lua: force server-close mode on Lua services
13399 - MEDIUM: init: support more command line arguments after pid list
13400 - MEDIUM: init: support a list of files on the command line
13401 - MINOR: debug: enable memory poisonning to use byte 0
13402 - BUILD: ssl: fix build error introduced by recent commit
13403 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
13404 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
13405 - DOC: mention the "namespace" options for bind and server lines
13406 - DOC: add the "management" documentation
13407 - DOC: move the stats socket documentation from config to management
13408 - MINOR: examples: update haproxy.spec to mention new docs
13409 - DOC: mention management.txt in README
13410 - DOC: remove haproxy-{en,fr}.txt
13411 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
13412 - MINOR: init: report use of libslz instead of "no compression"
13413 - CLEANUP: examples: remove some obsolete and confusing files
13414 - CLEANUP: examples: remove obsolete configuration file samples
13415 - CLEANUP: examples: fix the example file content-sw-sample.cfg
13416 - CLEANUP: examples: update sample file option-http_proxy.cfg
13417 - CLEANUP: examples: update sample file ssl.cfg
13418 - CLEANUP: tests: move a test file from examples/ to tests/
13419 - CLEANUP: examples: shut up warnings in transparent proxy example
13420 - CLEANUP: tests: removed completely obsolete test files
13421 - DOC: update ROADMAP to remove what was done in 1.6
13422 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
13423
Willy Tarreau8c1ad712015-10-06 12:13:56 +0200134242015/10/06 : 1.6-dev7
13425 - MINOR: cli: Dump all resolvers stats if no resolver section is given
13426 - BUG: config: external-check command validation is checking for incorrect arguments.
13427 - DOC: documentation format cleanups
13428 - DOC: lua: few typos.
13429 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
13430 - BUG/MEDIUM: logs: segfault writing to log from Lua
13431 - DOC: fix lua use-service example
13432 - MINOR: payload: add support for tls session ticket ext
13433 - MINOR: lua: remove the run flag
13434 - MEDIUM: lua: change the timeout execution
13435 - MINOR: lua: rename the tune.lua.applet-timeout
13436 - DOC: lua: update Lua doc
13437 - DOC: lua: update doc according with the last Lua changes
13438 - MINOR: http/tcp: fill the avalaible actions
13439 - DOC: reorder misplaced res.ssl_hello_type in the doc
13440 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
13441 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
13442 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
13443 - BUILD: server: fix build warnings introduced by load-server-state
13444 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
13445
Willy Tarreaue7ae6562015-09-28 23:46:27 +0200134462015/09/28 : 1.6-dev6
13447 - BUG/MAJOR: can't enable a server through the stat socket
13448 - MINOR: server: Macro definition for server-state
13449 - MINOR: cli: new stats socket command: show servers state
13450 - DOC: stats socket command: show servers state
13451 - MINOR: config: new global directive server-state-base
13452 - DOC: global directive server-state-base
13453 - MINOR: config: new global section directive: server-state-file
13454 - DOC: new global directive: server-state-file
13455 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
13456 - DOC: load-server-state-from-file
13457 - MINOR: init: server state loaded from file
13458 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
13459 - MINOR: cli: new stats socket command: show backend
13460 - DOC: servers state seamless reload example
13461 - BUG: dns: can't connect UDP socket on FreeBSD
13462 - MINOR: cfgparse: New function cfg_unregister_sections()
13463 - MINOR: chunk: New function free_trash_buffers()
13464 - BUG/MEDIUM: main: Freeing a bunch of static pointers
13465 - MINOR: proto_http: Externalisation of previously internal functions
13466 - MINOR: global: Few new struct fields for da module
13467 - MAJOR: da: Update of the DeviceAtlas API module
13468 - DOC: DeviceAtlas new keywords
13469 - DOC: README: DeviceAtlas sample configuration updates
13470 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
13471 - MEDIUM: log: use a separate buffer for the header and for the message
13472 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
13473 - MEDIUM: logs: add support for RFC5424 header format per logger
13474 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
13475 - DOC: mention support for the RFC5424 syslog message format
13476 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
13477 - MEDIUM: logs: pass the trailing "\n" as an iovec
13478 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
13479 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
13480 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
13481 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
13482 - MINOR: global: Added new fields for 51Degrees device detection
13483 - DOC: Added more explanation for 51Degrees V3.2
13484 - BUILD: Changed 51Degrees option to support V3.2
13485 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
13486 - MINOR: 51d: Improved string handling for LRU cache
13487 - DOC: add references to rise/fall for the fastinter explanation
13488 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
13489 - BUG/MAJOR: lua: potential unexpected aborts()
13490 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
13491 - MINOR: action: add private configuration
13492 - MINOR: action: add reference to the original keywork matched for the called parser.
13493 - MINOR: lua: change actions registration
13494 - MEDIUM: proto_http: smp_prefetch_http initialize txn
13495 - MINOR: channel: rename function chn_sess to chn_strm
13496 - CLEANUP: lua: align defines
13497 - MINOR: http: export http_get_path() function
13498 - MINOR: http: export the get_reason() function
13499 - MINOR: http: export function http_msg_analyzer()
13500 - MINOR: http: split initialization
13501 - MINOR: lua: reset pointer after use
13502 - MINOR: lua: identify userdata objects
13503 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
13504 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
13505 - CLEANUP: lua: use calloc in place of malloc
13506 - BUG/MEDIUM: lua: longjmp function must be unregistered
13507 - BUG/MEDIUM: lua: forces a garbage collection
13508 - BUG/MEDIUM: lua: wakeup task on bad conditions
13509 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
13510 - MINOR: lua: extend socket address to support non-IP families
13511 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
13512 - BUG/MEDIUM: lua: socket destroy before reading pending data
13513 - MEDIUM: lua: change the GC policy
13514 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
13515 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
13516 - MINOR: applet: add init function
13517 - MINOR: applet: add an execution timeout
13518 - MINOR: stream/applet: add use-service action
13519 - MINOR: lua: add AppletTCP class and service
13520 - MINOR: lua: add AppletHTTP class and service
13521 - DOC: lua: some documentation update
13522 - DOC: add the documentation about internal circular lists
13523 - DOC: add a CONTRIBUTING file
13524 - DOC: add a MAINTAINERS file
13525 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
13526 - DOC: update coding-style to reference checkpatch.pl
13527 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
13528 - BUG/MINOR: args: add name for ARGT_VAR
13529 - DOC: add more entries to MAINTAINERS
13530 - DOC: add more entries to MAINTAINERS
13531 - CLEANUP: stream-int: remove obsolete function si_applet_call()
13532 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
13533 - BUG/MEDIUM: http: do not dereference strm_li(stream)
13534 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
13535 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
13536 - MINOR: stream-int: use si_release_endpoint() to close idle conns
13537 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
13538 - BUG/MEDIUM: acl: always accept match "found"
13539 - MINOR: applet: rename applet_runq to applet_active_queue
13540 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
13541 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
13542 - MINOR: stream-int: implement a new stream_int_update() function
13543 - MEDIUM: stream-int: factor out the stream update functions
13544 - MEDIUM: stream-int: call stream_int_update() from si_update()
13545 - MINOR: stream-int: export stream_int_update_*
13546 - MINOR: stream-int: move the applet_pause call out of the stream updates
13547 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
13548 - MINOR: stream-int: implement the stream_int_notify() function
13549 - MEDIUM: stream-int: use the same stream notification function for applets and conns
13550 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
13551 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
13552 - BUG/MEDIUM: applet: fix reporting of broken write situation
13553 - BUG/MINOR: stats: do not call cli_release_handler 3 times
13554 - BUG/MEDIUM: cli: properly handle closed output
13555 - MINOR: cli: do not call the release handler on internal error.
13556 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
13557 - DEBUG: add p_malloc() to return a poisonned memory area
13558 - CLEANUP: lua: remove unneeded memset(0) after calloc()
13559 - MINOR: lua: use the proper applet wakeup mechanism
13560 - BUG/MEDIUM: lua: better fix for the protocol check
13561 - BUG/MEDIUM: lua: properly set the target on the connection
13562 - MEDIUM: actions: pass a new "flags" argument to custom actions
13563 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
13564 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
13565 - MEDIUM: lua: only allow actions to yield if not in a final call
13566 - DOC: clarify how to make use of abstract sockets in socat
13567 - CLEANUP: config: make the errorloc/errorfile messages less confusing
13568 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
13569 - BUG/MINOR: config: check that tune.bufsize is always positive
13570 - MEDIUM: config: set tune.maxrewrite to 1024 by default
13571 - DOC: add David Carlier as maintainer of da.c
13572 - DOC: fix some broken unexpected unicode chars in the Lua doc.
13573 - BUG/MEDIUM: proxy: ignore stopped peers
13574 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
13575 - MEDIUM: init: completely deallocate unused peers
13576 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
13577 - DOC: remove outdated actions lists on tcp-request/response
13578 - MEDIUM: tcp: add new tcp action "silent-drop"
13579 - DOC: add URLs to optional libraries in the README
13580
Willy Tarreaua02e8a62015-09-14 12:23:10 +0200135812015/09/14 : 1.6-dev5
13582 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
13583 - BUG/MEDIUM: dns: DNS resolution doesn't start
13584 - BUG/MAJOR: dns: dns client resolution infinite loop
13585 - MINOR: dns: coding style update
13586 - MINOR: dns: new bitmasks to use against DNS flags
13587 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
13588 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
13589 - MEDIUM: dns: handling of truncated response
13590 - MINOR: DNS client query type failover management
13591 - MINOR: dns: no expected DNS record type found
13592 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
13593 - BUG/MINOR: DNS request retry counter used for retry only
13594 - DOC: DNS documentation updated
13595 - MEDIUM: actions: remove ACTION_STOP
13596 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
13597 - BUG/MINOR: lua: last log character truncated.
13598 - CLEANUP: typo: bad indent
13599 - CLEANUP: actions: missplaced includes
13600 - MINOR: build: missing header
13601 - CLEANUP: lua: Merge log functions
13602 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
13603 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
13604 - BUG/MAJOR: http: don't call http_send_name_header() after an error
13605 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
13606 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
13607 - BUG/MEDIUM: dns: use the correct server hostname when resolving
13608
Willy Tarreau61d301f2015-08-30 00:17:17 +0200136092015/08/30 : 1.6-dev4
13610 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
13611 - DOC: typo in 'redirect', 302 code meaning
13612 - DOC: typos in tcp-check expect examples
13613 - DOC: resolve-prefer default value and default-server update
13614 - MINOR: DNS counters: increment valid counter
13615 - BUG/MEDIUM: DNS resolution response parsing broken
13616 - MINOR: server: add new SRV_ADMF_CMAINT flag
13617 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
13618 - BUG/MEDIUM: dns: wrong first time DNS resolution
13619 - BUG/MEDIUM: lua: Lua tasks fail to start.
13620 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
13621 - DOC/MINOR: fix OpenBSD versions where haproxy works
13622 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
13623 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
13624 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
13625 - BUILD: ssl: Allow building against libssl without SSLv3.
13626 - DOC: clarify some points about SSL and the proxy protocol
13627 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
13628 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
13629 - DOC: match several lua configuration option names to those implemented in code
13630 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
13631 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
13632 - MINOR: stream: initialize the current_rule field to NULL on stream init
13633 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
13634 - CLEANUP: proto_http: remove useless initialisation
13635 - CLEANUP: http/tcp actions: remove the scope member
13636 - BUG/MINOR: proto_tcp: custom action continue is ignored
13637 - MINOR: proto_tcp: add session in the action prototype
13638 - MINOR: vars: reduce the code size of some wrappers
13639 - MINOR: Move http method enum from proto_http to sample
13640 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
13641 - MINOR: sample/proto_tcp: export "smp_fetch_src"
13642 - MEDIUM: cli: rely on the map's output type instead of the sample type
13643 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
13644 - BUG/MEDIUM: vars: segfault during the configuration parsing
13645 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
13646 - BUG/MEDIUM: lua: bad error processing
13647 - MINOR: samples: rename a struct from sample_storage to sample_data
13648 - MINOR: samples: rename some struct member from "smp" to "data"
13649 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
13650 - MINOR: samples: extract the anonymous union and create the union sample_value
13651 - MINOR: samples: rename union from "data" to "u"
13652 - MEDIUM: 51degrees: Adapt the 51Degrees library
13653 - MINOR: samples: data assignation simplification
13654 - MEDIUM: pattern/map: Maps can returns various types
13655 - MINOR: map: The map can return IPv4 and IPv6
13656 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
13657 - MINOR: actions: Remove the data opaque pointer
13658 - MINOR: lua: use the hlua_rule type in place of opaque type
13659 - MINOR: vars: use the vars types as argument in place of opaque type
13660 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
13661 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
13662 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
13663 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
13664 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
13665 - MEDIUM: capture: Move the capture configuration storage in the union
13666 - MINOR: actions: add "from" information
13667 - MINOR: actions: remove the mark indicating the last entry in enum
13668 - MINOR: actions: Declare all the embedded actions in the same header file
13669 - MINOR: actions: change actions names
13670 - MEDIUM: actions: Add standard return code for the action API
13671 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
13672 - MINOR: proto_tcp: proto_tcp.h is now useles
13673 - MINOR: actions: mutualise the action keyword lookup
13674 - MEDIUM: actions: Normalize the return code of the configuration parsers
13675 - MINOR: actions: Remove wrappers
13676 - MAJOR: stick-tables: use sample types in place of dedicated types
13677 - MEDIUM: stick-tables: use the sample type names
13678 - MAJOR: stick-tables: remove key storage from the key struct
13679 - MEDIUM: stick-tables: Add GPT0 in the stick tables
13680 - MINOR: stick-tables: Add GPT0 access
13681 - MINOR: stick-tables: Add GPC0 actions
13682 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
13683 - DOC: ssl: missing LF
13684 - MINOR: lua: add core.done() function
13685 - DOC: fix function name
13686 - BUG/MINOR: lua: in some case a sample may remain undefined
13687 - DOC: fix "http_action_set_req_line()" comments
13688 - MINOR: http: Action for manipulating the returned status code.
13689 - MEDIUM: lua: turns txn:close into txn:done
13690 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
13691 - BUILD: link with libdl if needed for Lua support
13692 - CLEANUP: backend: factor out objt_server() in connect_server()
13693 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
13694 - MEDIUM: stream-int: simplify si_alloc_conn()
13695 - MINOR: stream-int: add new function si_detach_endpoint()
13696 - MINOR: server: add a list of private idle connections
13697 - MINOR: connection: add a new list member in the connection struct
13698 - MEDIUM: stream-int: queue idle connections at the server
13699 - MINOR: stream-int: make si_idle_conn() only accept valid connections
13700 - MINOR: server: add a list of already used idle connections
13701 - MINOR: connection: add a new flag CO_FL_PRIVATE
13702 - MINOR: config: add new setting "http-reuse"
13703 - MAJOR: backend: initial work towards connection reuse
13704 - MAJOR: backend: improve the connection reuse mechanism
13705 - MEDIUM: backend: implement "http-reuse safe"
13706 - MINOR: server: add a list of safe, already reused idle connections
13707 - MEDIUM: backend: add the "http-reuse aggressive" strategy
13708 - DOC: document the new http-reuse directive
13709 - DOC: internals: document next steps for HTTP connection reuse
13710 - DOC: mention that %ms is left-padded with zeroes.
13711 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
13712 - MAJOR: http: remove references to appsession
13713 - CLEANUP: config: remove appsession initialization
13714 - CLEANUP: appsession: remove appsession.c and sessionhash.c
13715 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
13716 - CLEANUP: proxy: remove last references to appsession
13717 - CLEANUP: appsession: remove the last include files
13718 - DOC: remove documentation about appsession
13719 - CLEANUP: .gitignore: ignore more test files
13720 - CLEANUP: .gitignore: finally ignore everything but what is known.
13721 - MEDIUM: config: emit a warning on a frontend without listener
13722 - DOC: add doc/internals/entities-v2.txt
13723 - DOC: add doc/linux-syn-cookies.txt
13724 - DOC: add design thoughts on HTTP/2
13725 - DOC: add some thoughts on connection sharing for HTTP/2
13726 - DOC: add design thoughts on dynamic buffer allocation
13727 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
13728 - DOC: add new file intro.txt
13729 - MAJOR: tproxy: remove support for cttproxy
13730 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
13731 - DOC: lua: replace txn:close with txn:done in lua-api
13732 - DOC: intro: minor updates and fixes
13733 - DOC: intro: fix too long line.
13734 - DOC: fix example of http-request using ssl_fc_session_id
13735 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
13736 - CLEANUP: lua: fix some indent issues
13737 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
13738 - DOC: lua: mention than txn:close was renamed txn:done.
13739
Willy Tarreau50bdda62015-07-22 17:32:56 +0200137402015/07/22 : 1.6-dev3
13741 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
13742 - MEDIUM: http: Add new 'set-src' option to http-request
13743 - DOC usesrc root privileges requirments
13744 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
13745 - MINOR: proxy: bit field for proxy_find_best_match diff status
13746 - MINOR: server: new server flag: SRV_F_FORCED_ID
13747 - MINOR: server: server_find functions: id, name, best_match
13748 - DOC: dns: fix chapters syntax
13749 - BUILD/MINOR: tools: rename popcount to my_popcountl
13750 - BUILD: add netbsd TARGET
13751 - MEDIUM: 51Degrees code refactoring and cleanup
13752 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
13753 - DOC: add notes about the "51degrees-cache-size" parameter
13754 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
13755 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
13756 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
13757 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
13758 - BUG/MINOR: lua: type error in the arguments wrapper
13759 - CLEANUP: vars: remove unused struct
13760 - BUG/MINOR: http/sample: gmtime/localtime can fail
13761 - MINOR: standard: add 64 bits conversion functions
13762 - MAJOR: sample: converts uint and sint in 64 bits signed integer
13763 - MAJOR: arg: converts uint and sint in sint
13764 - MEDIUM: sample: switch to saturated arithmetic
13765 - MINOR: vars: returns variable content
13766 - MEDIUM: vars/sample: operators can use variables as parameter
13767 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
13768 - BUILD/MINOR: lua: fix a harmless build warning
13769 - BUILD/MINOR: stats: fix build warning due to condition always true
13770 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
13771 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
13772 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
13773 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
13774 - MINOR: vars: make the accounting not depend on the stream
13775 - MEDIUM: vars: move the session variables to the session, not the stream
13776 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
13777 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
13778 - BUG/MAJOR: tcp: tcp rulesets were still broken
13779 - MINOR: stats: improve compression stats reporting
13780 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
13781 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
13782 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
13783 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
13784 - MINOR: args: add new context for servers
13785 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
13786 - MINOR: ssl: provide ia function to set the SNI extension on a connection
13787 - MEDIUM: ssl: add sni support on the server lines
13788 - CLEANUP: stream: remove a useless call to si_detach()
13789 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
13790 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
13791 - MINOR: stream-int: only use si_release_endpoint() to release a connection
13792 - MINOR: standard: provide htonll() and ntohll()
13793 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
13794 - BUG/MAJOR: dns: fix the length of the string to be copied
13795
Willy Tarreauad90f0d2015-06-17 15:53:25 +0200137962015/06/17 : 1.6-dev2
13797 - BUG/MINOR: ssl: Display correct filename in error message
13798 - MEDIUM: logs: Add HTTP request-line log format directives
13799 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
13800 - BUG/MINOR: check: fix tcpcheck error message
13801 - MINOR: use an int instead of calling tcpcheck_get_step_id
13802 - MINOR: tcpcheck_rule structure update
13803 - MINOR: include comment in tcpcheck error log
13804 - DOC: tcpcheck comment documentation
13805 - MEDIUM: server: add support for changing a server's address
13806 - MEDIUM: server: change server ip address from stats socket
13807 - MEDIUM: protocol: add minimalist UDP protocol client
13808 - MEDIUM: dns: implement a DNS resolver
13809 - MAJOR: server: add DNS-based server name resolution
13810 - DOC: server name resolution + proto DNS
13811 - MINOR: dns: add DNS statistics
13812 - MEDIUM: http: configurable http result codes for http-request deny
13813 - BUILD: Compile clean when debug options defined
13814 - MINOR: lru: Add the possibility to free data when an item is removed
13815 - MINOR: lru: Add lru64_lookup function
13816 - MEDIUM: ssl: Add options to forge SSL certificates
13817 - MINOR: ssl: Export functions to manipulate generated certificates
13818 - MEDIUM: config: add DeviceAtlas global keywords
13819 - MEDIUM: global: add the DeviceAtlas required elements to struct global
13820 - MEDIUM: sample: add the da-csv converter
13821 - MEDIUM: init: DeviceAtlas initialization
13822 - BUILD: Makefile: add options to build with DeviceAtlas
13823 - DOC: README: explain how to build with DeviceAtlas
13824 - BUG/MEDIUM: http: fix the url_param fetch
13825 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
13826 - MAJOR: peers: peers protocol version 2.0
13827 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
13828 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
13829 - MEDIUM: peers: support of any stick-table data-types for sync
13830 - BUG/MAJOR: sample: regression on sample cast to stick table types.
13831 - CLEANUP: deinit: remove codes for cleaning p->block_rules
13832 - DOC: Fix L4TOUT typo in documentation
13833 - DOC: set-log-level in Logging section preamble
13834 - BUG/MEDIUM: compat: fix segfault on FreeBSD
13835 - MEDIUM: check: include server address and port in the send-state header
13836 - MEDIUM: backend: Allow redispatch on retry intervals
13837 - MINOR: Add TLS ticket keys reference and use it in the listener struct
13838 - MEDIUM: Add support for updating TLS ticket keys via socket
13839 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
13840 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
13841 - DOC: Update doc about weight, act and bck fields in the statistics
13842 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
13843 - MINOR: ssl: add a destructor to free allocated SSL ressources
13844 - MEDIUM: ssl: add the possibility to use a global DH parameters file
13845 - MEDIUM: ssl: replace standards DH groups with custom ones
13846 - MEDIUM: stats: Add enum srv_stats_state
13847 - MEDIUM: stats: Separate server state and colour in stats
13848 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
13849 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
13850 - MEDIUM: Lower priority of email alerts for log-health-checks messages
13851 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
13852 - MEDIUM: Document when email-alerts are sent
13853 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
13854 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
13855 - BUG/MINOR: utf8: remove compilator warning
13856 - MEDIUM: map: uses HAProxy facilities to store default value
13857 - BUG/MINOR: lua: error in detection of mandatory arguments
13858 - BUG/MINOR: lua: set current proxy as default value if it is possible
13859 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
13860 - BUG/MEDIUM: lua: undetected infinite loop
13861 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
13862 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
13863 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
13864 - BUILD: lua: it miss the '-ldl' directive
13865 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
13866 - MINOR: http: split the function http_action_set_req_line() in two parts
13867 - MINOR: http: split http_transform_header() function in two parts.
13868 - MINOR: http: export function inet_set_tos()
13869 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
13870 - MINOR: lua: create and register HTTP class
13871 - DOC: lua: fix some typos
13872 - MINOR: lua: add log functions
13873 - BUG/MINOR: lua: Fix SSL initialisation
13874 - DOC: lua: some fixes
13875 - MINOR: lua: (req|res)_get_headers return more than one header value
13876 - MINOR: lua: map system integration in Lua
13877 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
13878 - MINOR: sample: add url_dec converter
13879 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
13880 - MEDIUM: sample change the prototype of sample-fetches and converters functions
13881 - MINOR: sample: fill the struct sample with the options.
13882 - MEDIUM: sample: change the prototype of sample-fetches functions
13883 - MINOR: http: split the url_param in two parts
13884 - CLEANUP: http: bad indentation
13885 - MINOR: http: add body_param fetch
13886 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
13887 - DOC: http: req.body_param documentation
13888 - MINOR: proxy: custom capture declaration
13889 - MINOR: capture: add two "capture" converters
13890 - MEDIUM: capture: Allow capture with slot identifier
13891 - MINOR: http: add array of generic pointers in http_res_rules
13892 - MEDIUM: capture: adds http-response capture
13893 - MINOR: common: escape CSV strings
13894 - MEDIUM: stats: escape some strings in the CSV dump
13895 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
13896 - MINOR: lua: Lua tcp action are not final action
13897 - DOC: lua: schematics about lua socket organization
13898 - BUG/MINOR: debug: display (null) in place of "meth"
13899 - DOC: mention the "lua action" in documentation
13900 - MINOR: standard: add function that converts signed int to a string
13901 - BUG/MINOR: sample: wrong conversion of signed values
13902 - MEDIUM: sample: Add type any
13903 - MINOR: debug: add a special converter which display its input sample content.
13904 - MINOR: tcp: increase the opaque data array
13905 - MINOR: tcp/http/conf: extends the keyword registration options
13906 - MINOR: build: fix build dependency
13907 - MEDIUM: vars: adds support of variables
13908 - MINOR: vars: adds get and set functions
13909 - MINOR: lua: Variable access
13910 - MINOR: samples: add samples which returns constants
13911 - BUG/MINOR: vars/compil: fix some warnings
13912 - BUILD: add 51degrees options to makefile.
13913 - MINOR: global: add several 51Degrees members to global
13914 - MINOR: config: add 51Degrees config parsing.
13915 - MINOR: init: add 51Degrees initialisation code
13916 - MEDIUM: sample: add fiftyone_degrees converter.
13917 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
13918 - MEDIUM: sample: add trie support to 51Degrees
13919 - DOC: add 51Degrees notes to configuration.txt.
13920 - DOC: add build indications for 51Degrees to README.
13921 - MEDIUM: cfgparse: introduce weak and strong quoting
13922 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
13923 - MINOR: cfgparse: remove line size limitation
13924 - MEDIUM: cfgparse: expand environment variables
13925 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
13926 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
13927 - CLEANUP: cfgparse: remove reference to 'ruleset' section
13928 - MEDIUM: cfgparse: check section maximum number of arguments
13929 - MEDIUM: cfgparse: max arguments check in the global section
13930 - MEDIUM: cfgparse: check max arguments in the proxies sections
13931 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
13932 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
13933 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
13934 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
13935 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
13936 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
13937 - MINOR: connection: implement conn_sock_send()
13938 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
13939 - MEDIUM: connection: make conn_drain() perform more controls
13940 - REORG: connection: move conn_drain() to connection.c and rename it
13941 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
13942 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
13943 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
13944 - BUG/MEDIUM: peers: correctly configure the client timeout
13945 - MINOR: peers: centralize configuration of the peers frontend
13946 - MINOR: proxy: store the default target into the frontend's configuration
13947 - MEDIUM: stats: use frontend_accept() as the accept function
13948 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
13949 - CLEANUP: listeners: remove unused timeout
13950 - MEDIUM: listener: store the default target per listener
13951 - BUILD: fix automatic inclusion of libdl.
13952 - MEDIUM: lua: implement a simple memory allocator
13953 - MEDIUM: compression: postpone buffer adjustments after compression
13954 - MEDIUM: compression: don't send leading zeroes with chunk size
13955 - BUG/MINOR: compression: consider the expansion factor in init
13956 - MINOR: http: check the algo name "identity" instead of the function pointer
13957 - CLEANUP: compression: statify all algo-specific functions
13958 - MEDIUM: compression: add a distinction between UA- and config- algorithms
13959 - MEDIUM: compression: add new "raw-deflate" compression algorithm
13960 - MEDIUM: compression: split deflate_flush() into flush and finish
13961 - CLEANUP: compression: remove unused reset functions
13962 - MAJOR: compression: integrate support for libslz
13963 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
13964 - BUG/MAJOR: http: null-terminate the http actions keywords list
13965 - CLEANUP: lua: remove the unused hlua_sleep memory pool
13966 - BUG/MAJOR: lua: use correct object size when initializing a new converter
13967 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
13968 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
13969 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
13970 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
13971 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
13972 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
13973 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
13974 - REORG/MAJOR: session: rename the "session" entity to "stream"
13975 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
13976 - MINOR: session: start to reintroduce struct session
13977 - MEDIUM: stream: allocate the session when a stream is created
13978 - MEDIUM: stream: move the listener's pointer to the session
13979 - MEDIUM: stream: move the frontend's pointer to the session
13980 - MINOR: session: add a pointer to the session's origin
13981 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
13982 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
13983 - MEDIUM: http: move header captures from http_txn to struct stream
13984 - MINOR: http: create a dedicated pool for http_txn
13985 - MAJOR: http: move http_txn out of struct stream
13986 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
13987 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
13988 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
13989 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
13990 - MAJOR: sample: pass a pointer to the session to each sample fetch function
13991 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
13992 - CLEANUP: stream: don't set ->target to the incoming connection anymore
13993 - MINOR: stream: move session initialization before the stream's
13994 - MINOR: session: store the session's accept date
13995 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
13996 - MINOR: session: implement session_free() and use it everywhere
13997 - MINOR: session: add stick counters to the struct session
13998 - REORG: stktable: move the stkctr_* functions from stream to sticktable
13999 - MEDIUM: streams: support looking up stkctr in the session
14000 - MEDIUM: session: update the session's stick counters upon session_free()
14001 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
14002 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
14003 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
14004 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
14005 - MAJOR: stream: don't initialize the stream anymore in stream_accept
14006 - MEDIUM: session: remove the task pointer from the session
14007 - REORG: session: move the session parts out of stream.c
14008 - MINOR: stream-int: make appctx_new() take the applet in argument
14009 - MEDIUM: peers: move the appctx initialization earlier
14010 - MINOR: session: introduce session_new()
14011 - MINOR: session: make use of session_new() when creating a new session
14012 - MINOR: peers: make use of session_new() when creating a new session
14013 - MEDIUM: peers: initialize the task before the stream
14014 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
14015 - CLEANUP: stream.c: do not re-attach the connection to the stream
14016 - MEDIUM: stream: isolate connection-specific initialization code
14017 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
14018 - MEDIUM: peers: make use of stream_accept_session()
14019 - MEDIUM: frontend: make ->accept only return +/-1
14020 - MEDIUM: stream: return the stream upon accept()
14021 - MEDIUM: frontend: move some stream initialisation to stream_new()
14022 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
14023 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
14024 - MEDIUM: frontend: move some remaining stream settings to stream_new()
14025 - CLEANUP: frontend: remove one useless local variable
14026 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
14027 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
14028 - MINOR: lua: minor cleanup in hlua_socket_new()
14029 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
14030 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
14031 - CLEANUP: stream-int: swap stream-int and appctx declarations
14032 - CLEANUP: namespaces: fix protection against multiple inclusions
14033 - MINOR: session: maintain the session count stats in the session, not the stream
14034 - MEDIUM: session: adjust the connection flags before stream_new()
14035 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
14036 - CLEANUP: poll: move the conditions for waiting out of the poll functions
14037 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
14038 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
14039 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
14040 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
14041 - DOC: update the entities diagrams
14042 - BUG/MEDIUM: http: properly retrieve the front connection
14043 - MINOR: applet: add a new "owner" pointer in the appctx
14044 - MEDIUM: applet: make the applet not depend on a stream interface anymore
14045 - REORG: applet: move the applet definitions out of stream_interface
14046 - CLEANUP: applet: rename struct si_applet to applet
14047 - REORG: stream-int: create si_applet_ops dedicated to applets
14048 - MEDIUM: applet: add basic support for an applet run queue
14049 - MEDIUM: applet: implement a run queue for active appctx
14050 - MEDIUM: stream-int: add a new function si_applet_done()
14051 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
14052 - MAJOR: stream: use a regular ->update for all stream interfaces
14053 - MEDIUM: dumpstats: don't unregister the applet anymore
14054 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
14055 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
14056 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
14057 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
14058 - MEDIUM: stream-int: pause the appctx if the task is woken up
14059 - BUG/MAJOR: tcp: only call registered actions when they're registered
14060 - BUG/MEDIUM: peers: fix applet scheduling
14061 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
14062 - MINOR: tools: provide an rdtsc() function for time comparisons
14063 - IMPORT: lru: import simple ebtree-based LRU functions
14064 - IMPORT: hash: import xxhash-r39
14065 - MEDIUM: pattern: add a revision to all pattern expressions
14066 - MAJOR: pattern: add LRU-based cache on pattern matching
14067 - BUG/MEDIUM: http: remove content-length from chunked messages
14068 - DOC: http: update the comments about the rules for determining transfer-length
14069 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
14070 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
14071 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
14072 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
14073 - MEDIUM: http: disable support for HTTP/0.9 by default
14074 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
14075 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
14076 - MEDIUM: init: don't stop proxies in parent process when exiting
14077 - MINOR: stick-table: don't attach to peers in stopped state
14078 - MEDIUM: config: initialize stick-tables after peers, not before
14079 - MEDIUM: peers: add the ability to disable a peers section
14080 - MINOR: peers: store the pointer to the signal handler
14081 - MEDIUM: peers: unregister peers that were never started
14082 - MEDIUM: config: propagate the table's process list to the peers sections
14083 - MEDIUM: init: stop any peers section not bound to the correct process
14084 - MEDIUM: config: validate that peers sections are bound to exactly one process
14085 - MAJOR: peers: allow peers section to be used with nbproc > 1
14086 - DOC: relax the peers restriction to single-process
14087 - DOC: document option http-ignore-probes
14088 - DOC: fix the comments about the meaning of msg->sol in HTTP
14089 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
14090 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
14091 - MEDIUM: stream: move HTTP request body analyser before process_common
14092 - MEDIUM: http: add a new option http-buffer-request
14093 - MEDIUM: http: provide 3 fetches for the body
14094 - DOC: update the doc on the proxy protocol
14095 - BUILD: pattern: fix build warnings introduced in the LRU cache
14096 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
14097 - CLEANUP: config: fix misleading information in error message.
14098 - MINOR: config: report the number of processes using a peers section in the error case
14099 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
14100 - MEDIUM: http: add new "capture" action for http-request
14101 - BUG/MEDIUM: http: fix the http-request capture parser
14102 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
14103 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
14104 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
14105 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
14106 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
14107 - CLEANUP: checks: simplify the loop processing of tcp-checks
14108 - BUG/MAJOR: checks: always check for end of list before proceeding
14109 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
14110 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
14111 - MEDIUM: http: make url_param iterate over multiple occurrences
14112 - BUG/MEDIUM: peers: apply a random reconnection timeout
14113 - MEDIUM: config: reject invalid config with name duplicates
14114 - MEDIUM: config: reject conflicts in table names
14115 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
14116 - MINOR: proxy: simply ignore duplicates in proxy name lookups
14117 - MINOR: config: don't open-code proxy name lookups
14118 - MEDIUM: config: clarify the conflicting modes detection for backend rules
14119 - CLEANUP: proxy: remove now unused function findproxy_mode()
14120 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
14121 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
14122 - MINOR: proxy: add a new function proxy_find_by_id()
14123 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
14124 - MEDIUM: proxy: add a new proxy_find_best_match() function
14125 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
14126 - MINOR: http: prepare support for parsing redirect actions on responses
14127 - MEDIUM: http: implement http-response redirect rules
14128 - MEDIUM: http: no need to close the request on redirect if data was parsed
14129 - BUG/MEDIUM: http: fix body processing for the stats applet
14130 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
14131 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
14132 - CLEANUP: da: move the converter registration to da.c
14133 - CLEANUP: da: register the config keywords in da.c
14134 - CLEANUP: adjust the envelope name in da.h to reflect the file name
14135 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
14136 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
14137 - BUILD: fix build warning when not using 51degrees
14138 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
14139 - BUILD: ssl: fix recent build breakage on older SSL libs
14140
Willy Tarreau8747b6d2015-03-11 23:57:23 +0100141412015/03/11 : 1.6-dev1
14142 - CLEANUP: extract temporary $CFG to eliminate duplication
14143 - CLEANUP: extract temporary $BIN to eliminate duplication
14144 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
14145 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
14146 - CLEANUP: extract quiet_check() to avoid duplication
14147 - BUG/MINOR: don't start haproxy on reload
14148 - DOC: Address issue where documentation is excluded due to a gitignore rule.
14149 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
14150 - BUILD: fix "make install" to support spaces in the install dirs
14151 - BUG/MINOR: config: http-request replace-header arg typo
14152 - BUG: config: error in http-response replace-header number of arguments
14153 - DOC: missing track-sc* in http-request rules
14154 - BUILD: lua: missing ifdef related to SSL when enabling LUA
14155 - BUG/MEDIUM: regex: fix pcre_study error handling
14156 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
14157 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
14158 - MEDIUM: Improve signal handling in systemd wrapper.
14159 - DOC: fix typo in Unix Socket commands
14160 - BUG/MEDIUM: checks: external checks can't change server status to UP
14161 - BUG/MEDIUM: checks: segfault with external checks in a backend section
14162 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
14163 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
14164 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
14165 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
14166 - BUG/MINOR: log: fix request flags when keep-alive is enabled
14167 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
14168 - MINOR: checks: allow external checks in backend sections
14169 - MEDIUM: checks: provide environment variables to the external checks
14170 - MINOR: checks: update dynamic environment variables in external checks
14171 - DOC: checks: environment variables used by "external-check command"
14172 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
14173 - MINOR: ssl: load certificates in alphabetical order
14174 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
14175 - MINOR: lua: typo in an error message
14176 - MINOR: report the Lua version in -vv
14177 - MINOR: lua: add a compilation error message when compiled with an incompatible version
14178 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
14179 - BUILD: try to automatically detect the Lua library name
14180 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
14181 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
14182 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
14183 - MEDIUM: connection: add new bit in Proxy Protocol V2
14184 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
14185 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
14186 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
14187 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
14188 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
14189 - MINOR: ssl: add statement to force some ssl options in global.
14190 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
14191 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
14192 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
14193 - MINOR: samples: adds the bytes converter.
14194 - MINOR: samples: adds the field converter.
14195 - MINOR: samples: add the word converter.
14196 - BUG/MINOR: server: move the directive #endif to the end of file
14197 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
14198 - DOC: fix a few typos
14199 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
14200 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
14201 - BUG/MINOR: parse: refer curproxy instead of proxy
14202 - BUG/MINOR: parse: check the validity of size string in a more strict way
14203 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
14204 - DOC: expand the docs for the provided stats.
14205 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
14206 - MEDIUM: ssl: Certificate Transparency support
14207 - MEDIUM: stats: proxied stats admin forms fix
14208 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
14209 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
14210 - MAJOR: namespace: add Linux network namespace support
14211 - MINOR: systemd: Check configuration before start
14212 - BUILD: ssl: handle boringssl in openssl version detection
14213 - BUILD: ssl: disable OCSP when using boringssl
14214 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
14215 - MINOR: ssl: don't use boringssl's cipher_list
14216 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
14217 - MINOR: stats: fix minor typo in HTML page
14218 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
14219 - MEDIUM: Add support for configurable TLS ticket keys
14220 - DOC: Document the new tls-ticket-keys bind keyword
14221 - DOC: clearly state that the "show sess" output format is not fixed
14222 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
14223 - DOC: httplog does not support 'no'
14224 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
14225 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
14226 - BUG/MEDIUM: Consistently use 'check' in process_chk
14227 - MEDIUM: Add external check
14228 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
14229 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
14230 - MEDIUM: Remove connect_chk
14231 - MEDIUM: Refactor init_check and move to checks.c
14232 - MEDIUM: Add free_check() helper
14233 - MEDIUM: Move proto and addr fields struct check
14234 - MEDIUM: Attach tcpcheck_rules to check
14235 - MEDIUM: Add parsing of mailers section
14236 - MEDIUM: Allow configuration of email alerts
14237 - MEDIUM: Support sending email alerts
14238 - DOC: Document email alerts
14239 - MINOR: Remove trailing '.' from email alert messages
14240 - MEDIUM: Allow suppression of email alerts by log level
14241 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
14242 - MINOR: deinit: fix memory leak
14243 - MINOR: http: export the function 'smp_fetch_base32'
14244 - BUG/MEDIUM: http: tarpit timeout is reset
14245 - MINOR: sample: add "json" converter
14246 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
14247 - MINOR: map/acl/dumpstats: remove the "Done." message
14248 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
14249 - BUG/MINOR: pattern: error message missing
14250 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
14251 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
14252 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
14253 - MEDIUM: task: call session analyzers if the task is woken by a message.
14254 - MEDIUM: protocol: automatically pick the proto associated to the connection.
14255 - MEDIUM: channel: wake up any request analyzer on response activity
14256 - MINOR: converters: add a "void *private" argument to converters
14257 - MINOR: converters: give the session pointer as converter argument
14258 - MINOR: sample: add private argument to the struct sample_fetch
14259 - MINOR: global: export function and permits to not resolve DNS names
14260 - MINOR: sample: add function for browsing samples.
14261 - MINOR: global: export many symbols.
14262 - MINOR: includes: fix a lot of missing or useless includes
14263 - MEDIUM: tcp: add register keyword system.
14264 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
14265 - MEDIUM: http: change the code returned by the response processing rule functions
14266 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
14267 - MINOR: channel: functions to get data from a buffer without copy
14268 - MEDIUM: lua: lua integration in the build and init system.
14269 - MINOR: lua: add ease functions
14270 - MINOR: lua: add runtime execution context
14271 - MEDIUM: lua: "com" signals
14272 - MINOR: lua: add the configuration directive "lua-load"
14273 - MINOR: lua: core: create "core" class and object
14274 - MINOR: lua: post initialisation bindings
14275 - MEDIUM: lua: add coroutine as tasks.
14276 - MINOR: lua: add sample and args type converters
14277 - MINOR: lua: txn: create class TXN associated with the transaction.
14278 - MINOR: lua: add shared context in the lua stack
14279 - MINOR: lua: txn: import existing sample-fetches in the class TXN
14280 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
14281 - MINOR: lua: register and execute sample-fetches in LUA
14282 - MINOR: lua: register and execute converters in LUA
14283 - MINOR: lua: add bindings for tcp and http actions
14284 - MINOR: lua: core: add sleep functions
14285 - MEDIUM: lua: socket: add "socket" class for TCP I/O
14286 - MINOR: lua: core: pattern and acl manipulation
14287 - MINOR: lua: channel: add "channel" class
14288 - MINOR: lua: txn: object "txn" provides two objects "channel"
14289 - MINOR: lua: core: can set the nice of the current task
14290 - MINOR: lua: core: can yield an execution stack
14291 - MINOR: lua: txn: add binding for closing the client connection.
14292 - MEDIUM: lua: Lua initialisation "on demand"
14293 - BUG/MAJOR: lua: send function fails and return bad bytes
14294 - MINOR: remove unused declaration.
14295 - MINOR: lua: remove some #define
14296 - MINOR: lua: use bitfield and macro in place of integer and enum
14297 - MINOR: lua: set skeleton for Lua execution expiration
14298 - MEDIUM: lua: each yielding function returns a wake up time.
14299 - MINOR: lua: adds "forced yield" flag
14300 - MEDIUM: lua: interrupt the Lua execution for running other process
14301 - MEDIUM: lua: change the sleep function core
14302 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
14303 - DOC: lua: Lua configuration documentation
14304 - MINOR: lua: add the struct session in the lua channel struct
14305 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
14306 - BUG/MEDIUM: lua: reset flags before resuming execution
14307 - BUG/MEDIUM: lua: fix infinite loop about channel
14308 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
14309 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
14310 - MEDIUM: lua: use the Lua-5.3 version of the library
14311 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
14312 - BUG/MEDIUM: lua: can't handle the response bytes
14313 - BUG/MEDIUM: lua: segfault with buffer_replace2
14314 - BUG/MINOR: lua: check buffers before initializing socket
14315 - BUG/MINOR: log: segfault if there are no proxy reference
14316 - BUG/MEDIUM: lua: sockets don't have buffer to write data
14317 - BUG/MEDIUM: lua: cannot connect socket
14318 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
14319 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
14320 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
14321 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
14322 - MINOR: replace the Core object by a simple model.
14323 - MEDIUM: lua: change the objects configuration
14324 - MEDIUM: lua: create a namespace for the fetches
14325 - MINOR: converters: add function to browse converters
14326 - MINOR: lua: wrapper for converters
14327 - MINOR: lua: replace function (req|get)_channel by a variable
14328 - MINOR: lua: fetches and converters can return an empty string in place of nil
14329 - DOC: lua api
14330 - BUG/MEDIUM: sample: fix random number upper-bound
14331 - BUG/MINOR: stats:Fix incorrect printf type.
14332 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
14333 - BUG/MINOR: logs: properly initialize and count log sockets
14334 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
14335 - BUG/MINOR: counters: do not untrack counters before logging
14336 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
14337 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
14338 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
14339 - BUILD: remove TODO from the spec file and add README
14340 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
14341 - MEDIUM: log: support a user-configurable max log line length
14342 - DOC: provide an example of how to use ssl_c_sha1
14343 - BUILD: checks: external checker needs signal.h
14344 - BUILD: checks: kill a minor warning on Solaris in external checks
14345 - BUILD: http: fix isdigit & isspace warnings on Solaris
14346 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
14347 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
14348 - MEDIUM: listener: implement a per-protocol pause() function
14349 - MEDIUM: listener: support rebinding during resume()
14350 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
14351 - DOC: explicitly mention the limits of abstract namespace sockets
14352 - DOC: minor fix on {sc,src}_kbytes_{in,out}
14353 - DOC: fix alphabetical sort of converters
14354 - MEDIUM: stick-table: implement lookup from a sample fetch
14355 - MEDIUM: stick-table: add new converters to fetch table data
14356 - MINOR: samples: add two converters for the date format
14357 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
14358 - DOC: remove references to CPU=native in the README
14359 - DOC: mention that "compression offload" is ignored in defaults section
14360 - DOC: mention that Squid correctly responds 400 to PPv2 header
14361 - BUILD: fix dependencies between config and compat.h
14362 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
14363 - MEDIUM: stick-table: make it easier to register extra data types
14364 - BUG/MINOR: http: base32+src should use the big endian version of base32
14365 - MINOR: sample: allow IP address to cast to binary
14366 - MINOR: sample: add new converters to hash input
14367 - MINOR: sample: allow integers to cast to binary
14368 - BUILD: report commit ID in git versions as well
14369 - CLEANUP: session: move the stick counters declarations to stick_table.h
14370 - MEDIUM: http: add the track-sc* actions to http-request rules
14371 - BUG/MEDIUM: connection: fix proxy v2 header again!
14372 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
14373 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
14374 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
14375 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
14376 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
14377 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
14378 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
14379 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
14380 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
14381 - MEDIUM: http: enable header manipulation for 101 responses
14382 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
14383 - MEDIUM: config: properly propagate process binding between proxies
14384 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
14385 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
14386 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
14387 - MEDIUM: config: report it when tcp-request rules are misplaced
14388 - DOC: indicate in the doc that track-sc* can wait if data are missing
14389 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
14390 - MEDIUM: systemd-wrapper: support multiple executable versions and names
14391 - BUG/MEDIUM: remove debugging code from systemd-wrapper
14392 - BUG/MEDIUM: http: adjust close mode when switching to backend
14393 - BUG/MINOR: config: don't propagate process binding on fatal errors.
14394 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
14395 - BUG/MINOR: tcp-check: report the correct failed step in the status
14396 - DOC: indicate that weight zero is reported as DRAIN
14397 - BUG/MEDIUM: config: avoid skipping disabled proxies
14398 - BUG/MINOR: config: do not accept more track-sc than configured
14399 - BUG/MEDIUM: backend: fix URI hash when a query string is present
14400 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
14401 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
14402 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
14403 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
14404 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
14405 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
14406 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
14407 - MEDIUM: ssl: add support for smaller SSL records
14408 - MINOR: session: release a few other pools when stopping
14409 - MINOR: task: release the task pool when stopping
14410 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
14411 - BUG/MAJOR: frontend: initialize capture pointers earlier
14412 - BUG/MINOR: stats: correctly set the request/response analysers
14413 - MAJOR: polling: centralize calls to I/O callbacks
14414 - DOC: fix typo in the body parser documentation for msg.sov
14415 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
14416 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
14417 - DEBUG: pools: apply poisonning on every allocated pool
14418 - BUG/MAJOR: sessions: unlink session from list on out of memory
14419 - BUG/MEDIUM: patterns: previous fix was incomplete
14420 - BUG/MEDIUM: payload: ensure that a request channel is available
14421 - BUG/MINOR: tcp-check: don't condition data polling on check type
14422 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
14423 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
14424 - BUG/MINOR: config: fix typo in condition when propagating process binding
14425 - BUG/MEDIUM: config: do not propagate processes between stopped processes
14426 - BUG/MAJOR: stream-int: properly check the memory allocation return
14427 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
14428 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
14429 - BUG/MEDIUM: compression: correctly report zlib_mem
14430 - CLEANUP: lists: remove dead code
14431 - CLEANUP: memory: remove dead code
14432 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
14433 - MINOR: memory: cut pool allocator in 3 layers
14434 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
14435 - MINOR: stream-int: retrieve session pointer from stream-int
14436 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
14437 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
14438 - MINOR: buffer: move buffer initialization after channel initialization
14439 - MINOR: buffer: only use b_free to release buffers
14440 - MEDIUM: buffer: always assign a dummy empty buffer to channels
14441 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
14442 - MEDIUM: channel: do not report full when buf_empty is present on a channel
14443 - MINOR: session: group buffer allocations together
14444 - MINOR: buffer: implement b_alloc_fast()
14445 - MEDIUM: buffer: implement b_alloc_margin()
14446 - MEDIUM: session: implement a basic atomic buffer allocator
14447 - MAJOR: session: implement a wait-queue for sessions who need a buffer
14448 - MAJOR: session: only allocate buffers when needed
14449 - MINOR: stats: report a "waiting" flags for sessions
14450 - MAJOR: session: only wake up as many sessions as available buffers permit
14451 - MINOR: config: implement global setting tune.buffers.reserve
14452 - MINOR: config: implement global setting tune.buffers.limit
14453 - MEDIUM: channel: implement a zero-copy buffer transfer
14454 - MEDIUM: stream-int: support splicing from applets
14455 - OPTIM: stream-int: try to send pending spliced data
14456 - CLEANUP: session: remove session_from_task()
14457 - DOC: add missing entry for log-format and clarify the text
14458 - MINOR: logs: add a new per-proxy "log-tag" directive
14459 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
14460 - MINOR: config: extend the default max hostname length to 64 and beyond
14461 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
14462 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
14463 - MINOR: channel: add channel_in_transit()
14464 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
14465 - MEDIUM: channel: make bi_avail() use channel_in_transit()
14466 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
14467 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
14468 - MINOR: channel: rename channel_full() to !channel_may_recv()
14469 - MINOR: channel: rename buffer_reserved() to channel_reserved()
14470 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
14471 - MINOR: channel: rename bi_avail() to channel_recv_max()
14472 - MINOR: channel: rename bi_erase() to channel_truncate()
14473 - BUG/MAJOR: log: don't try to emit a log if no logger is set
14474 - MINOR: tools: add new round_2dig() function to round integers
14475 - MINOR: global: always export some SSL-specific metrics
14476 - MINOR: global: report information about the cost of SSL connections
14477 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
14478 - MINOR: http: add a new fetch "query" to extract the request's query string
14479 - MINOR: hash: add new function hash_crc32
14480 - MINOR: samples: provide a "crc32" converter
14481 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
14482 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
14483 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
14484 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
14485 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
14486 - MINOR: args: add type-specific flags for each arg in a list
14487 - MINOR: args: implement a new arg type for regex : ARGT_REG
14488 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
14489 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
14490 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
14491 - MEDIUM: http: implement http-request set-{method,path,query,uri}
14492 - DOC: fix missing closing brackend on regsub
14493 - MEDIUM: samples: provide basic arithmetic and bitwise operators
14494 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
14495 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
14496 - BUG/MINOR: http: abort request processing on filter failure
14497 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
14498 - MINOR: ssl/server: add the "no-ssl-reuse" server option
14499 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
14500 - MINOR: http: add a new function to iterate over each header line
14501 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
14502 - MEDIUM: task: always ensure that the run queue is consistent
14503 - BUILD: Makefile: add -Wdeclaration-after-statement
14504 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
14505 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
14506 - MEDIUM: protocol: use a family array to index the protocol handlers
14507 - BUILD: lua: cleanup many mixed occurrences declarations & code
14508 - BUG/MEDIUM: task: fix recently introduced scheduler skew
14509 - BUG/MINOR: lua: report the correct function name in an error message
14510 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
14511 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
14512 - MINOR: lua: convert IP addresses to type string
14513 - CLEANUP: lua: use the same function names in C and Lua
14514 - REORG/MAJOR: move session's req and resp channels back into the session
14515 - CLEANUP: remove now unused channel pool
14516 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
14517 - MEDIUM: stream-int: add a flag indicating which side the SI is on
14518 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
14519 - MEDIUM: stream-interface: remove now unused pointers to channels
14520 - MEDIUM: stream-int: make si_sess() use the stream int's side
14521 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
14522 - MEDIUM: stream-int: remove any reference to the owner
14523 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
14524 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
14525 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
14526 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
14527 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
14528 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
14529 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
14530 - CLEANUP: session: use local variables to access channels / stream ints
14531 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
14532 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
14533 - CLEANUP: stream-int: limit usage of si_ic/si_oc
14534 - CLEANUP: lua: limit usage of si_ic/si_oc
14535 - MINOR: channel: add chn_sess() helper to retrieve session from channel
14536 - MEDIUM: session: simplify receive buffer allocator to only use the channel
14537 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
14538 - CLEANUP: lua: remove the session pointer from hlua_channel
14539 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
14540 - MEDIUM: lua: remove struct hlua_channel
14541 - MEDIUM: lua: remove hlua_sample_fetch
14542
Willy Tarreau15480d72014-06-19 21:10:58 +0200145432014/06/19 : 1.6-dev0
14544 - exact copy of 1.5.0
14545
Willy Tarreau9229f122014-06-19 21:01:06 +0200145462014/06/19 : 1.5.0
14547 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
14548 - MEDIUM: ssl: basic OCSP stapling support.
14549 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
14550 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
14551 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
14552 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
14553 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
14554 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
14555 - MEDIUM: Break out check establishment into connect_chk()
14556 - MEDIUM: Add port_to_str helper
14557 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
14558 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
14559 - MINOR: regex: fix a little configuration memory leak.
14560 - MINOR: regex: Create JIT compatible function that return match strings
14561 - MEDIUM: regex: replace all standard regex function by own functions
14562 - MEDIUM: regex: Remove null terminated strings.
14563 - MINOR: regex: Use native PCRE API.
14564 - MINOR: missing regex.h include
14565 - DOC: Add Exim as Proxy Protocol implementer.
14566 - BUILD: don't use type "uint" which is not portable
14567 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
14568 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
14569 - CLEANUP: http: don't clear CF_READ_NOEXP twice
14570 - DOC: fix proxy protocol v2 decoder example
14571 - DOC: fix remaining occurrences of "pattern extraction"
14572 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
14573 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
14574 - MINOR: sample: improve sample_fetch_string() to report partial contents
14575 - MINOR: capture: extend the captures to support non-header keys
14576 - MINOR: tcp: prepare support for the "capture" action
14577 - MEDIUM: tcp: add a new tcp-request capture directive
14578 - MEDIUM: session: allow shorter retry delay if timeout connect is small
14579 - MEDIUM: session: don't apply the retry delay when redispatching
14580 - MEDIUM: session: redispatch earlier when possible
14581 - MINOR: config: warn when tcp-check rules are used without option tcp-check
14582 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
14583 - DOC: proxy protocol example parser was still wrong
14584 - DOC: minor updates to the proxy protocol doc
14585 - CLEANUP: connection: merge proxy proto v2 header and address block
14586 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
14587 - MINOR: tools: add new functions to quote-encode strings
14588 - DOC: clarify the CSV format
14589 - MEDIUM: stats: report the last check and last agent's output on the CSV status
14590 - MINOR: freq_ctr: introduce a new averaging method
14591 - MEDIUM: session: maintain per-backend and per-server time statistics
14592 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
14593 - BUG/MINOR: http: fix typos in previous patch
14594 - DOC: remove the ultra-obsolete TODO file
14595 - DOC: update roadmap
14596 - DOC: minor updates to the README
14597 - DOC: mention the maxconn limitations with the select poller
14598 - DOC: commit a few old design thoughts files
14599
Willy Tarreau2e858402014-05-28 17:50:53 +0200146002014/05/28 : 1.5-dev26
14601 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
14602 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
14603 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
14604 - MINOR: fix a few memory usage errors
14605 - CONTRIB: halog: Filter input lines by date and time through timestamp
14606 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
14607 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
14608 - MINOR: acl: set "str" as default match for strings
14609 - DOC: Add some precisions about acl default matching method
14610 - MEDIUM: acl: strenghten the option parser to report invalid options
14611 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
14612 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
14613 - MINOR: stats: improve alignment of color codes to save one line of header
14614 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
14615 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
14616 - MINOR: server: use functions to detect state changes and to update them
14617 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
14618 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
14619 - BUG/MAJOR: config: don't free valid regex memory
14620 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
14621 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
14622 - MEDIUM: proxy: make timeout parser a bit stricter
14623 - REORG/MEDIUM: server: split server state and flags in two different variables
14624 - REORG/MEDIUM: server: move the maintenance bits out of the server state
14625 - MAJOR: server: use states instead of flags to store the server state
14626 - REORG: checks: put the functions in the appropriate files !
14627 - MEDIUM: server: properly support and propagate the maintenance status
14628 - MEDIUM: server: allow multi-level server tracking
14629 - CLEANUP: checks: rename the server_status_printf function
14630 - MEDIUM: checks: simplify server up/down/nolb transitions
14631 - MAJOR: checks: move health checks changes to set_server_check_status()
14632 - MINOR: server: make the status reporting function support a reason
14633 - MINOR: checks: simplify health check reporting functions
14634 - MINOR: server: implement srv_set_stopped()
14635 - MINOR: server: implement srv_set_running()
14636 - MINOR: server: implement srv_set_stopping()
14637 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
14638 - MEDIUM: checks: simplify success notification using srv_set_running()
14639 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
14640 - MEDIUM: stats: report a server's own state instead of the tracked one's
14641 - MINOR: server: make use of srv_is_usable() instead of checking eweight
14642 - MAJOR: checks: add support for a new "drain" administrative mode
14643 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
14644 - MEDIUM: stats: introduce new actions to simplify admin status management
14645 - MINOR: cli: introduce a new "set server" command
14646 - MINOR: stats: report a distinct output for DOWN caused by agent
14647 - MINOR: checks: support specific check reporting for the agent
14648 - MINOR: checks: support a neutral check result
14649 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
14650 - MEDIUM: cli: add support for enabling/disabling health checks.
14651 - MEDIUM: stats: report down caused by agent prior to reporting up
14652 - MAJOR: agent: rework the response processing and support additional actions
14653 - MINOR: stats: improve the stats web page to support more actions
14654 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
14655 - DOC: document the workarouds for Google Chrome's bogus pre-connect
14656 - MINOR: stats: report SSL key computations per second
14657 - MINOR: stats: add counters for SSL cache lookups and misses
14658
Willy Tarreaua3393952014-05-10 15:16:43 +0200146592014/05/10 : 1.5-dev25
14660 - MEDIUM: connection: Implement and extented PROXY Protocol V2
14661 - MINOR: ssl: clean unused ACLs declarations
14662 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
14663 - MINOR: ssl: merge client's and frontend's certificate functions.
14664 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
14665 - MINOR: ssl: adds sample converter base64 for binary type.
14666 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
14667 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
14668 - MAJOR: ssl: Change default locks on ssl session cache.
14669 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
14670 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
14671 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
14672 - BUG/MEDIUM: patterns: last fix was still not enough
14673 - MINOR: http: export the smp_fetch_cookie function
14674 - MINOR: http: generic pointer to rule argument
14675 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
14676 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
14677 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
14678 - BUG/MINOR: http: log 407 in case of proxy auth
14679 - MINOR: http: rely on the message body parser to send 100-continue
14680 - MEDIUM: http: move reqadd after execution of http_request redirect
14681 - MEDIUM: http: jump to dedicated labels after http-request processing
14682 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
14683 - BUG/MINOR: http: block rules forgot to increment the session's request counter
14684 - MEDIUM: http: move Connection header processing earlier
14685 - MEDIUM: http: remove even more of the spaghetti in the request path
14686 - MINOR: http: silently support the "block" action for http-request
14687 - CLEANUP: proxy: rename "block_cond" to "block_rules"
14688 - MEDIUM: http: emulate "block" rules using "http-request" rules
14689 - MINOR: http: remove the now unused loop over "block" rules
14690 - MEDIUM: http: factorize the "auth" action of http-request and stats
14691 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
14692 - MINOR: config: add minimum support for emitting warnings only once
14693 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
14694 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
14695 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
14696 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
14697 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
14698 - BUILD: config: remove a warning with clang
14699 - BUG/MAJOR: http: connection setup may stall on balance url_param
14700 - BUG/MEDIUM: http/session: disable client-side expiration only after body
14701 - BUG/MEDIUM: http: correctly report request body timeouts
14702 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
14703 - MEDIUM: listener: make the accept function more robust against pauses
14704 - BUILD: syscalls: remove improper inline statement in front of syscalls
14705 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
14706 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
14707 - DOC: add some explanation on the shared cache build options in the readme.
14708 - MEDIUM: proxy: only adjust the backend's bind-process when already set
14709 - MEDIUM: config: limit nbproc to the machine's word size
14710 - MEDIUM: config: check the bind-process settings according to nbproc
14711 - MEDIUM: listener: parse the new "process" bind keyword
14712 - MEDIUM: listener: inherit the process mask from the proxy
14713 - MAJOR: listener: only start listeners bound to the same processes
14714 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
14715 - CLEANUP: config: set the maxaccept value for peers listeners earlier
14716 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
14717 - BUG/MINOR: checks: correctly configure the address family and protocol
14718 - MINOR: tools: split is_addr() and is_inet_addr()
14719 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
14720 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
14721 - MEDIUM: checks: only complain about the missing port when the check uses TCP
14722 - MEDIUM: unix: implement support for Linux abstract namespace sockets
14723 - DOC: map_beg was missing from the table of map_* converters
14724 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
14725 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
14726 - BUILD: remove the obsolete BSD and OSX makefiles
14727 - MEDIUM: unix: avoid a double connect probe when no data are sent
14728 - DOC: stop referencing the slow git repository in the README
14729 - BUILD: only build the systemd wrapper on Linux 2.6 and above
14730 - DOC: update roadmap with completed tasks
14731 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
14732
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200147332014/04/26 : 1.5-dev24
14734 - MINOR: pattern: find element in a reference
14735 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
14736 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
14737 - DOC: Full section dedicated to the converters
14738 - MEDIUM: http: register http-request and http-response keywords
14739 - BUG/MINOR: compression: correctly report incoming byte count
14740 - BUG/MINOR: http: don't report server aborts as client aborts
14741 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
14742 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
14743 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
14744 - BUG/MAJOR: http: fix timeouts during data forwarding
14745 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
14746 - MEDIUM: http: move skipping of 100-continue earlier
14747 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
14748 - CLEANUP: general: get rid of all old occurrences of "session *t"
14749 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
14750 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
14751 - MEDIUM: http: enable analysers to have keep-alive on stats
14752 - REORG: http: move HTTP Connection response header parsing earlier
14753 - MINOR: stats: always emit HTTP/1.1 in responses
14754 - MINOR: http: add capture.req.ver and capture.res.ver
14755 - MINOR: checks: add a new global max-spread-checks directive
14756 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
14757 - MINOR: http: implement the max-keep-alive-queue setting
14758 - DOC: fix alphabetic order of tcp-check
14759 - MINOR: connection: add a new error code for SSL with heartbeat
14760 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
14761 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
14762 - BUILD: http: remove a warning on strndup
14763 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
14764 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
14765 - MINOR: ssl: finally catch the heartbeats missing the padding
14766
Willy Tarreau8317b282014-04-23 01:49:41 +0200147672014/04/23 : 1.5-dev23
14768 - BUG/MINOR: reject malformed HTTP/0.9 requests
14769 - MINOR: systemd wrapper: re-execute on SIGUSR2
14770 - MINOR: systemd wrapper: improve logging
14771 - MINOR: systemd wrapper: propagate exit status
14772 - BUG/MINOR: tcpcheck connect wrong behavior
14773 - MEDIUM: proxy: support use_backend with dynamic names
14774 - MINOR: stats: Enhancement to stats page to provide information of last session time.
14775 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
14776 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
14777 - DOC: fix fetching samples syntax
14778 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
14779 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
14780 - DOC: fix typo
14781 - CLEANUP: code style: use tabs to indent codes instead of spaces
14782 - DOC: fix a few config typos.
14783 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
14784 - DOC: lowercase format string in unique-id
14785 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
14786 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
14787 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
14788 - BUG/MINOR: build: handle whitespaces in wc -l output
14789 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
14790 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
14791 - BUG/MEDIUM: map: The map parser includes blank lines.
14792 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
14793 - MINOR: standard: add function "encode_chunk"
14794 - BUG/MINOR: http: fix encoding of samples used in http headers
14795 - MINOR: sample: add hex converter
14796 - MEDIUM: sample: change the behavior of the bin2str cast
14797 - MAJOR: auth: Change the internal authentication system.
14798 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
14799 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
14800 - MEDIUM: pattern: Change the prototype of the function pattern_register().
14801 - CONTRIB: ip6range: add a network IPv6 range to mask converter
14802 - MINOR: pattern: separe list element from the data part.
14803 - MEDIUM: pattern: add indexation function.
14804 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
14805 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
14806 - MINOR: sample: dont call the sample cast function "c_none"
14807 - MINOR: standard: Add function for converting cidr to network mask.
14808 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
14809 - MEDIUM: sample/http_proto: Add new type called method
14810 - MINOR: dumpstats: Group map inline help
14811 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
14812 - MINOR: dumpstats: change map inline sentences
14813 - MINOR: dumpstats: change the "get map" display management
14814 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
14815 - MEDIUM: pattern: The match function browse itself the list or the tree.
14816 - MEDIUM: pattern: Index IPv6 addresses in a tree.
14817 - MEDIUM: pattern: add delete functions
14818 - MEDIUM: pattern: add prune function
14819 - MEDIUM: pattern: add sample lookup function.
14820 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
14821 - MINOR: map/pattern: The sample parser is stored in the pattern
14822 - MAJOR: pattern/map: Extends the map edition system in the patterns
14823 - MEDIUM: pattern: merge same pattern
14824 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
14825 - MINOR: pattern: Each pattern is identified by unique id.
14826 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
14827 - MINOR: pattern: The function "pattern_register()" is no longer used.
14828 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
14829 - MINOR: pattern: store configuration reference for each acl or map pattern.
14830 - MINOR: pattern: Each pattern expression element store the reference struct.
14831 - MINOR: dumpstats: display the reference for th key/pattern and value.
14832 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
14833 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
14834 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
14835 - MINOR: pattern/map/acl: Centralization of the file parsers
14836 - MINOR: pattern: Check if the file reference is not used with acl and map
14837 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
14838 - MEDIUM: dumpstats: Display error message during add of values.
14839 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
14840 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
14841 - MINOR: cli: Block the usage of the command "acl add" in many cases.
14842 - MINOR: doc: Update the documentation about the map and acl
14843 - MINOR: pattern: index duplicates
14844 - MINOR: configuration: File and line propagation
14845 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
14846 - MINOR: standard: Disable ip resolution during the runtime
14847 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
14848 - MINOR: pattern: forbid dns resolutions
14849 - DOC: document "get map" / "get acl" on the CLI
14850 - MEDIUM: acl: Change the acl register struct
14851 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
14852 - DOC: pattern: pattern organisation schematics
14853 - MINOR: pattern/cli: Update used terms in documentation and cli
14854 - MINOR: cli: remove information about acl or map owner.
14855 - MINOR: session: don't always assume there's a listener
14856 - MINOR: pattern: Add function to prune and reload pattern list.
14857 - MINOR: standard: Add ipv6 support in the function url2sa().
14858 - MEDIUM: config: Dynamic sections.
14859 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
14860 - MINOR: http: Add the "language" converter to for use with accept-language
14861 - BUG/MINOR: log: Don't dump empty unique-id
14862 - BUG/MAJOR: session: fix a possible crash with src_tracked
14863 - DOC: Update "language" documentation
14864 - MINOR: http: add the function "del-header" to the directives http-request and http-response
14865 - DOC: add some information on capture.(req|res).hdr
14866 - MINOR: http: capture.req.method and capture.req.uri
14867 - MINOR: http: optimize capture.req.method and capture.req.uri
14868 - MINOR: session: clean up the connection free code
14869 - BUG/MEDIUM: checks: immediately report a connection success
14870 - MEDIUM: connection: don't use real send() flags in snd_buf()
14871 - OPTIM: ssl: implement dynamic record size adjustment
14872 - MINOR: stats: report exact last session time in backend too
14873 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
14874 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
14875 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
14876 - MINOR: channel: add the date of last read in the channel
14877 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
14878 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
14879 - MINOR: config: make the stream interface idle timer user-configurable
14880 - MINOR: config: add global directives to set default SSL ciphers
14881 - MINOR: sample: add a rand() sample fetch to return a sample.
14882 - BUG/MEDIUM: config: immediately abort if peers section has no name
14883 - BUG/MINOR: ssl: fix syntax in config error message
14884 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
14885 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
14886 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
14887 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
14888 - MEDIUM: acl: fix pattern type for payload / payload_lv
14889 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
14890 - BUG/MEDIUM: compression: fix the output type of the compressor name
14891 - BUG/MEDIUM: http: don't start to forward request data before the connect
14892 - MINOR: http: release compression context only in http_end_txn()
14893 - MINOR: protect ebimtree/ebistree against multiple inclusions
14894 - MEDIUM: proxy: create a tree to store proxies by name
14895 - MEDIUM: proxy: make findproxy() use trees to look up proxies
14896 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
14897 - MEDIUM: stick-table: lookup table names using trees.
14898 - MEDIUM: config: faster lookup for duplicated proxy name
14899 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
14900 - MINOR: sample: move smp_to_type to sample.c
14901 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
14902 - REORG: cfgparse: move server keyword parsing to server.c
14903 - BUILD: adjust makefile for AIX 5.1
14904 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
14905 - CLEANUP: pattern: move array definitions to proto/ and not types/
14906 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
14907 - BUILD: ssl: previous patch failed
14908 - BUILD/MEDIUM: standard: get rid of the last strcpy()
14909 - BUILD/MEDIUM: standard: get rid of sprintf()
14910 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
14911 - BUILD/MEDIUM: checks: get rid of sprintf()
14912 - BUILD/MEDIUM: http: remove calls to sprintf()
14913 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
14914 - BUILD/MINOR: ssl: remove one call to sprintf()
14915 - MEDIUM: http: don't reject anymore message bodies not containing the url param
14916 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
14917 - CLEANUP: http: rename http_process_request_body()
14918 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
14919 - MINOR: http: make msg->eol carry the last CRLF length
14920 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
14921 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
14922 - MAJOR: http: don't update msg->sov anymore while processing the body
14923 - MINOR: http: add a small helper to compute the amount of body bytes present
14924 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
14925 - MINOR: http: add a small helper to compute how far to rewind to find URI
14926 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
14927 - MAJOR: http: reset msg->sov after headers are forwarded
14928 - MEDIUM: http: forward headers again while waiting for connection to complete
14929 - BUG/MINOR: http: deinitialize compression after a parsing error
14930 - BUG/MINOR: http: deinitialize compression after a compression error
14931 - MEDIUM: http: headers must be forwarded even if data was already inspected
14932 - MAJOR: http: re-enable compression on chunked encoding
14933 - MAJOR: http/compression: fix chunked-encoded response processing
14934 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
14935 - MEDIUM: http: start to centralize the forwarding code
14936 - MINOR: http: further cleanups of response forwarding function
14937 - MEDIUM: http: only allocate the temporary compression buffer when needed
14938 - MAJOR: http: centralize data forwarding in the request path
14939 - CLEANUP: http: document the response forwarding states
14940 - CLEANUP: http: remove all calls to http_silent_debug()
14941 - DOC: internal: add some reminders about HTTP parsing and pointer states
14942 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
14943 - BUG/MINOR: stats: last session was not always set
14944 - DOC: add pointer to the Cyril's HTML doc in the README
14945 - MEDIUM: config: relax use_backend check to make the condition optional
14946 - MEDIUM: config: report misplaced http-request rules
14947 - MEDIUM: config: report misplaced use-server rules
14948 - DOC: update roadmap with what was done.
14949
Willy Tarreau1a34d572014-02-03 00:41:29 +0100149502014/02/03 : 1.5-dev22
14951 - MEDIUM: tcp-check new feature: connect
14952 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
14953 - MINOR: ssl: handshake optim for long certificate chains.
14954 - BUG/MINOR: pattern: pattern comparison executed twice
14955 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
14956 - BUG/MEDIUM: pattern: Segfault in binary parser
14957 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
14958 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
14959 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
14960 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
14961 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
14962 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
14963 - MINOR: doc: Bad cli function name.
14964 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
14965 - BUILD: last release inadvertently prepended a "+" in front of the date
14966 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
14967 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
14968 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
14969 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
14970 - MINOR: http: try to stick to same server after status 401/407
14971 - BUG/MINOR: http: always disable compression on HTTP/1.0
14972 - OPTIM: poll: restore polling after a poll/stop/want sequence
14973 - OPTIM: http: don't stop polling for read on the client side after a request
14974 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
14975 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
14976 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
14977 - BUG/MINOR: stream-int: do not clear the owner upon unregister
14978 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
14979 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
14980 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
14981 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
14982 - OPTIM: session: set the READ_DONTWAIT flag when connecting
14983 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
14984 - MINOR: session: factor out the connect time measurement
14985 - MEDIUM: session: prepare to support earlier transitions to the established state
14986 - MEDIUM: stream-int: make si_connect() return an established state when possible
14987 - MINOR: checks: use an inline function for health_adjust()
14988 - OPTIM: session: put unlikely() around the freewheeling code
14989 - MEDIUM: config: report a warning when multiple servers have the same name
14990 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
14991 - BUILD/MINOR: listener: remove a glibc warning on accept4()
14992 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
14993 - BUILD: listener: fix recent accept4() again
14994 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
14995 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
14996 - MEDIUM: listener: fix polling management in the accept loop
14997 - MINOR: protocol: improve the proto->drain() API
14998 - MINOR: connection: add a new conn_drain() function
14999 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
15000 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
15001 - MINOR: connection: add more error codes to report connection errors
15002 - MEDIUM: tcp: report connection error at the connection level
15003 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
15004 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
15005 - DOC: fix misleading information about SIGQUIT
15006 - BUG/MAJOR: fix freezes during compression
15007 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
15008 - BUILD: fix VERDATE exclusion regex
15009 - CLEANUP: polling: rename "spec_e" to "state"
15010 - DOC: add a diagram showing polling state transitions
15011 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
15012 - REORG: polling: rename "fd_spec" to "fd_cache"
15013 - REORG: polling: rename the cache allocation functions
15014 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
15015 - MAJOR: polling: rework the whole polling system
15016 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
15017 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
15018 - MEDIUM: connection: add check for readiness in I/O handlers
15019 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
15020 - MINOR: stream-interface: no need to call fd_stop_both() on error
15021 - MEDIUM: connection: no need to recheck FD state
15022 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
15023 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
15024 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
15025 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
15026 - MEDIUM: polling: centralize polled events processing
15027 - MINOR: polling: create function fd_compute_new_polled_status()
15028 - MINOR: cli: add more information to the "show info" output
15029 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
15030 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
15031 - REORG: stats: move the stats socket states to dumpstats.c
15032 - MINOR: cli: add the new "show pools" command
15033 - BUG/MEDIUM: counters: flush content counters after each request
15034 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
15035 - MINOR: tools: add very basic support for composite pointers
15036 - MEDIUM: counters: stop relying on session flags at all
15037 - BUG/MINOR: cli: fix missing break in command line parser
15038 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
15039 - MAJOR: http: update connection mode configuration
15040 - MEDIUM: http: make keep-alive + httpclose be passive mode
15041 - MAJOR: http: switch to keep-alive mode by default
15042 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
15043 - BUG/MEDIUM: listener: improve detection of non-working accept4()
15044 - BUILD: listener: add fcntl.h and unistd.h
15045 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
15046
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100150472013/12/17 : 1.5-dev21
15048 - MINOR: stats: don't use a monospace font to report numbers
15049 - MINOR: session: remove debugging code
15050 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
15051 - MEDIUM: http: make option http_proxy automatically rewrite the URL
15052 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
15053 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
15054 - BUG/MEDIUM: checks: servers must not start in slowstart mode
15055 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
15056 - MEDIUM: stream-int: implement a very simplistic idle connection manager
15057 - DOC: update the ROADMAP file
15058
Willy Tarreau11f64d62013-12-16 02:32:37 +0100150592013/12/16 : 1.5-dev20
15060 - DOC: add missing options to the manpage
15061 - DOC: add manpage references to all system calls
15062 - DOC: update manpage reference to haproxy-en.txt
15063 - DOC: remove -s and -l options from the manpage
15064 - DOC: missing information for the "description" keyword
15065 - DOC: missing http-send-name-header keyword in keyword table
15066 - MINOR: tools: function my_memmem() to lookup binary contents
15067 - MEDIUM: checks: add send/expect tcp based check
15068 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
15069 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
15070 - DOC: Documentation for hashing function, with test results.
15071 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
15072 - BUILD: ssl: compilation issue with openssl v0.9.6.
15073 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
15074 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
15075 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
15076 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
15077 - CLEANUP: session: remove event_accept() which was not used anymore
15078 - BUG/MINOR: deinit: free fdinfo while doing cleanup
15079 - DOC: minor typo fix in documentation
15080 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
15081 - BUG/MINOR: use the same check condition for server as other algorithms
15082 - DOC: fix typo in comments
15083 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
15084 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
15085 - MINOR: buffer: align the last output line of buffer_dump()
15086 - MINOR: buffer: align the last output line if there are less than 8 characters left
15087 - DOC: stick-table: modify the description
15088 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
15089 - CLEANUP: code style: use tabs to indent codes
15090 - DOC: checkcache: block responses with cacheable cookies
15091 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
15092 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
15093 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
15094 - LOW: systemd-wrapper: Write debug information to stdout
15095 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
15096 - MEDIUM: http: add IPv6 support for "set-tos"
15097 - DOC: ssl: update build instructions to use new SSL_* variables
15098 - BUILD/MINOR: systemd: fix compiler warning about unused result
15099 - url32+src - like base32+src but whole url including parameters
15100 - BUG/MINOR: fix forcing fastinter in "on-error"
15101 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
15102 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
15103 - MEDIUM: Split up struct server's check element
15104 - MEDIUM: Move result element to struct check
15105 - MEDIUM: Paramatise functions over the check of a server
15106 - MEDIUM: cfgparse: Factor out check initialisation
15107 - MEDIUM: Add state to struct check
15108 - MEDIUM: Move health element to struct check
15109 - MEDIUM: Add helper for task creation for checks
15110 - MEDIUM: Add helper function for failed checks
15111 - MEDIUM: Log agent fail, stopped or down as info
15112 - MEDIUM: Remove option lb-agent-chk
15113 - MEDIUM: checks: Add supplementary agent checks
15114 - MEDIUM: Do not mark a server as down if the agent is unavailable
15115 - MEDIUM: Set rise and fall of agent checks to 1
15116 - MEDIUM: Add enable and disable agent unix socket commands
15117 - MEDIUM: Add DRAIN state and report it on the stats page
15118 - BUILD/MINOR: missing header file
15119 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
15120 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
15121 - MINOR: http: some exported functions were not in the header file
15122 - MINOR: http: change url_decode to return the size of the decoded string.
15123 - BUILD/MINOR: missing header file
15124 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
15125 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
15126 - MINOR: sample: export the generic sample conversion parser
15127 - MINOR: sample: export sample_casts
15128 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
15129 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
15130 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
15131 - MINOR: tools: Add a function to convert buffer to an ipv6 address
15132 - MINOR: acl: export acl arrays
15133 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
15134 - MINOR: acl: Extract the pattern matching function
15135 - MINOR: sample: Define new struct sample_storage
15136 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
15137 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
15138 - MEDIUM: pattern: create pattern expression
15139 - MEDIUM: pattern: rename "acl" prefix to "pat"
15140 - MEDIUM: sample: let the cast functions set their output type
15141 - MINOR: sample: add a private field to the struct sample_conv
15142 - MINOR: map: Define map types
15143 - MEDIUM: sample: add the "map" converter
15144 - MEDIUM: http: The redirect strings follows the log format rules.
15145 - BUG/MINOR: acl: acl parser does not recognize empty converter list
15146 - BUG/MINOR: map: The map list was declared in the map.h file
15147 - MINOR: map: Cleanup the initialisation of map descriptors.
15148 - MEDIUM: map: merge identical maps
15149 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
15150 - BUG/MEDIUM: map: Bad map file parser
15151 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
15152 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
15153 - MINOR: map: export map_get_reference() function
15154 - MINOR: pattern: Each pattern sets the expected input type
15155 - MEDIUM: acl: Last patch change the output type
15156 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
15157 - MINOR: standard: The function parse_binary() can use preallocated buffer
15158 - MINOR: regex: Change the struct containing regex
15159 - MINOR: regex: Copy the original regex expression into string.
15160 - MINOR: pattern: add support for compiling patterns for lookups
15161 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
15162 - MINOR: map: export parse output sample functions
15163 - MINOR: pattern: add function to lookup a specific entry in pattern list
15164 - MINOR: pattern/map: Each pattern must free the associated sample
15165 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
15166 - MEDIUM: map: dynamic manipulation of maps
15167 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
15168 - BUG/MINOR: log: junk at the end of syslog packet
15169 - MINOR: Makefile: provide cscope rule
15170 - DOC: compression: chunk are not compressed anymore
15171 - MEDIUM: session: disable lingering on the server when the client aborts
15172 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
15173 - DOC: remove the comment saying that SSL certs are not checked on the server side
15174 - BUG: counters: third counter was not stored if others unset
15175 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
15176 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
15177 - BUG/MAJOR: http: sample prefetch code was not properly migrated
15178 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
15179 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
15180 - OPTIM: splicing: use splice() for the last block when relevant
15181 - MEDIUM: sample: handle comma-delimited converter list
15182 - MINOR: sample: fix sample_process handling of unstable data
15183 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
15184 - MINOR: sample: add a new "date" fetch to return the current date
15185 - MINOR: samples: add the http_date([<offset>]) sample converter.
15186 - DOC: minor improvements to the part on the stats socket.
15187 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
15188 - MINOR: payload: split smp_fetch_rdp_cookie()
15189 - MINOR: counters: factor out smp_fetch_sc*_tracked
15190 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
15191 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
15192 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
15193 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
15194 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
15195 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
15196 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
15197 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
15198 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
15199 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
15200 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
15201 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
15202 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
15203 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
15204 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
15205 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
15206 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
15207 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
15208 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
15209 - MINOR: session: make the number of stick counter entries more configurable
15210 - MEDIUM: counters: support passing the counter number as a fetch argument
15211 - MEDIUM: counters: support looking up a key in an alternate table
15212 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
15213 - MINOR: cli: make it possible to enter multiple values at once with "set table"
15214 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
15215 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
15216 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
15217 - MINOR: config: warn when a server with no specific port uses rdp-cookie
15218 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
15219 - DOC: add a mention about the limited chunk size
15220 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
15221 - MEDIUM: stick-tables: flush old entries upon soft-stop
15222 - MINOR: tcp: add new "close" action for tcp-response
15223 - MINOR: payload: provide the "res.len" fetch method
15224 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
15225 - MINOR: http: compute response time before processing headers
15226 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
15227 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
15228 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
15229 - BUG/MEDIUM: session: risk of crash on out of memory conditions
15230 - BUG/MINOR: peers: set the accept date in outgoing connections
15231 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
15232 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
15233 - MINOR: acl: add a warning when an ACL keyword is used without any value
15234 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
15235 - BUG/MINOR: acl: remove patterns from the tree before freeing them
15236 - MEDIUM: backend: add support for the wt6 hash
15237 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
15238 - OPTIM/MINOR: mark the source address as already known on accept()
15239 - BUG/MINOR: stats: don't count tarpitted connections twice
15240 - CLEANUP: http: homogenize processing of denied req counter
15241 - CLEANUP: http: merge error handling for req* and http-request *
15242 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
15243 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
15244 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
15245 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
15246 - MINOR: stats: report correct throttling percentage for servers in slowstart
15247 - OPTIM: connection: fold the error handling with handshake handling
15248 - MINOR: peers: accept to learn strings of different lengths
15249 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
15250 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
15251 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
15252 - BUG/MINOR: connection: fix typo in error message report
15253 - BUG/MINOR: backend: fix target address retrieval in transparent mode
15254 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
15255 - BUG/MINOR: log: fix log-format parsing errors
15256 - DOC: add some information about how to apply converters to samples
15257 - MINOR: acl/pattern: use types different from int to clarify who does what.
15258 - MINOR: pattern: import acl_find_match_name() into pattern.h
15259 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
15260 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
15261 - BUG/MINOR: http: usual deinit stuff in last commit
15262 - BUILD: log: silent a warning about isblank() with latest patches
15263 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
15264 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
15265 - BUG/MINOR: checks: don't consider errno and use conn->err_code
15266 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
15267 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
15268 - BUG/MINOR: tcp: check that no error is pending during a connect probe
15269 - BUG/MINOR: connection: check EINTR when sending a PROXY header
15270 - MEDIUM: connection: set the socket shutdown flags on socket errors
15271 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
15272 - MINOR: connection: clear errno prior to checking for errors
15273 - BUG/MINOR: checks: do not trust errno in write event before any syscall
15274 - MEDIUM: checks: centralize error reporting
15275 - OPTIM: checks: don't poll on recv when using plain TCP connects
15276 - OPTIM: checks: avoid setting SO_LINGER twice
15277 - MINOR: tools: add a generic binary hex string parser
15278 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
15279 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
15280 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
15281 - BUG/MINOR: acl: fix sample expression error reporting
15282 - BUG/MINOR: checks: tcp-check actions are enums, not flags
15283 - MEDIUM: checks: make tcp-check perform multiple send() at once
15284 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
15285 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
15286 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
15287 - CLEANUP: stream_interface: remove unused field err_loc
15288 - MEDIUM: stats: don't use conn->xprt_st anymore
15289 - MINOR: session: add a simple function to retrieve a session from a task
15290 - MEDIUM: stats: don't use conn->xprt_ctx anymore
15291 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
15292 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
15293 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
15294 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
15295 - MAJOR: stats: move the HTTP stats handling to its applet
15296 - MEDIUM: stats: move request argument processing to the final step
15297 - MEDIUM: session: detect applets from the session by using s->target
15298 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
15299 - MAJOR: session: pass applet return traffic through the response analysers
15300 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
15301 - MINOR: stream-int: make the shutr/shutw functions void
15302 - MINOR: obj: provide a safe and an unsafe access to pointed objects
15303 - MINOR: connection: add a field to store an object type
15304 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
15305 - MEDIUM: stream interface: move the peers' ptr into the applet context
15306 - MINOR: stream-interface: move the applet context to its own struct
15307 - MINOR: obj: introduce a new type appctx
15308 - MINOR: stream-int: rename ->applet to ->appctx
15309 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
15310 - MINOR: stream-int: add a new pointer to the end point
15311 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
15312 - MAJOR: stream interface: remove the ->release function pointer
15313 - MEDIUM: stream-int: make ->end point to the connection or the appctx
15314 - CLEANUP: stream-int: remove obsolete si_ctrl function
15315 - MAJOR: stream-int: stop using si->conn and use si->end instead
15316 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
15317 - MEDIUM: session: attach incoming connection to target on embryonic sessions
15318 - MINOR: connection: add conn_init() to (re)initialize a connection
15319 - MINOR: checks: call conn_init() to properly initialize the connection.
15320 - MINOR: peers: make use of conn_init() to initialize the connection
15321 - MINOR: session: use conn_init() to initialize the connections
15322 - MINOR: http: use conn_init() to reinitialize the server connection
15323 - MEDIUM: connection: replace conn_prepare with conn_assign
15324 - MINOR: get rid of si_takeover_conn()
15325 - MINOR: connection: add conn_new() / conn_free()
15326 - MAJOR: connection: add two new flags to indicate readiness of control/transport
15327 - MINOR: stream-interface: introduce si_reset() and si_set_state()
15328 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
15329 - MINOR: connection: replace conn_assign with conn_attach
15330 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
15331 - MAJOR: stream interface: dynamically allocate the outgoing connection
15332 - MEDIUM: connection: move the send_proxy offset to the connection
15333 - MINOR: connection: check for send_proxy during the connect(), not the SI
15334 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
15335 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
15336 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
15337 - MAJOR: stream-interface: dynamically allocate the applet context
15338 - MEDIUM: session: automatically register the applet designated by the target
15339 - MEDIUM: stats: delay appctx initialization
15340 - CLEANUP: peers: use less confusing state/status code names
15341 - MEDIUM: peers: delay appctx initialization
15342 - MINOR: stats: provide some appctx information in "show sess all"
15343 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
15344 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
15345 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
15346 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
15347 - DIET/MINOR: session: reduce the struct session size by 8 bytes
15348 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
15349 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
15350 - MINOR: http: switch the http state to an enum
15351 - MINOR: http: use an enum for the auth method in http_auth_data
15352 - DIET/MINOR: task: reduce struct task size by 8 bytes
15353 - MINOR: stream_interface: add reporting of ressouce allocation errors
15354 - MINOR: session: report lack of resources using the new stream-interface's error code
15355 - BUILD: simplify the date and version retrieval in the makefile
15356 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
15357 - BUILD: use format tags in VERDATE and SUBVERS files
15358 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
15359 - CLEANUP: check: server port is unsigned
15360 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
15361 - MINOR: tools: buf2ip6 must not modify output on failure
15362 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
15363 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
15364 - MINOR: arg: improve wording on error reporting
15365 - BUG/MEDIUM: sample: simplify and fix the argument parsing
15366 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
15367 - MEDIUM: acl: fix the initialization order of the ACL expression
15368 - CLEANUP: acl: remove useless blind copy-paste from sample converters
15369 - TESTS: add regression tests for ACL and sample expression parsers
15370 - BUILD: time: adapt the type of TV_ETERNITY to the local system
15371 - MINOR: chunks: allocate the trash chunks before parsing the config
15372 - BUILD: definitely silence some stupid GCC warnings
15373 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
15374 - MINOR: checks: improve handling of the servers tracking chain
15375 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
15376 - MINOR: checks: use an enum instead of flags to report a check result
15377 - MINOR: checks: rename the state flags
15378 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
15379 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
15380 - MINOR: checks: fix agent check interval computation
15381 - MINOR: checks: add a PAUSED state for the checks
15382 - MINOR: checks: create the agent tasks even when no check is configured
15383 - MINOR: checks: add a flag to indicate what check is an agent
15384 - MEDIUM: checks: enable agent checks even if health checks are disabled
15385 - BUG/MEDIUM: checks: ensure we can enable a server after boot
15386 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
15387 - BUG/MAJOR: session: repair tcp-request connection rules
15388 - BUILD: fix SUBVERS extraction in the Makefile
15389 - BUILD: pattern: silence a warning about uninitialized value
15390 - BUILD: log: fix build warning on Solaris
15391 - BUILD: dumpstats: fix build error on Solaris
15392 - DOC: move option pgsql-check to the correct place
15393 - DOC: move option tcp-check to the proper place
15394 - MINOR: connection: add simple functions to report connection readiness
15395 - MEDIUM: connection: centralize handling of nolinger in fd management
15396 - OPTIM: http: set CF_READ_DONTWAIT on response message
15397 - OPTIM: http: do not re-enable reading on client side while closing the server side
15398 - MINOR: config: add option http-keep-alive
15399 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
15400 - MAJOR: stream-int: handle the connection reuse in si_connect()
15401 - MAJOR: http: add the keep-alive transition on the server side
15402 - MAJOR: backend: enable connection reuse
15403 - MINOR: http: add option prefer-last-server
15404 - MEDIUM: http: do not report connection errors for second and further requests
15405
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200154062013/06/17 : 1.5-dev19
15407 - MINOR: stats: remove the autofocus on the scope input field
15408 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
15409 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
15410 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
15411 - MEDIUM: ssl: improve crt-list format to support negation
15412 - BUG: ssl: fix crt-list for clients not supporting SNI
15413 - MINOR: stats: show soft-stopped servers in different color
15414 - BUG/MINOR: config: "source" does not work in defaults section
15415 - BUG: regex: fix pcre compile error when using JIT
15416 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
15417 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
15418 - MINOR: show PCRE version and JIT status in -vv
15419 - BUG/MINOR: jit: don't rely on USE flag to detect support
15420 - DOC: readme: add suggestion to link against static openssl
15421 - DOC: examples: provide simplified ssl configuration
15422 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
15423 - MINOR: tproxy: add support for FreeBSD
15424 - MINOR: tproxy: add support for OpenBSD
15425 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
15426 - CLEANUP: fix minor typo in error message.
15427 - CLEANUP: fix missing include <string.h> in proto/listener.h
15428 - CLEANUP: protect checks.h from multiple inclusions
15429 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
15430 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
15431 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
15432 - BUG/MEDIUM: splicing is broken since 1.5-dev12
15433 - BUG/MAJOR: acl: add implicit arguments to the resolve list
15434 - BUG/MINOR: tcp: fix error reporting for TCP rules
15435 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
15436 - MINOR: stick-table: allow to allocate an entry without filling it
15437 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
15438 - MINOR: session: only call http_send_name_header() when changing the server
15439 - MINOR: tcp: report the erroneous word in tcp-request track*
15440 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
15441 - BUG/MEDIUM: log: fix regression on log-format handling
15442 - MEDIUM: log: report file name, line number, and directive name with log-format errors
15443 - BUG/MINOR: cli: "clear table" did not work anymore without a key
15444 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
15445 - BUG/MAJOR: http: compression still has defects on chunked responses
15446 - BUG/MINOR: stats: fix confirmation links on the stats interface
15447 - BUG/MINOR: stats: the status bar does not appear anymore after a change
15448 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
15449 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
15450 - BUG/MINOR: fix unterminated ACL array in compression
15451 - BUILD: last fix broke non-linux platforms
15452 - MINOR: init: indicate the SSL runtime version on -vv.
15453 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
15454 - BUILD: stdbool is not portable (again)
15455 - DOC: readme: add a small reminder about restrictions to respect in the code
15456 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
15457 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
15458 - DOC: fix wrong copy-paste in the rspdel example
15459 - MINOR: counters: make it easier to extend the amount of tracked counters
15460 - MEDIUM: counters: add support for tracking a third counter
15461 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
15462 - BUG/MAJOR: http: always ensure response buffer has some room for a response
15463 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
15464 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
15465 - MINOR: log: add a new flag 'L' for locally processed requests
15466 - MINOR: http: add full-length header fetch methods
15467 - MEDIUM: protocol: implement a "drain" function in protocol layers
15468 - MEDIUM: http: add a new "http-response" ruleset
15469 - MEDIUM: http: add the "set-nice" action to http-request and http-response
15470 - MEDIUM: log: add a log level override value in struct session
15471 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
15472 - MEDIUM: http: add support for "set-tos" in http-request/http-response
15473 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
15474 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
15475 - MEDIUM: acl: automatically detect the type of certain fetches
15476 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
15477 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
15478 - DOC: major reorg of ACL + sample fetch
15479 - CLEANUP: http: remove the bogus urlp_ip ACL match
15480 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
15481 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
15482 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
15483 - DOC: update ROADMAP file
15484 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
15485 - MEDIUM: stats: add proxy name filtering on the statistic page
15486
Willy Tarreau289dd922013-04-03 02:26:31 +0200154872013/04/03 : 1.5-dev18
15488 - DOCS: Add explanation of intermediate certs to crt paramater
15489 - DOC: typo and minor fixes in compression paragraph
15490 - MINOR: config: http-request configuration error message misses new keywords
15491 - DOC: minor typo fix in documentation
15492 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
15493 - MEDIUM: ssl: add bind-option "strict-sni"
15494 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
15495 - MEDIUM: regex: Use PCRE JIT in acl
15496 - DOC: simplify bind option "interface" explanation
15497 - DOC: tfo: bump required kernel to linux-3.7
15498 - BUILD: add explicit support for TFO with USE_TFO
15499 - MEDIUM: New cli option -Ds for systemd compatibility
15500 - MEDIUM: add haproxy-systemd-wrapper
15501 - MEDIUM: add systemd service
15502 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
15503 - BUG/MEDIUM: remove supplementary groups when changing gid
15504 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
15505 - BUG/MINOR: Correct logic in cut_crlf()
15506 - CLEANUP: checks: Make desc argument to set_server_check_status const
15507 - CLEANUP: dumpstats: Make cli_release_handler() static
15508 - MEDIUM: server: Break out set weight processing code
15509 - MEDIUM: server: Allow relative weights greater than 100%
15510 - MEDIUM: server: Tighten up parsing of weight string
15511 - MEDIUM: checks: Add agent health check
15512 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
15513 - BUG/MINOR: time: frequency counters are not totally accurate
15514 - BUG/MINOR: http: don't process abortonclose when request was sent
15515 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
15516 - BUG/MEDIUM: checks: ignore late resets after valid responses
15517 - DOC: fix bogus recommendation on usage of gpc0 counter
15518 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
15519 - MINOR: signal: don't block SIGPROF by default
15520 - OPTIM: epoll: make use of EPOLLRDHUP
15521 - OPTIM: splice: detect shutdowns and avoid splice() == 0
15522 - OPTIM: splice: assume by default that splice is working correctly
15523 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
15524 - BUG/MEDIUM: peers: only the last peers section was used by tables
15525 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
15526 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
15527 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
15528 - BUG/MINOR: config: free peer's address when exiting upon parsing error
15529 - BUG/MINOR: config: check the proper variable when parsing log minlvl
15530 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
15531 - BUG/MINOR: cli: show sess should always validate s->listener
15532 - BUG/MINOR: log: improper NULL return check on utoa_pad()
15533 - CLEANUP: http: remove a useless null check
15534 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
15535 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
15536 - BUG/MEDIUM: tools: off-by-one in quote_arg()
15537 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
15538 - BUG/MINOR: unix: remove the 'level' field from the ux struct
15539 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
15540 - CLEANUP: config: slowstart is never negative
15541 - CLEANUP: config: maxcompcpuusage is never negative
15542 - BUG/MEDIUM: log: emit '-' for empty fields again
15543 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
15544 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
15545 - BUILD: improve the makefile's support for libpcre
15546 - MEDIUM: halog: add support for counting per source address (-ic)
15547 - MEDIUM: tools: make str2sa_range support all address syntaxes
15548 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
15549 - MEDIUM: config: use str2sa_range() to parse server addresses
15550 - MEDIUM: config: use str2sa_range() to parse peers addresses
15551 - MINOR: tests: add a config file to ease address parsing tests.
15552 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
15553 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
15554 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
15555 - MINOR: config: report missing peers section name
15556 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
15557 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
15558 - MINOR: tools: prepare str2sa_range() to return an error message
15559 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
15560 - MINOR: tools: prepare str2sa_range() to accept a prefix
15561 - MEDIUM: tools: make str2sa_range() parse unix addresses too
15562 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
15563 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
15564 - MEDIUM: config: use str2sa_range() to parse log addresses
15565 - CLEANUP: tools: remove str2sun() which is not used anymore.
15566 - MEDIUM: config: add complete support for str2sa_range() in dispatch
15567 - MEDIUM: config: add complete support for str2sa_range() in server addr
15568 - MEDIUM: config: add complete support for str2sa_range() in 'server'
15569 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
15570 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
15571 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
15572 - CLEANUP: config: do not use multiple errmsg at once
15573 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
15574 - MAJOR: listener: support inheriting a listening fd from the parent
15575 - MAJOR: tools: support environment variables in addresses
15576 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
15577 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
15578 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
15579 - DOC: mention the new HTTP 307 and 308 redirect statues
15580 - MEDIUM: poll: do not use FD_* macros anymore
15581 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
15582 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
15583 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
15584 - BUILD: fix usual isdigit() warning on solaris
15585 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
15586 - OPTIM: buffer: remove one jump in buffer_count()
15587 - OPTIM: http: improve branching in chunk size parser
15588 - OPTIM: http: optimize the response forward state machine
15589 - BUILD: enable poll() by default in the makefile
15590 - BUILD: add explicit support for Mac OS/X
15591 - BUG/MAJOR: http: use a static storage for sample fetch context
15592 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
15593 - BUG/MAJOR: http: fix regression introduced by commit a890d072
15594 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
15595 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
15596 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
15597 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
15598 - MINOR: log: indicate it when some unreliable sample fetches are logged
15599 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
15600 - MINOR: backend: rename sample fetch functions and declare the sample keywords
15601 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
15602 - MINOR: listener: rename sample fetch functions and declare the sample keywords
15603 - MEDIUM: http: unify acl and sample fetch functions
15604 - MINOR: session: rename sample fetch functions and declare the sample keywords
15605 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
15606 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
15607 - MAJOR: acl: remove fetch argument validation from the ACL struct
15608 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
15609 - MINOR: payload: add new direction-explicit sample fetches
15610 - CLEANUP: acl: remove ACL hooks which were never used
15611 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
15612 - MINOR: sample: provide a function to report the name of a sample check point
15613 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
15614 - CLEANUP: acl: remove unused references to ACL_USE_*
15615 - MINOR: http: replace acl_parse_ver with acl_parse_str
15616 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
15617 - MAJOR: acl: add option -m to change the pattern matching method
15618 - MINOR: acl: remove the use_count in acl keywords
15619 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
15620 - MEDIUM: acl: support using sample fetches directly in ACLs
15621 - MEDIUM: http: remove val_usr() to validate user_lists
15622 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
15623 - MINOR: ssl: add support for the "alpn" bind keyword
15624 - MINOR: http: status code 303 is HTTP/1.1 only
15625 - MEDIUM: http: implement redirect 307 and 308
15626 - MINOR: http: status 301 should not be marked non-cacheable
15627
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100156282012/12/28 : 1.5-dev17
15629 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
15630 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
15631 - BUG/MINOR: stats: last fix was still wrong
15632 - BUG/MINOR: stats: http-request rules still don't cope with stats
15633 - BUG/MINOR: http: http-request add-header emits a corrupted header
15634 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
15635 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
15636 - BUILD: log: unused variable svid
15637 - CLEANUP: http: rename the misleading http_check_access_rule
15638 - MINOR: http: move redirect rule processing to its own function
15639 - REORG: config: move the http redirect rule parser to proto_http.c
15640 - MEDIUM: http: add support for "http-request redirect" rules
15641 - MEDIUM: http: add support for "http-request tarpit" rule
15642
Willy Tarreau69eda352012-12-24 16:48:14 +0100156432012/12/24 : 1.5-dev16
15644 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
15645 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
15646 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
15647 - MINOR: contrib: make the iprange tool grep for addresses
15648 - CLEANUP: polling: gcc doesn't always optimize constants away
15649 - OPTIM: poll: optimize fd management functions for low register count CPUs
15650 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
15651 - OPTIM: epoll: use a temp variable for intermediary flag computations
15652 - OPTIM: epoll: current fd does not count as a new one
15653 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
15654 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
15655 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
15656 - BUG/MINOR: stream_interface: don't return when the fd is already set
15657 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
15658 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
15659 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
15660 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
15661 - BUG/MINOR: http: don't abort client connection on premature responses
15662 - BUILD: no need to clean up when making git-tar
15663 - MINOR: log: add a tag for amount of bytes uploaded from client to server
15664 - BUG/MEDIUM: log: fix possible segfault during config parsing
15665 - MEDIUM: log: change a few log tokens to make them easier to remember
15666 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
15667 - MEDIUM: log-format: make the format parser more robust and more extensible
15668 - MINOR: sample: support cast from bool to string
15669 - MINOR: samples: add a function to fetch and convert any sample to a string
15670 - MINOR: log: add lf_text_len
15671 - MEDIUM: log: add the ability to include samples in logs
15672 - REORG: stats: massive code reorg and cleanup
15673 - REORG: stats: move the HTTP header injection to proto_http
15674 - REORG: stats: functions are now HTTP/CLI agnostic
15675 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
15676 - MINOR: chunks: centralize the trash chunk allocation
15677 - MEDIUM: stats: use hover boxes instead of title to report details
15678 - MEDIUM: stats: use multi-line tips to display detailed counters
15679 - MINOR: tools: simplify the use of the int to ascii macros
15680 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
15681 - MINOR: http: prepare to support more http-request actions
15682 - MINOR: log: make parse_logformat_string() take a const char *
15683 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
15684
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100156852012/12/12 : 1.5-dev15
15686 - DOC: add a few precisions on compression
15687 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
15688 - BUG/MINOR: ssl: One free session in cache remains unused.
15689 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
15690 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
15691 - MINOR: acl: add fetch for server session rate
15692 - BUG/MINOR: compression: Content-Type is case insensitive
15693 - MINOR: compression: disable on multipart or status != 200
15694 - BUG/MINOR: http: don't report client aborts as server errors
15695 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
15696 - MINOR: http: factor out the content-type checks
15697 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
15698 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
15699 - BUG/MINOR: http: disable compression when message has no body
15700 - MINOR: compression: make the stats a bit more robust
15701 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
15702 - MINOR: connection: don't remove failed handshake flags
15703 - MEDIUM: connection: add an error code in connections
15704 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
15705 - MEDIUM: connection: add error reporting for the PROXY protocol header
15706 - MEDIUM: connection: add error reporting for the SSL
15707 - DOC: document the connection error format in logs
15708 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
15709 - BUILD: stdbool is not portable
15710 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
15711 - BUG/MAJOR: raw_sock: must check error code on hangup
15712 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
15713 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
15714 - MINOR: stats: add a few more information on session dump
15715 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
15716 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
15717 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
15718 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
15719 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
15720 - CLEANUP: proto_tcp: use the same code to bind servers and backends
15721 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
15722 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
15723 - MEDIUM: proto_tcp: add support for tracking L7 information
15724 - MEDIUM: counters: add sc1_trackers/sc2_trackers
15725 - MINOR: http: add the "base32" pattern fetch function
15726 - MINOR: http: add the "base32+src" fetch method.
15727 - CLEANUP: session: use an array for the stick counters
15728 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
15729 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
15730 - BUG/MAJOR: connection: always recompute polling status upon I/O
15731 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
15732 - MINOR: config: improve error checking on TCP stick-table tracking
15733 - DOC: add some clarifications to the readme
15734
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100157352012/11/26 : 1.5-dev14
15736 - DOC: fix minor typos
15737 - BUG/MEDIUM: compression: does not forward trailers
15738 - MINOR: buffer_dump with ASCII
15739 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
15740 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
15741 - BUG/MINOR: checks: don't mark the FD as closed before transport close
15742 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
15743 - MINOR: cli: report the msg state in full text in "show sess $PTR"
15744 - CLEANUP: checks: rename some server check flags
15745 - MAJOR: checks: rework completely bogus state machine
15746 - BUG/MINOR: checks: slightly clean the state machine up
15747 - MEDIUM: checks: avoid waking the application up for pure TCP checks
15748 - MEDIUM: checks: close the socket as soon as we have a response
15749 - BUG/MAJOR: checks: close FD on all timeouts
15750 - MINOR: checks: fix recv polling after connect()
15751 - MEDIUM: connection: provide a common conn_full_close() function
15752 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
15753 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
15754 - MINOR: listeners: make the accept loop more robust when maxaccept==0
15755 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
15756 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
15757 - BUG/MINOR: stats: fix inversion of the report of a check in progress
15758 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
15759 - BUG/MEDIUM: connection: always disable polling upon error
15760 - MINOR: connection: abort earlier when errors are detected
15761 - BUG/MEDIUM: checks: report handshake failures
15762 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
15763 - MINOR: tcp: add support for the "v6only" bind option
15764 - MINOR: stats: also report the computed compression savings in html stats
15765 - MINOR: stats: report the total number of compressed responses per front/back
15766 - MINOR: tcp: add support for the "v4v6" bind option
15767 - DOC: stats: document the comp_rsp stats column
15768 - BUILD: buffer: fix another isprint() warning on solaris
15769 - MINOR: cli: add support for the "show sess all" command
15770 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
15771 - MINOR: cli: improve output format for show sess $ptr
15772
Willy Tarreauad15d122012-11-22 01:11:33 +0100157732012/11/22 : 1.5-dev13
15774 - BUILD: fix build issue without USE_OPENSSL
15775 - BUILD: fix compilation error with DEBUG_FULL
15776 - DOC: ssl: remove prefer-server-ciphers documentation
15777 - DOC: ssl: surround keywords with quotes
15778 - DOC: fix minor typo on http-send-name-header
15779 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
15780 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
15781 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
15782 - BUILD: report zlib support in haproxy -vv
15783 - DOC: compression: add some details and clean up the formatting
15784 - DOC: Change is_ssl acl to ssl_fc acl in example
15785 - DOC: make it clear what the HTTP request size is
15786 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
15787 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
15788 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
15789 - DOC: ssl: add 'ecdhe' statement on 'bind'
15790 - MEDIUM: ssl: add client certificate authentication support
15791 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
15792 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
15793 - DOC: ssl: add fetch and ACL 'client_cert'
15794 - MINOR: ssl: add ignore verify errors options
15795 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
15796 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
15797 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
15798 - MINOR: ssl: add fetches and ACLs to return verify errors
15799 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
15800 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
15801 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
15802 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
15803 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
15804 - MEDIUM: config: authorize frontend and listen without bind.
15805 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
15806 - DOC: ssl: add 'no-tls-tickets' statement documentation.
15807 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
15808 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
15809 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
15810 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
15811 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
15812 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
15813 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
15814 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
15815 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
15816 - MINOR: ssl: use bit fields to store ssl options instead of one int each
15817 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
15818 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
15819 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
15820 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
15821 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
15822 - MEDIUM: ssl: reject ssl server keywords in default-server statement
15823 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
15824 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
15825 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
15826 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
15827 - MINOR: acl: add parse and match primitives to use binary type on ACLs
15828 - MINOR: sample: export 'sample_get_trash_chunk(void)'
15829 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
15830 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
15831 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
15832 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
15833 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
15834 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
15835 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
15836 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
15837 - MINOR: ssl: add 'crt' statement on server.
15838 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
15839 - BUG/MEDIUM: ssl: review polling on reneg.
15840 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
15841 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
15842 - MINOR: build: allow packagers to specify the ssl cache size
15843 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
15844 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
15845 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
15846 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
15847 - DOC: duplicate ssl_sni section
15848 - MEDIUM: HTTP compression (zlib library support)
15849 - CLEANUP: use struct comp_ctx instead of union
15850 - BUILD: remove dependency to zlib.h
15851 - MINOR: compression: memlevel and windowsize
15852 - MEDIUM: use pool for zlib
15853 - MINOR: compression: try init in cfgparse.c
15854 - MINOR: compression: init before deleting headers
15855 - MEDIUM: compression: limit RAM usage
15856 - MINOR: compression: tune.comp.maxlevel
15857 - MINOR: compression: maximum compression rate limit
15858 - MINOR: log-format: check number of arguments in cfgparse.c
15859 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
15860 - BUG/MINOR: compression: deinit zlib only when required
15861 - MEDIUM: compression: don't compress when no data
15862 - MEDIUM: compression: use pool for comp_ctx
15863 - MINOR: compression: rate limit in 'show info'
15864 - MINOR: compression: report zlib memory usage
15865 - BUG/MINOR: compression: dynamic level increase
15866 - DOC: compression: unsupported cases.
15867 - MINOR: compression: CPU usage limit
15868 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
15869 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
15870 - MINOR: config: add a function to indent error messages
15871 - REORG: split "protocols" files into protocol and listener
15872 - MEDIUM: config: replace ssl_conf by bind_conf
15873 - CLEANUP: listener: remove unused conf->file and conf->line
15874 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
15875 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
15876 - MEDIUM: move bind SSL parsing to ssl_sock
15877 - MINOR: config: improve error reporting for "bind" lines
15878 - MEDIUM: config: move the common "bind" settings to listener.c
15879 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
15880 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
15881 - MINOR: listener: add a scope field in the bind keyword lists
15882 - MINOR: config: pass the file and line to config keyword parsers
15883 - MINOR: stats: fill the file and line numbers in the stats frontend
15884 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
15885 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
15886 - REORG: listener: move unix perms from the listener to the bind_conf
15887 - BUG: backend: balance hdr was broken since 1.5-dev11
15888 - MINOR: standard: make memprintf() support a NULL destination
15889 - MINOR: config: make str2listener() use memprintf() to report errors.
15890 - MEDIUM: stats: remove the stats_sock struct from the global struct
15891 - MINOR: ssl: set the listeners' data layer to ssl during parsing
15892 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
15893 - DOC: move bind options to their own section
15894 - DOC: stats: refer to "bind" section for "stats socket" settings
15895 - DOC: fix index to reference bind and server options
15896 - BUG: http: do not print garbage on invalid requests in debug mode
15897 - BUG/MINOR: config: check the proper pointer to report unknown protocol
15898 - CLEANUP: connection: offer conn_prepare() to set up a connection
15899 - CLEANUP: config: fix typo inteface => interface
15900 - BUG: stats: fix regression introduced by commit 4348fad1
15901 - MINOR: cli: allow to set frontend maxconn to zero
15902 - BUG/MAJOR: http: chunk parser was broken with buffer changes
15903 - MEDIUM: monitor: simplify handling of monitor-net and mode health
15904 - MINOR: connection: add a pointer to the connection owner
15905 - MEDIUM: connection: make use of the owner instead of container_of
15906 - BUG/MINOR: ssl: report the L4 connection as established when possible
15907 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
15908 - BUG/MINOR: config: use a copy of the file name in proxy configurations
15909 - BUG/MEDIUM: listener: don't pause protocols that do not support it
15910 - MEDIUM: proxy: add the global frontend to the list of normal proxies
15911 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
15912 - MINOR: signal: really ignore signals configured with no handler
15913 - MINOR: buffers: add a few functions to write chars, strings and blocks
15914 - MINOR: raw_sock: always report asynchronous connection errors
15915 - MEDIUM: raw_sock: improve connection error reporting
15916 - REORG: connection: rename the data layer the "transport layer"
15917 - REORG: connection: rename app_cb "data"
15918 - MINOR: connection: provide a generic data layer wakeup callback
15919 - MINOR: connection: split conn_prepare() in two functions
15920 - MINOR: connection: add an init callback to the data_cb struct
15921 - MEDIUM: session: use a specific data_cb for embryonic sessions
15922 - MEDIUM: connection: use a generic data-layer init() callback
15923 - MEDIUM: connection: reorganize connection flags
15924 - MEDIUM: connection: only call the data->wake callback on activity
15925 - MEDIUM: connection: make it possible for data->wake to return an error
15926 - MEDIUM: session: register a data->wake callback to process errors
15927 - MEDIUM: connection: don't call the data->init callback upon error
15928 - MEDIUM: connection: it's not the data layer's role to validate the connection
15929 - MEDIUM: connection: automatically disable polling on error
15930 - REORG: connection: move the PROXY protocol management to connection.c
15931 - MEDIUM: connection: add a new local send-proxy transport callback
15932 - MAJOR: checks: make use of the connection layer to send checks
15933 - REORG: server: move the check-specific parts into a check subsection
15934 - MEDIUM: checks: use real buffers to store requests and responses
15935 - MEDIUM: check: add the ctrl and transport layers in the server check structure
15936 - MAJOR: checks: completely use the connection transport layer
15937 - MEDIUM: checks: add the "check-ssl" server option
15938 - MEDIUM: checks: enable the PROXY protocol with health checks
15939 - CLEANUP: checks: remove minor warnings for assigned but not used variables
15940 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
15941 - BUG: connection: fix regression from commit 9e272bf9
15942 - CLEANUP: cttproxy: remove a warning on undeclared close()
15943 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
15944 - MEDIUM: listener: add support for linux's accept4() syscall
15945 - MINOR: halog: sort output by cookie code
15946 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
15947 - BUG/MINOR: halog: fix help message for -ut/-uto
15948 - MINOR: halog: add a parameter to limit output line count
15949 - BUILD: accept4: move the socketcall declaration outside of accept4()
15950 - MINOR: server: add minimal infrastructure to parse keywords
15951 - MINOR: standard: make indent_msg() support empty messages
15952 - MEDIUM: server: check for registered keywords when parsing unknown keywords
15953 - MEDIUM: server: move parsing of keyword "id" to server.c
15954 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
15955 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
15956 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
15957 - MEDIUM: connection: always unset the transport layer upon close
15958 - BUG/MINOR: session: fix some leftover from debug code
15959 - BUG/MEDIUM: session: enable the conn_session_update() callback
15960 - MEDIUM: connection: add a flag to hold the transport layer
15961 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
15962 - MINOR: log: make lf_text use a const char *
15963 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
15964 - REORG: http: rename msg->buf to msg->chn since it's a channel
15965 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
15966 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
15967 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
15968 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
15969 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
15970 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
15971 - OPTIM: channel: reorganize struct members to improve cache efficiency
15972 - CLEANUP: session: remove term_trace which is not used anymore
15973 - OPTIM: session: reorder struct session fields
15974 - OPTIM: connection: pack the struct target
15975 - DOC: document relations between internal entities
15976 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
15977 - BUILD: ssl: fix shctx build on older compilers
15978 - MEDIUM: ssl: add support for the "npn" bind keyword
15979 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
15980 - MINOR: chunk: provide string compare functions
15981 - MINOR: sample: accept fetch keywords without parenthesis
15982 - MEDIUM: sample: pass an empty list instead of a null for fetch args
15983 - MINOR: ssl: improve socket behaviour upon handshake abort.
15984 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
15985 - MEDIUM: listener: provide a fallback for accept4() when not supported
15986 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
15987 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
15988 - OPTIM: channel: inline channel_forward's fast path
15989 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
15990 - OPTIM: tools: inline hex2i()
15991 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
15992 - MINOR: compression: automatically disable compression for older browsers
15993 - MINOR: compression: optimize memLevel to improve byte rate
15994 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
15995 - BUILD: fix coexistence of openssl and zlib
15996 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
15997 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
15998 - MINOR: tools: add a clear_addr() function to unset an address
15999 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
16000 - CLEANUP: remove trashlen
16001 - MAJOR: session: detach the connections from the stream interfaces
16002 - DOC: update document describing relations between internal entities
16003 - BUILD: make it possible to specify ZLIB path
16004 - MINOR: compression: add an offload option to remove the Accept-Encoding header
16005 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
16006 - CLEANUP: completely remove trashlen
16007 - MINOR: chunk: add a function to reset a chunk
16008 - CLEANUP: replace chunk_printf() with chunk_appendf()
16009 - MEDIUM: make the trash be a chunk instead of a char *
16010 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
16011 - MEDIUM: stick-table: allocate the table key of size buffer size
16012 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
16013 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
16014 - OPTIM: session: don't process the whole session when only timers need a refresh
16015 - BUG/MINOR: session: mark the handshake as complete earlier
16016 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
16017 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
16018 - MAJOR: sepoll: make the poller totally event-driven
16019 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
16020 - BUILD: compression: remove a build warning
16021 - MEDIUM: fd: don't unset fdtab[].updated upon delete
16022 - REORG: fd: move the speculative I/O management from ev_sepoll
16023 - REORG: fd: move the fd state management from ev_sepoll
16024 - REORG: fd: centralize the processing of speculative events
16025 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
16026 - BUILD: stream_interface: remove si_fd() and its references
16027 - BUILD: compression: enable build in BSD and OSX Makefiles
16028 - MAJOR: ev_select: make the poller support speculative events
16029 - MAJOR: ev_poll: make the poller support speculative events
16030 - MAJOR: ev_kqueue: make the poller support speculative events
16031 - MAJOR: polling: replace epoll with sepoll and remove sepoll
16032 - MAJOR: polling: remove unused callbacks from the poller struct
16033 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
16034 - CLEANUP: channel: remove any reference of the hijackers
16035 - CLEANUP: stream_interface: remove the external task type target
16036 - MAJOR: connection: replace struct target with a pointer to an enum
16037 - BUG: connection: fix typo in previous commit
16038 - BUG: polling: don't skip polled events in the spec list
16039 - MINOR: splice: disable it when the system returns EBADF
16040 - MINOR: build: allow packagers to specify the default maxzlibmem
16041 - BUG: halog: fix broken output limitation
16042 - BUG: proxy: fix server name lookup in get_backend_server()
16043 - BUG: compression: do not always increment the round counter on allocation failure
16044 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
16045 - MINOR: global: don't prevent nbproc from being redefined
16046 - MINOR: config: support process ranges for "bind-process"
16047 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
16048 - MINOR: ssl: rename and document the tune.ssl.cachesize option
16049 - DOC: update the PROXY protocol spec to support v2
16050 - MINOR: standard: add a simple popcount function
16051 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
16052 - BUG: compression: properly disable compression when content-type does not match
16053 - MINOR: cli: report connection status in "show sess xxx"
16054 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
16055 - BUILD: cli: fix build when SSL is enabled
16056 - MINOR: cli: report the fd state in "show sess xxx"
16057 - MINOR: cli: report an error message on missing argument to compression rate
16058 - MINOR: http: add some debugging functions to pretty-print msg state names
16059 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
16060 - DOC: documentation on http header capture is wrong
16061 - MINOR: http: allow the cookie capture size to be changed
16062 - DOC: http header capture has not been limited in size for a long time
16063 - DOC: update readme with build methods for BSD
16064 - BUILD: silence a warning on Solaris about usage of isdigit()
16065 - MINOR: stats: report HTTP compression stats per frontend and per backend
16066 - MINOR: log: add '%Tl' to log-format
16067 - MINOR: samples: update the url_param fetch to match parameters in the path
16068
Willy Tarreau16216822012-09-10 09:46:55 +0200160692012/09/10 : 1.5-dev12
16070 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
16071 - MEDIUM: ssl: add support for prefer-server-ciphers option
16072 - MINOR: IPv6 support for transparent proxy
16073 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
16074 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
16075 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
16076 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
16077 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
16078 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
16079 - MEDIUM: ssl: protect against client-initiated renegociation
16080 - BUILD: add optional support for SSL via the USE_OPENSSL flag
16081 - MEDIUM: ssl: add shared memory session cache implementation.
16082 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
16083 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
16084 - MEDIUM: ssl: add support for SNI and wildcard certificates
16085 - DOC: Typos cleanup
16086 - DOC: fix name for "option independant-streams"
16087 - DOC: specify the default value for maxconn in the context of a proxy
16088 - BUG/MINOR: to_log erased with unique-id-format
16089 - LICENSE: add licence exception for OpenSSL
16090 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
16091 - BUILD: add an AIX 5.2 (and later) target.
16092 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
16093 - MINOR: halog: use the more recent dual-mode fgets2 implementation
16094 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
16095 - CLEANUP: halog: make clean should also remove .o files
16096 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
16097 - OPTIM: halog: improve cold-cache behaviour when loading a file
16098 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
16099 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
16100 - MEDIUM: pattern: add the "base" sample fetch method
16101 - OPTIM: i386: make use of kernel-mode-linux when available
16102 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
16103 - BUG/MINOR: polling: some events were not set in various pollers
16104 - MINOR: http: add the urlp_val ACL match
16105 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
16106 - MINOR: stats/cli: add plans to support more stick-table actions
16107 - MEDIUM: stats/cli: add support for "set table key" to enter values
16108 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
16109 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
16110 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
16111 - REORG/MINOR: connection: move declaration to its own include file
16112 - REORG/MINOR: checks: put a struct connection into the server
16113 - MINOR: connection: add flags to the connection struct
16114 - MAJOR: get rid of fdtab[].state and use connection->flags instead
16115 - MINOR: fd: add a new I/O handler to fdtab
16116 - MEDIUM: polling: prepare to call the iocb() function when defined.
16117 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
16118 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
16119 - MINOR: connection: add a handler for fd-based connections
16120 - MAJOR: connection: replace direct I/O callbacks with the connection callback
16121 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
16122 - MEDIUM: connection: remove the FD_POLL_* flags only once
16123 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
16124 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
16125 - CLEANUP: remove the now unused fdtab direct I/O callbacks
16126 - MAJOR: remove the stream interface and task management code from sock_*
16127 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
16128 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
16129 - MAJOR: connection: add a new CO_FL_CONNECTED flag
16130 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
16131 - MAJOR: connection: call data layer handshakes from the handler
16132 - MEDIUM: fd: remove the EV_FD_COND_* primitives
16133 - MINOR: sock_raw: move calls to si_data_close upper
16134 - REORG: connection: replace si_data_close() with conn_data_close()
16135 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
16136 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
16137 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
16138 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
16139 - MEDIUM: connection: add definitions for dual polling mechanisms
16140 - MEDIUM: connection: make use of the new polling functions
16141 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
16142 - MEDIUM: checks: don't use FD_WAIT_* anymore
16143 - MINOR: fd: get rid of FD_WAIT_*
16144 - MEDIUM: stream_interface: offer a generic function for connection updates
16145 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
16146 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
16147 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
16148 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
16149 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
16150 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
16151 - REORG/MAJOR: extract "struct buffer" from "struct channel"
16152 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
16153 - REORG: sock_raw: rename the files raw_sock*
16154 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
16155 - MAJOR: raw_sock: temporarily disable splicing
16156 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
16157 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
16158 - MAJOR: connection: split the send call into connection and stream interface
16159 - MAJOR: stream-interface: restore splicing mechanism
16160 - MAJOR: stream-interface: make conn_notify_si() more robust
16161 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
16162 - MAJOR: stream-interface: don't commit polling changes in every callback
16163 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
16164 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
16165 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
16166 - REORG: buffers: split buffers into chunk,buffer,channel
16167 - MAJOR: channel: remove the BF_OUT_EMPTY flag
16168 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
16169 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
16170 - MINOR: buffer: provide a new buffer_full() function
16171 - MAJOR: channel: stop relying on BF_FULL to take action
16172 - MAJOR: channel: remove the BF_FULL flag
16173 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
16174 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
16175 - CLEANUP: channel: use "channel" instead of "buffer" in function names
16176 - REORG: connection: move the target pointer from si to connection
16177 - MAJOR: connection: move the addr field from the stream_interface
16178 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
16179 - MEDIUM: proto_tcp: remove any dependence on stream_interface
16180 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
16181 - MEDIUM: connection: add an ->init function to data layer
16182 - MAJOR: session: introduce embryonic sessions
16183 - MAJOR: connection: make the PROXY decoder a handshake handler
16184 - CLEANUP: frontend: remove the old proxy protocol decoder
16185 - MAJOR: connection: rearrange the polling flags.
16186 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
16187 - MEDIUM: connection: complete the polling cleanups
16188 - MEDIUM: connection: avoid calling handshakes when polling is required
16189 - MAJOR: stream_interface: continue to update data polling flags during handshakes
16190 - CLEANUP: fd: remove fdtab->flags
16191 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
16192 - CLEANUP: includes: fix includes for a number of users of fd.h
16193 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
16194 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
16195 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
16196 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
16197 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
16198 - BUILD: ssl: fix shctx build on RHEL with futex
16199 - BUILD: include sys/socket.h to fix build failure on FreeBSD
16200 - BUILD: fix build error without SSL (ssl_cert)
16201 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
16202 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
16203 - MEDIUM: config: support per-listener backlog and maxconn
16204 - MINOR: session: do not send an HTTP/500 error on SSL sockets
16205 - MEDIUM: config: implement maxsslconn in the global section
16206 - BUG: tcp: close socket fd upon connect error
16207 - MEDIUM: connection: improve error handling around the data layer
16208 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
16209 - BUILD: shut a gcc warning introduced by commit 269ab31
16210 - MEDIUM: config: centralize handling of SSL config per bind line
16211 - BUILD: makefile: report USE_OPENSSL status in build options
16212 - BUILD: report openssl build settings in haproxy -vv
16213 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
16214 - DOC: add a special acknowledgement for the stud project
16215 - DOC: add missing SSL options for servers and listeners
16216 - BUILD: automatically add -lcrypto for SSL
16217 - DOC: add some info about openssl build in the README
16218
Willy Tarreau02c7c142012-06-04 00:43:45 +0200162192012/06/04 : 1.5-dev11
16220 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
16221 - BUG/MAJOR: trash must always be the size of a buffer
16222 - DOC: fix minor regex example issue and improve doc on stats
16223 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
16224 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
16225 - MINOR: checks: add on-marked-up option
16226 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
16227 - MEDIUM: stream_interface: remove the si->init
16228 - MINOR: buffers: add a rewind function
16229 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
16230 - MAJOR: http: stop using msg->sol outside the parsers
16231 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
16232 - MEDIUM: http: get rid of msg->som which is not used anymore
16233 - MEDIUM: http: msg->sov and msg->sol will never wrap
16234 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
16235 - BUG/MINOR: stop connect timeout when connect succeeds
16236 - REORG: move the send-proxy code to tcp_connect_write()
16237 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
16238 - MINOR: stream_interface: introduce a new "struct connection" type
16239 - REORG/MINOR: stream_interface: move si->fd to struct connection
16240 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
16241 - MINOR: stream_interface: add a data channel close function
16242 - MEDIUM: stream_interface: call si_data_close() before releasing the si
16243 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
16244 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
16245 - MINOR: add a new function call tracer for debugging purposes
16246 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
16247 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
16248 - BUG/MEDIUM: register peer sync handler in the proper order
16249 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
16250 - BUG/MINOR: fix option httplog validation with TCP frontends
16251 - BUG/MINOR: log: don't report logformat errors in backends
16252 - REORG/MINOR: use dedicated proxy flags for the cookie handling
16253 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
16254 - MINOR: http: add support for "httponly" and "secure" cookie attributes
16255 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
16256 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
16257 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
16258 - MEDIUM: stats: add the ability to kill sessions from the admin interface
16259 - BUILD: add support for linux kernels >= 2.6.28
16260
Willy Tarreauffb89472012-05-14 07:26:56 +0200162612012/05/14 : 1.5-dev10
16262 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
16263 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
16264 - CLEANUP: auth: make the code build again with DEBUG_AUTH
16265 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
16266 - REORG: use the name sock_raw instead of stream_sock
16267 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
16268 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
16269 - CLEANUP: sock_raw: remove last references to stream_sock
16270 - CLEANUP: stream_interface: stop exporting socket layer functions
16271 - MINOR: stream_interface: add an init callback to sock_ops
16272 - MEDIUM: stream_interface: derive the socket operations from the target
16273 - MAJOR: fd: remove the need for the socket layer to recheck the connection
16274 - MINOR: session: call the socket layer init function when a session establishes
16275 - MEDIUM: session: add support for tunnel timeouts
16276 - MINOR: standard: add a new debug macro : fddebug()
16277 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
16278 - OPTIM: proto_http: don't enable quick-ack on empty buffers
16279 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
16280 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
16281
Willy Tarreaua0564f32012-05-08 21:56:27 +0200162822012/05/08 : 1.5-dev9
16283 - MINOR: Add release callback to si_applet
16284 - CLEANUP: Fix some minor typos
16285 - MINOR: Add TO/FROM_SET flags to struct stream_interface
16286 - CLEANUP: Fix some minor whitespace issues
16287 - MINOR: stats admin: allow unordered parameters in POST requests
16288 - CLEANUP: fix typo in findserver() log message
16289 - MINOR: stats admin: use the backend id instead of its name in the form
16290 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
16291 - DOC: cleanup indentation, alignment, columns and chapters
16292 - DOC: fix some keywords arguments documentation
16293 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
16294 - BUG/MAJOR: log: possible segfault with logformat
16295 - MEDIUM: log: split of log_format generation
16296 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
16297 - MEDIUM: log: Unique ID
16298 - MINOR: log: log-format: usable without httplog and tcplog
16299 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
16300 - MINOR: contrib/iprange: add a network IP range to mask converter
16301 - MEDIUM: session: implement the "use-server" directive
16302 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
16303 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
16304 - MEDIUM: http: add cookie and scookie ACLs
16305 - CLEANUP: lb_first: add reference to a paper describing the original idea
16306 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
16307 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
16308 - BUILD: http: make extract_cookie_value() return an int not size_t
16309 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
16310 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
16311 - MINOR: standard: add a memprintf() function to build formatted error messages
16312 - CLEANUP: remove a few warning about unchecked return values in debug code
16313 - MEDIUM: move message-related flags from transaction to message
16314 - DOC: add a diagram to explain how circular buffers work
16315 - MAJOR: buffer rework: replace ->send_max with ->o
16316 - MAJOR: buffer: replace buf->l with buf->{o+i}
16317 - MINOR: buffers: provide simple pointer normalization functions
16318 - MINOR: buffers: remove unused function buffer_contig_data()
16319 - MAJOR: buffers: replace buf->w with buf->p - buf->o
16320 - MAJOR: buffers: replace buf->r with buf->p + buf->i
16321 - MAJOR: http: move buffer->lr to http_msg->next
16322 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
16323 - CLEANUP: http: remove unused http_msg->col
16324 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
16325 - MEDIUM: http: add a pointer to the buffer in http_msg
16326 - MAJOR: http: make http_msg->sol relative to buffer's origin
16327 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
16328 - MEDIUM: http: remove buffer arg in a few header manipulation functions
16329 - MEDIUM: http: remove buffer arg in http_capture_bad_message
16330 - MEDIUM: http: remove buffer arg in http_msg_analyzer
16331 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
16332 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
16333 - MEDIUM: http: remove buffer arg in chunk parsing functions
16334 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
16335 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
16336 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
16337 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
16338 - MEDIUM: buffers: rename a number of buffer management functions
16339 - MEDIUM: http: add a prefetch function for ACL pattern fetch
16340 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
16341 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
16342 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
16343 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
16344 - MEDIUM: add a new typed argument list parsing framework
16345 - MAJOR: acl: make use of the new argument parsing framework
16346 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
16347 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
16348 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
16349 - MAJOR: acl: ensure that implicit table and proxies are valid
16350 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
16351 - MEDIUM: pattern: replace type pattern_arg with type arg
16352 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
16353 - MEDIUM: pattern: use the standard arg parser
16354 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
16355 - MEDIUM: pattern: report the precise argument parsing error when known.
16356 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
16357 - MINOR: pattern: add a new 'sample' type to store fetched data
16358 - MEDIUM: pattern: add new sample types to replace pattern types
16359 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
16360 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
16361 - MEDIUM: acl: get rid of the SET_RES flags
16362 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
16363 - MINOR: pattern: replace struct pattern with struct sample
16364 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
16365 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
16366 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
16367 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
16368 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
16369 - MEDIUM: acl/pattern: use the same direction scheme
16370 - MEDIUM: acl/pattern: start merging common sample fetch functions
16371 - MEDIUM: pattern: ensure that sample types always cast into other types.
16372 - MEDIUM: acl/pattern: factor out the src/dst address fetches
16373 - MEDIUM: acl: implement payload and payload_lv
16374 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
16375 - MINOR: stick_table: centralize the handling of empty keys
16376 - MINOR: pattern: centralize handling of unstable data in pattern_process()
16377 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
16378 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
16379 - MINOR: acl: add a val_args field to keywords
16380 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
16381 - MEDIUM: http: merge acl and pattern header fetch functions
16382 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
16383 - MEDIUM: acl: report parsing errors to the caller
16384 - MINOR: arg: improve error reporting on invalid arguments
16385 - MINOR: acl: report errors encountered when loading patterns from files
16386 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
16387 - REORG: use the name "sample" instead of "pattern" to designate extracted data
16388 - REORG: rename "pattern" files
16389 - MINOR: acl: add types to ACL patterns
16390 - MINOR: standard: add an IPv6 parsing function (str62net)
16391 - MEDIUM: acl: support IPv6 address matching
16392 - REORG: stream_interface: create a struct sock_ops to hold socket operations
16393 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
16394 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
16395 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
16396 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
16397 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
16398 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
16399 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
16400 - MEDIUM: http: improve error capture reports
16401 - MINOR: acl: add the cook_val() match to match a cookie against an integer
16402 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
16403 - MEDIUM: memory: add the ability to poison memory at run time
16404 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
16405 - MINOR: cfgparse: use a common errmsg pointer for all parsers
16406 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
16407 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
16408 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
16409
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200164102012/03/26 : 1.5-dev8
16411 - MINOR: patch for minor typo (ressources/resources)
16412 - MEDIUM: http: add support for sending the server's name in the outgoing request
16413 - DOC: mention that default checks are TCP connections
16414 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
16415 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
16416 - CLEANUP: Fix HCHK spelling errors
16417 - BUG/MINOR: fix typo in processing of http-send-name-header
16418 - MEDIUM: log: Use linked lists for loggers
16419 - BUILD: fix declaration inside a scope block
16420 - REORG: log: split send_log function
16421 - MINOR: config: Parse the string of the log-format config keyword
16422 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
16423 - MINOR: Date and time fonctions that don't use snprintf
16424 - MEDIUM: log: make http_sess_log use log_format
16425 - DOC: log-format documentation
16426 - MEDIUM: log: use log_format for mode tcplog
16427 - MEDIUM: log-format: backend source address %Bi %Bp
16428 - BUG/MINOR: log-format: fix %o flag
16429 - BUG/MEDIUM: bad length in log_format and __send_log
16430 - MINOR: logformat %st is signed
16431 - BUILD/MINOR: fix the source URL in the spec file
16432 - DOC: acl is http_first_req, not http_req_first
16433 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
16434 - MINOR: acl: add new matches for header/path/url length
16435 - BUILD: halog: make halog build on solaris
16436 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
16437 - MINOR: remove the client/server side distinction in SI addresses
16438 - MINOR: halog: add support for matching queued requests
16439 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
16440 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
16441 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
16442 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
16443 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
16444 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
16445 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
16446 - CLEANUP: rename possibly confusing struct field "tracked"
16447 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
16448 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
16449 - MEDIUM: buffers: add some new primitives and rework existing ones
16450 - BUG: buffers: don't return a negative value on buffer_total_space_res()
16451 - MINOR: buffers: make buffer_pointer() support negative pointers too
16452 - CLEANUP: kill buffer_replace() and use an inline instead
16453 - BUG: tcp: option nolinger does not work on backends
16454 - CLEANUP: ebtree: remove a few annoying signedness warnings
16455 - CLEANUP: ebtree: clarify licence and update to 6.0.6
16456 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
16457 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
16458 - BUG: ebtree: ebst_lookup() could return the wrong entry
16459 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
16460 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
16461 - MINOR: acl: add support for TLS server name matching using SNI
16462 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
16463 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
16464 - MINOR: pattern: export the global temporary pattern
16465 - CLEANUP: patterns: get rid of pattern_data_setstring()
16466 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
16467 - MINOR: acl: include pattern.h to make pattern migration more transparent
16468 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
16469 - MEDIUM: acl: use temp_pattern to store any integer-type information
16470 - MEDIUM: acl: use temp_pattern to store any address-type information
16471 - CLEANUP: acl: integer part of acl_test is not used anymore
16472 - MEDIUM: acl: use temp_pattern to store any string-type information
16473 - CLEANUP: acl: remove last data fields from the acl_test struct
16474 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
16475 - MEDIUM: patterns: the hdr() pattern is now of type string
16476 - DOC: add minimal documentation on how ACLs work internally
16477 - DOC: add a coding-style file
16478 - OPTIM: halog: keep a fast path for the lines-count only
16479 - CLEANUP: silence a warning when building on sparc
16480 - BUG: http: tighten the list of allowed characters in a URI
16481 - MEDIUM: http: block non-ASCII characters in URIs by default
16482 - DOC: add some documentation from RFC3986 about URI format
16483 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
16484 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
16485 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
16486 - MINOR: halog: add some help on the command line
16487 - BUILD: fix build error on FreeBSD
16488 - BUG: fix double free in peers config error path
16489 - MEDIUM: improve config check return codes
16490 - BUILD: make it possible to look for pcre in the default system paths
16491 - MINOR: config: emit a warning when 'default_backend' masks servers
16492 - MINOR: backend: rework the LC definition to support other connection-based algos
16493 - MEDIUM: backend: add the 'first' balancing algorithm
16494 - BUG: fix httplog trailing LF
16495 - MEDIUM: increase chunk-size limit to 2GB-1
16496 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
16497 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
16498 - BUG: checks: fix server maintenance exit sequence
16499 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
16500 - DOC: enumerate valid status codes for "observe layer7"
16501 - MINOR: buffer: switch a number of buffer args to const
16502 - CLEANUP: silence signedness warning in acl.c
16503 - BUG: stream_sock: si->release was not called upon shutw()
16504 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
16505 - BUG/CRITICAL: log: fix risk of crash in development snapshot
16506 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
16507 - MINOR: config: disable header captures in TCP mode and complain
16508
Willy Tarreau60612eb2011-09-10 23:43:11 +0200165092011/09/10 : 1.5-dev7
16510 - [BUG] fix binary stick-tables
16511 - [MINOR] http: *_dom matching header functions now also split on ":"
16512 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
16513 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
16514 - [MINOR] check: add redis check support
16515 - [DOC] small fixes to clearly distinguish between keyword and variables
16516 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
16517 - [DOC] Minor spelling fixes and grammatical enhancements
16518 - [CLEANUP] dumpstats: make symbols static where possible
16519 - [MINOR] Break out dumping table
16520 - [MINOR] Break out processing of clear table
16521 - [MINOR] Allow listing of stick table by key
16522 - [MINOR] Break out all stick table socat command parsing
16523 - [MINOR] More flexible clearing of stick table
16524 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
16525 - [MINOR] Allow showing and clearing by key of integer stick tables
16526 - [MINOR] Allow showing and clearing by key of string stick tables
16527 - [CLEANUP] Remove assigned but unused variables
16528 - [CLEANUP] peers.h: fix declarations
16529 - [CLEANUP] session.c: Make functions static where possible
16530 - [MINOR] Add active connection list to server
16531 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
16532 - [MINOR] Add down termination condition
16533 - [MINOR] Make appsess{,ion}_refresh static
16534 - [MINOR] Add rdp_cookie pattern fetch function
16535 - [CLEANUP] Remove unnecessary casts
16536 - [MINOR] Add non-stick server option
16537 - [MINOR] Consistently use error in tcp_parse_tcp_req()
16538 - [MINOR] Consistently free expr on error in cfg_parse_listen()
16539 - [MINOR] Free rdp_cookie_name on denint()
16540 - [MINOR] Free tcp rules on denint()
16541 - [MINOR] Free stick table pool on denint()
16542 - [MINOR] Free stick rules on denint()
16543 - [MEDIUM] Fix stick-table replication on soft-restart
16544 - [MEDIUM] Correct ipmask() logic
16545 - [MINOR] Correct type in table dump examples
16546 - [MINOR] Fix build error in stream_int_register_handler()
16547 - [MINOR] Use DPRINTF in assign_server()
16548 - [BUG] checks: http-check expect could fail a check on multi-packet responses
16549 - [DOC] fix minor typo in the "dispatch" doc
16550 - [BUG] proto_tcp: fix address binding on remote source
16551 - [MINOR] http: don't report the "haproxy" word on the monitoring response
16552 - [REORG] http: move HTTP error codes back to proto_http.h
16553 - [MINOR] http: make the "HTTP 200" status code configurable.
16554 - [MINOR] http: partially revert the chunking optimization for now
16555 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
16556 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
16557 - [MEDIUM] http: add support for "http-no-delay"
16558 - [OPTIM] http: optimize chunking again in non-interactive mode
16559 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
16560 - [OPTIM] stream_sock: don't use splice on too small payloads
16561 - [MINOR] config: make it possible to specify a cookie even without a server
16562 - [BUG] stats: support url-encoded forms
16563 - [MINOR] config: automatically compute a default fullconn value
16564 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
16565 - [DOC] add missing entry or stick store-response
16566 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
16567 - [BUG] halog: correctly handle truncated last line
16568 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
16569 - [MINOR] halog: add support for HTTP log matching (-H)
16570 - [MINOR] halog: gain back performance before SKIP_CHAR fix
16571 - [OPTIM] halog: cache some common fields positions
16572 - [OPTIM] halog: check once for correct line format and reuse the pointer
16573 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
16574 - [OPTIM] halog: remove support for tab delimiters in input data
16575 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
16576 - [MINOR] session: try to emit a 500 response on memory allocation errors
16577 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
16578 - [BUG] stream_sock: disable listener when system resources are exhausted
16579 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
16580 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
16581 - [MINOR] listeners: add listen_full() to mark a listener full
16582 - [MINOR] listeners: add support for queueing resource limited listeners
16583 - [MEDIUM] listeners: put listeners in queue upon resource shortage
16584 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
16585 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
16586 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
16587 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
16588 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
16589 - [MINOR] proxy: make session rate-limit more accurate
16590 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
16591 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
16592 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
16593 - [MINOR] task: new function task_schedule() to schedule a wake up
16594 - [MAJOR] proxy: finally get rid of maintain_proxies()
16595 - [BUG] proxy: stats frontend and peers were missing many initializers
16596 - [MEDIUM] listeners: add a global listener management task
16597 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
16598 - [DOC] fix typos, "#" is a sharp, not a dash
16599 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
16600 - [MEDIUM] checks: group health checks methods by values and save option bits
16601 - [MINOR] session-counters: add the ability to clear the counters
16602 - [BUG] check: http-check expect + regex would crash in defaults section
16603 - [MEDIUM] http: make x-forwarded-for addition conditional
16604 - [REORG] build: move syscall redefinition to specific places
16605 - [CLEANUP] update the year in the copyright banner
16606 - [BUG] possible crash in 'show table' on stats socket
16607 - [BUG] checks: use the correct destination port for sending checks
16608 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
16609 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
16610 - [DOC] fixed a few "sensible" -> "sensitive" errors
16611 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
16612 - [BUG] http: trailing white spaces must also be trimmed after headers
16613 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
16614 - [MINOR] http: take a capture of too large requests and responses
16615 - [MINOR] http: take a capture of truncated responses
16616 - [MINOR] http: take a capture of bad content-lengths.
16617 - [DOC] add a few old and uncommitted docs
16618 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
16619 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
16620 - [MINOR] halog: support backslash-escaped quotes
16621 - [CLEANUP] remove dirty left-over of a debugging message
16622 - [MEDIUM] stats: disable complex socket reservation for stats socket
16623 - [CLEANUP] remove a useless test in manage_global_listener_queue()
16624 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
16625 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
16626 - [MINOR] stats: report the current and max global connection rates
16627 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
16628 - [BUG] peers: don't pre-allocate 65000 connections to each peer
16629 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
16630 - [BUG] peers: the peer frontend must not emit any log
16631 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
16632 - [BUG] peers: don't keep a peers section which has a NULL frontend
16633 - [BUG] peers: ensure the peers are resumed if they were paused
16634 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
16635 - [MEDIUM] session: make session_shutdown() an independant function
16636 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
16637 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
16638 - [MEDIUM] stats: offer the possibility to kill sessions by server
16639 - [MINOR] halog: do not consider byte 0x8A as end of line
16640 - [MINOR] frontend: ensure debug message length is always initialized
16641 - [OPTIM] halog: make fgets parse more bytes by blocks
16642 - [OPTIM] halog: add assembly version of the field lookup code
16643 - [MEDIUM] poll: add a measurement of idle vs work time
16644 - [CLEANUP] startup: report only the basename in the usage message
16645 - [MINOR] startup: add an option to change to a new directory
16646 - [OPTIM] task: don't scan the run queue if we know it's empty
16647 - [BUILD] stats: stdint is not present on solaris
16648 - [DOC] update the README file to reflect new naming rules for patches
16649 - [MINOR] stats: report the number of requests intercepted by the frontend
16650 - [DOC] update ROADMAP file
16651
Willy Tarreau04df1122011-04-08 00:56:41 +0200166522011/04/08 : 1.5-dev6
16653 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
16654 - [BUG] TCP source tracking was broken with IPv6 changes
16655 - [BUG] stick-tables did not work when converting IPv6 to IPv4
16656 - [CRITICAL] fix risk of crash when dealing with space in response cookies
16657
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200166582011/03/29 : 1.5-dev5
16659 - [BUG] standard: is_addr return value for IPv4 was inverted
16660 - [MINOR] update comment about IPv6 support for server
16661 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
16662 - [DOC] update IPv6 support for bind
16663 - [DOC] document IPv6 support for server
16664 - [DOC] fix a minor typo
16665 - [MEDIUM] IPv6 support for syslog
16666 - [DOC] document IPv6 support for syslog
16667 - [MEDIUM] IPv6 support for stick-tables
16668 - [DOC] document IPv6 support for stick-tables
16669 - [DOC] update ROADMAP file
16670 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
16671 - [MINOR] frontend: add a make_proxy_line function
16672 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
16673 - [MEDIUM] server: add support for the "send-proxy" option
16674 - [DOC] update the spec on the proxy protocol
16675 - [BUILD] proto_tcp: fix build issue with CTTPROXY
16676 - [DOC] update ROADMAP file
16677 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
16678 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
16679 - [BUILD] add the USE_GETADDRINFO build option
16680 - [TESTS] provide a test case for various address formats
16681 - [BUG] session: conn_retries was not always initialized
16682 - [BUG] log: retrieve the target from the session, not the SI
16683 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
16684 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
16685 - [BUG] http: fix content-length handling on 32-bit platforms
16686 - [OPTIM] buffers: uninline buffer_forward()
16687 - [BUG] stream_sock: fix handling for server side PROXY protocol
16688 - [MINOR] acl: add support for table_cnt and table_avl matches
16689 - [DOC] update ROADMAP file
16690
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100166912011/03/13 : 1.5-dev4
16692 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
16693 - [MINOR] unix sockets : inherits the backlog size from the listener
16694 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
16695 - [DOC] fix a minor typo
16696 - [DOC] fix ignore-persist documentation
16697 - [MINOR] add warnings on features not compatible with multi-process mode
16698 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
16699 - [MINOR] stats: add support for several packets in stats admin
16700 - [BUG] stats: admin commands must check the proxy state
16701 - [BUG] stats: admin web interface must check the proxy state
16702 - [MINOR] http: add pattern extraction method to stick on query string parameter
16703 - [MEDIUM] add internal support for IPv6 server addresses
16704 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
16705 - [MINOR] log: add support for passing the forwarded hostname
16706 - [MINOR] log: ability to override the syslog tag
16707 - [MINOR] checks: add PostgreSQL health check
16708 - [DOC] update ROADMAP file
16709 - [BUILD] pattern: use 'int' instead of 'int32_t'
16710 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
16711 - [BUG] debug: report the correct poller list in verbose mode
16712 - [BUG] capture: do not capture a cookie if there is no memory left
16713 - [BUG] appsession: fix possible double free in case of out of memory
16714 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
16715 - [BUG] http: correctly update the header list when removing two consecutive headers
16716 - [BUILD] add the CPU=native and ARCH=32/64 build options
16717 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
16718 - [CLEANUP] hash: move the avalanche hash code globally available
16719 - [MEDIUM] hash: add support for an 'avalanche' hash-type
16720 - [DOC] update roadmap file
16721 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
16722 - [OPTIM] http: don't send each chunk in a separate packet
16723 - [DOC] fix minor typos reported recently in the peers section
16724 - [DOC] fix another typo in the doc
16725 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
16726 - [BUG] http chunking: don't report a parsing error on connection errors
16727 - [BUG] stream_interface: truncate buffers when sending error messages
16728 - [MINOR] http: support wrapping messages in error captures
16729 - [MINOR] http: capture incorrectly chunked message bodies
16730 - [MINOR] stats: add global event ID and count
16731 - [BUG] http: analyser optimizations broke pipelining
16732 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
16733 - [BUG] http: fix incorrect error reporting during data transfers
16734 - [CRITICAL] session: correctly leave turn-around and queue states on abort
16735 - [BUG] session: release slot before processing pending connections
16736 - [MINOR] tcp: add support for dynamic MSS setting
16737 - [BUG] stick-table: correctly terminate string keys during lookups
16738 - [BUG] acl: fix handling of empty lines in pattern files
16739 - [BUG] stick-table: use the private buffer when padding strings
16740 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
16741 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
16742 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
16743 - [REVERT] undo the stick-table string key lookup fixes
16744 - [MINOR] http: improve url_param pattern extraction to ignore empty values
16745 - [BUILD] frontend: shut a warning with TCP_MAXSEG
16746 - [BUG] http: update the header list's tail when removing the last header
16747 - [DOC] fix minor typo in the proxy protocol doc
16748 - [DOC] fix typos (http-request instead of http-check)
16749 - [BUG] http: use correct ACL pointer when evaluating authentication
16750 - [BUG] cfgparse: correctly count one socket per port in ranges
16751 - [BUG] startup: set the rlimits before binding ports, not after.
16752 - [BUG] acl: srv_id must return no match when the server is NULL
16753 - [MINOR] acl: add ability to check for internal response-only parameters
16754 - [MINOR] acl: srv_id is only valid in responses
16755 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
16756 - [BUG] acl: fd leak when reading patterns from file
16757 - [DOC] fix minor typo in "usesrc"
16758 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
16759 - [BUG] http: fix computation of message body length after forwarding has started
16760 - [BUG] http: balance url_param did not work with first parameters on POST
16761 - [TESTS] update the url_param regression test to test check_post too
16762 - [DOC] update ROADMAP
16763 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
16764 - [BUG] config: don't crash on empty pattern files.
16765 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
16766 - [REORG] stream_interface: move the st0, st1 and private members to the applet
16767 - [REORG] stream_interface: split the struct members in 3 parts
16768 - [REORG] session: move client and server address to the stream interface
16769 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
16770 - [MEDIUM] stream_interface: store the target pointer and type
16771 - [CLEANUP] stream_interface: remove the applet.handler pointer
16772 - [MEDIUM] log: take the logged server name from the stream interface
16773 - [CLEANUP] session: remove data_source from struct session
16774 - [CLEANUP] stats: make all dump functions only rely on the stream interface
16775 - [REORG] session: move the data_ctx struct to the stream interface's applet
16776 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
16777 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
16778 - [MINOR] session: add a pointer to the new target into the session
16779 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
16780 - [CLEANUP] stream_interface: use inline functions to manipulate targets
16781 - [MAJOR] session: remove the ->srv pointer from struct session
16782 - [MEDIUM] stats: split frontend and backend stats
16783 - [MEDIUM] http: always evaluate http-request rules before stats http-request
16784 - [REORG] http: move the http-request rules to proto_http
16785 - [BUG] http: stats were not incremented on http-request deny
16786 - [MINOR] checks: report it if checks fail due to socket creation error
16787
Willy Tarreau442e8342010-11-11 23:29:35 +0100167882010/11/11 : 1.5-dev3
16789 - [DOC] fix http-request documentation
16790 - [MEDIUM] enable/disable servers from the stats web interface
16791 - [MEDIUM] stats: add an admin level
16792 - [DOC] stats: document the "stats admin" statement
16793 - [MINOR] startup: print the proxy socket which caused an error
16794 - [CLEANUP] Remove unneeded chars allocation
16795 - [MINOR] config: detect options not supported due to compilation options
16796 - [MINOR] Add pattern's fetchs payload and payload_lv
16797 - [MINOR] frontend: improve accept-proxy header parsing
16798 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
16799 - [MEDIUM] Enhance message errors management on binds
16800 - [MINOR] Manage unix socket source field on logs
16801 - [MINOR] Manage unix socket source field on session dump on sock stats
16802 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
16803 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
16804 - [MINOR] Manage socket type unix for some logs
16805 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
16806 - [MINOR] Support listener's sockets unix on http logs.
16807 - [MEDIUM] Add supports of bind on unix sockets.
16808 - [BUG] stick table purge failure if size less than 255
16809 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
16810 - [MEDIUM] Implement tcp inspect response rules
16811 - [DOC] tcp-response content and inspect
16812 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
16813 - [DOC] acls rep_ssl_hello and req_ssl_hello
16814 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
16815 - [DOC] new type binary in stick-table
16816 - [DOC] stick store-response and new patterns payload and payload_lv
16817 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
16818 - [MEDIUM] Create updates tree on stick table to manage sync.
16819 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
16820 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
16821 - [MEDIUM] Manage soft stop on peers proxy
16822 - [DOC] add documentation for peers section
16823 - [MINOR] checks: add support for LDAPv3 health checks
16824 - [MINOR] add better support to "mysql-check"
16825 - [BUG] Restore info about available active/backup servers
16826 - [CONTRIB] Update haproxy.pl
16827 - [CONTRIB] Update Cacti Tempates
16828 - [CONTRIB] add templates for Cacti.
16829 - [BUG] http: don't consider commas as a header delimitor within quotes
16830 - [MINOR] support a global jobs counter
16831 - [DOC] add a summary about cookie incompatibilities between specs and browsers
16832 - [DOC] fix description of cookie "insert" and "indirect" modes
16833 - [MEDIUM] http: fix space handling in the request cookie parser
16834 - [MEDIUM] http: fix space handling in the response cookie parser
16835 - [DOC] fix typo in the queue() definition (backend, not frontend)
16836 - [BUG] deinit: unbind listeners before freeing them
16837 - [BUG] stream_interface: only call si->release when both dirs are closed
16838 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
16839 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
16840 - [MINOR] halog: add '-tc' to sort by termination codes
16841 - [MINOR] halog: skip non-traffic logs for -st and -tc
16842 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
16843 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
16844 - [DOC] bind option is "defer-accept", not "defer_accept"
16845 - [DOC] missing index entry for http-check send-state
16846 - [DOC] tcp-request inspect-delay is for backends too
16847 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
16848 - [BUG] stream_sock: try to flush any extra pending request data after a POST
16849 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
16850 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
16851 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
16852 - [MEDIUM] checks: add support for HTTP contents lookup
16853 - [TESTS] add test-check-expect to test various http-check methods
16854 - [MINOR] global: add "tune.chksize" to change the default check buffer size
16855 - [MINOR] cookie: add options "maxidle" and "maxlife"
16856 - [MEDIUM] cookie: support client cookies with some contents appended to their value
16857 - [MINOR] http: make some room in the transaction flags to extend cookies
16858 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
16859 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
16860 - [MINOR] add encode/decode function for 30-bit integers from/to base64
16861 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
16862 - [MEDIUM] cookie: set the date in the cookie if needed
16863 - [DOC] document the cookie maxidle and maxlife parameters
16864 - [BUG] checks: don't log backend down for all zero-weight servers
16865 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
16866 - [BUG] config: report correct keywords for "observe"
16867 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
16868 - [MINOR] acl: add the http_req_first match
16869 - [DOC] fix typos about bind-process syntax
16870 - [BUG] cookie: correctly unset default cookie parameters
16871 - [MINOR] cookie: add support for the "preserve" option
16872 - [BUG] ebtree: fix duplicate strings insertion
16873 - [CONTRIB] halog: report per-url counts, errors and times
16874 - [CONTRIB] halog: minor speed improvement in timer parser
16875 - [MINOR] buffers: add a new request analyser flag for PROXY mode
16876 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
16877 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
16878 - [MINOR] standard: change arg type from const char* to char*
16879 - [MINOR] frontend: add a new analyser to parse a proxied connection
16880 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
16881 - [DOC] add the proxy protocol's specifications
16882 - [DOC] document the 'accept-proxy' bind option
16883 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
16884 - [DOC] add references to unix socket handling
16885 - [MINOR] move MAXPATHLEN definition to compat.h
16886 - [MEDIUM] unix sockets: cleanup the error reporting path
16887 - [BUG] session: don't stop forwarding of data upon last packet
16888 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
16889 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
16890 - [BUG] accept: don't close twice upon error
16891 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
16892 - [OPTIM] stream_sock: don't clear FDs that are already cleared
16893 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
16894
Willy Tarreau37242fa2010-08-28 19:21:00 +0200168952010/08/28 : 1.5-dev2
16896 - [MINOR] startup: release unused structs after forking
16897 - [MINOR] startup: don't wait for nothing when no old pid remains
16898 - [CLEANUP] reference product branch 1.5
16899 - [MEDIUM] signals: add support for registering functions and tasks
16900 - [MEDIUM] signals: support redistribution of signal zero when stopping
16901 - [BUG] http: don't set auto_close if more data are expected
16902
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200169032010/08/25 : 1.5-dev1
16904 - [BUG] stats: session rate limit gets garbaged in the stats
16905 - [DOC] mention 'option http-server-close' effect in Tq section
16906 - [DOC] summarize and highlight persistent connections behaviour
16907 - [DOC] add configuration samples
16908 - [BUG] http: dispatch and http_proxy modes were broken for a long time
16909 - [BUG] http: the transaction must be initialized even in TCP mode
16910 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
16911 - [BUG] consistent hash: balance on all servers, not only 2 !
16912 - [CONTRIB] halog: report per-server status codes, errors and response times
16913 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
16914 - [BUG] client: always ensure to zero rep->analysers
16915 - [BUG] session: clear BF_READ_ATTACHED before next I/O
16916 - [BUG] http: automatically close response if req is aborted
16917 - [BUG] proxy: connection rate limiting was eating lots of CPU
16918 - [BUG] http: report correct flags in case of client aborts during body
16919 - [TESTS] refine non-regression tests and add 4 new tests
16920 - [BUG] debug: wrong pointer was used to report a status line
16921 - [BUG] debug: correctly report truncated messages
16922 - [DOC] document the "dispatch" keyword
16923 - [BUG] stick_table: fix possible memory leak in case of connection error
16924 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
16925 - [MINOR] accept: count the incoming connection earlier
16926 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
16927 - [CLEANUP] client: move some ACLs away to their respective locations
16928 - [CLEANUP] rename client -> frontend
16929 - [MEDIUM] separate protocol-level accept() from the frontend's
16930 - [MINOR] proxy: add a list to hold future layer 4 rules
16931 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
16932 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
16933 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
16934 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
16935 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
16936 - [CLEANUP] buffer->cto is not used anymore
16937 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
16938 - [MEDIUM] session: initialize server-side timeouts after connect()
16939 - [MEDIUM] backend: initialize the server stream_interface upon connect()
16940 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
16941 - [MEDIUM] session: move the conn_retries attribute to the stream interface
16942 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
16943 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
16944 - [MAJOR] frontend: reorder the session initialization upon accept
16945 - [MINOR] proxy: add an accept() callback for the application layer
16946 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
16947 - [MEDIUM] stats: rely on the standard session_accept() function
16948 - [MINOR] buffer: refine the flags that may wake an analyser up.
16949 - [MINOR] stream_sock: don't dereference a non-existing frontend
16950 - [MINOR] session: differenciate between accepted connections and received connections
16951 - [MEDIUM] frontend: count the incoming connection earlier
16952 - [MINOR] frontend: count denied TCP requests separately
16953 - [CLEANUP] stick_table: add/clarify some comments
16954 - [BUILD] memory: add a few missing parenthesis to the pool management macros
16955 - [MINOR] stick_table: add support for variable-sized data
16956 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
16957 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
16958 - [MEDIUM] stick_table: add room for extra data types
16959 - [MINOR] stick_table: add support for "conn_cum" data type.
16960 - [MEDIUM] stick_table: don't overwrite data when storing an entry
16961 - [MINOR] config: initialize stick tables after all the parsing
16962 - [MINOR] stick_table: provide functions to return stksess data from a type
16963 - [MEDIUM] stick_table: move the server ID to a generic data type
16964 - [MINOR] stick_table: enable it for frontends too
16965 - [MINOR] stick_table: export the stick_table_key
16966 - [MINOR] tcp: add per-source connection rate limiting
16967 - [MEDIUM] stick_table: separate storage and update of session entries
16968 - [MEDIUM] stick-tables: add a reference counter to each entry
16969 - [MINOR] session: add a pointer to the tracked counters for the source
16970 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
16971 - [BUG] config: report the correct proxy type in tcp-request errors
16972 - [MINOR] config: provide a function to quote args in a more friendly way
16973 - [BUG] stick_table: the fix for the memory leak caused a regression
16974 - [MEDIUM] backend: support servers on 0.0.0.0
16975 - [BUG] stick-table: correctly refresh expiration timers
16976 - [MEDIUM] stream-interface: add a ->release callback
16977 - [MINOR] proxy: add a "parent" member to the structure
16978 - [MEDIUM] session: make it possible to call an I/O handler on both SI
16979 - [MINOR] tools: add a fast div64_32 function
16980 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
16981 - [MINOR] errors: provide new status codes for config parsing functions
16982 - [BUG] http: denied requests must not be counted as denied resps in listeners
16983 - [MINOR] tools: add a get_std_op() function to parse operators
16984 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
16985 - [MAJOR] stream_sock: better wakeup conditions on read()
16986 - [BUG] session: analysers must be checked when SI state changes
16987 - [MINOR] http: reset analysers to listener's, not frontend's
16988 - [MEDIUM] session: support "tcp-request content" rules in backends
16989 - [BUILD] always match official tags when doing git-tar
16990 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
16991 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
16992 - [MINOR] tcp: src_count acl does not have a permanent result
16993 - [MAJOR] session: add track-counters to track counters related to the session
16994 - [MINOR] stick-table: provide a table lookup function
16995 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
16996 - [MEDIUM] session: move counter ACL fetches from proto_tcp
16997 - [MEDIUM] session: add concurrent connections counter
16998 - [MEDIUM] session: add data in and out volume counters
16999 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
17000 - [MEDIUM] session-counters: automatically update tracked connection count
17001 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
17002 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
17003 - [MEDIUM] session: add a counter on the cumulated number of sessions
17004 - [MINOR] config: support a comma-separated list of store data types in stick-table
17005 - [MEDIUM] stick-tables: add support for arguments to data_types
17006 - [MEDIUM] stick-tables: add stored data argument type checking
17007 - [MEDIUM] session counters: add conn_rate and sess_rate counters
17008 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
17009 - [MINOR] stktable: add a stktable_update_key() function
17010 - [MINOR] session-counters: add a general purpose counter (gpc0)
17011 - [MEDIUM] session-counters: add HTTP req/err tracking
17012 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
17013 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
17014 - [CLEANUP] stick-table: declare stktable_data_types as extern
17015 - [MEDIUM] stick-table: make use of generic types for stored data
17016 - [MINOR] stats: correctly report errors on "show table" and "clear table"
17017 - [MEDIUM] stats: add the ability to dump table entries matching criteria
17018 - [DOC] configuration: document all the new tracked counters
17019 - [DOC] stats: document "show table" and "clear table"
17020 - [MAJOR] session-counters: split FE and BE track counters
17021 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
17022 - [MEDIUM] session counters: automatically remove expired entries.
17023 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
17024 - [MEDIUM] session-counters: make it possible to count connections from frontend
17025 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
17026 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
17027 - [CLEANUP] stats: use stksess_kill() to remove table entries
17028 - [DOC] update the references to session counters and to tcp-request connection
17029 - [DOC] cleanup: split a few long lines
17030 - [MEDIUM] http: forward client's close when abortonclose is set
17031 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
17032 - [BUG] stats: global stats timeout may be specified before stats socket.
17033 - [BUG] conf: add tcp-request content rules to the correct list
17034
Willy Tarreau21475e32010-05-23 08:46:08 +0200170352010/05/23 : 1.5-dev0
17036 - exact copy of 1.4.6
17037
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200170382010/05/16 : 1.4.6
17039 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
17040 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
17041 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
17042 - [DOC] add a few precisions about the use of RDP cookies
17043
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200170442010/05/13 : 1.4.5
17045 - [DOC] report minimum kernel version for tproxy in the Makefile
17046 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
17047 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
17048 - [DOC] fix ignore-persist/force-persist documentation
17049 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
17050 - [DOC] doc/configuration.txt: fix typos
17051 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
17052 - [MINOR] fix possible crash in debug mode with invalid responses
17053 - [MINOR] halog: add support for statisticts on status codes
17054 - [OPTIM] halog: use a faster zero test in fgets()
17055 - [OPTIM] halog: minor speedup by using unlikely()
17056 - [OPTIM] halog: speed up fgets2-64 by about 10%
17057 - [DOC] refresh the README file and merge the CONTRIB file into it
17058 - [MINOR] acl: support loading values from files
17059 - [MEDIUM] ebtree: upgrade to version 6.0
17060 - [MINOR] acl trees: add flags and union members to store values in trees
17061 - [MEDIUM] acl: add ability to insert patterns in trees
17062 - [MEDIUM] acl: add tree-based lookups of exact strings
17063 - [MEDIUM] acl: add tree-based lookups of networks
17064 - [MINOR] acl: ignore empty lines and comments in pattern files
17065 - [MINOR] stick-tables: add support for "stick on hdr"
17066
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200170672010/04/07 : 1.4.4
17068 - [BUG] appsession should match the whole cookie name
17069 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
17070 - [MEDIUM] backend: move the transparent proxy address selection to backend
17071 - [MINOR] add very fast IP parsing functions
17072 - [MINOR] add new tproxy flags for dynamic source address binding
17073 - [MEDIUM] add ability to connect to a server from an IP found in a header
17074 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
17075 - [MINOR] http: make it possible to pretend keep-alive when doing close
17076 - [MINOR] config: report "default-server" instead of "(null)" in error messages
17077
Willy Tarreau75934a12010-03-30 09:50:08 +0200170782010/03/30 : 1.4.3
17079 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
17080 - [MEDIUM] session: better fix for connection to servers with closed input
17081 - [DOC] indicate in the doc how to bind to port ranges
17082 - [BUG] backend: L7 hashing must not be performed on incomplete requests
17083 - [TESTS] add a simple program to test connection resets
17084 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
17085 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
17086 - [MINOR] config: allow "slowstart 0s"
17087 - [BUILD] 'make tags' did not consider files ending in '.c'
17088 - [MINOR] checks: add the ability to disable a server in the config
17089
Willy Tarreauda618cb2010-03-17 23:41:57 +0100170902010/03/17 : 1.4.2
17091 - [CLEANUP] product branch update
17092 - [DOC] Some more documentation cleanups
17093 - [BUG] clf logs segfault when capturing a non existant header
17094 - [OPTIM] config: only allocate check buffer when checks are enabled
17095 - [MEDIUM] checks: support multi-packet health check responses
17096 - [CLEANUP] session: remove duplicate test
17097 - [BUG] http: don't wait for response data to leave buffer is client has left
17098 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
17099 - [MINOR] stats: don't send empty lines in "show errors"
17100 - [MINOR] stats: make the data dump function reusable for other purposes
17101 - [MINOR] stats socket: add show sess <id> to dump details about a session
17102 - [BUG] stats: connection reset counters must be plain ascii, not HTML
17103 - [BUG] url_param hash may return a down server
17104 - [MINOR] force null-termination of hostname
17105 - [MEDIUM] connect to servers even when the input has already been closed
17106 - [BUG] don't merge anonymous ACLs !
17107 - [BUG] config: fix endless loop when parsing "on-error"
17108 - [MINOR] http: don't mark a server as failed when it returns 501/505
17109 - [OPTIM] checks: try to detect the end of response without polling again
17110 - [BUG] checks: don't report an error when recv() returns an error after data
17111 - [BUG] checks: don't abort when second poll returns an error
17112 - [MINOR] checks: make shutdown() silently fail
17113 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
17114 - [BUG] init: unconditionally catch SIGPIPE
17115 - [BUG] checks: don't wait for a close to start parsing the response
17116
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100171172010/03/04 : 1.4.1
17118 - [BUG] Clear-cookie path issue
17119 - [DOC] fix typo on stickiness rules
17120 - [BUILD] fix BSD and OSX makefiles for missing files
17121 - [BUILD] includes order breaks OpenBSD build
17122 - [BUILD] fix some build warnings on Solaris with is* macros
17123 - [BUG] logs: don't report "last data" when we have just closed after an error
17124 - [BUG] logs: don't report "proxy request" when server closes early
17125 - [BUILD] fix platform-dependant build issues related to crypt()
17126 - [STATS] count transfer aborts caused by client and by server
17127 - [STATS] frontend requests were not accounted for failed requests
17128 - [MINOR] report total number of processed connections when stopping a proxy
17129 - [DOC] be more clear about the limitation to one single monitor-net entry
17130
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100171312010/02/26 : 1.4.0
17132 - [MINOR] stats: report maint state for tracking servers too
17133 - [DOC] fix summary to add pattern extraction
17134 - [DOC] Documentation cleanups
17135 - [BUG] cfgparse memory leak and missing free calls in deinit()
17136 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
17137 - [EXAMPLES] add auth.cfg
17138 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
17139 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
17140 - [BUILD] auth: don't use unnamed unions
17141 - [BUG] config: report unresolvable host names as errors
17142 - [BUILD] fix build breakage with DEBUG_FULL
17143 - [DOC] fix a typo about timeout check and clarify the explanation.
17144 - [MEDIUM] http: don't use trash to realign large buffers
17145 - [STATS] report HTTP requests (total and rate) in frontends
17146 - [STATS] separate frontend and backend HTTP stats
17147 - [MEDIUM] http: revert to use a swap buffer for realignment
17148 - [MINOR] stats: report the request rate in frontends as cell titles
17149 - [MINOR] stats: mark areas with an underline when tooltips are available
17150 - [DOC] reorder some entries to maintain the alphabetical order
17151 - [DOC] cleanup of the keyword matrix
17152
Willy Tarreaub05613d2010-02-02 10:18:28 +0100171532010/02/02 : 1.4-rc1
17154 - [MEDIUM] add a maintenance mode to servers
17155 - [MINOR] http-auth: last fix was wrong
17156 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
17157 - [MINOR] Base64 decode
17158 - [MINOR] generic auth support with groups and encrypted passwords
17159 - [MINOR] add ACL_TEST_F_NULL_MATCH
17160 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
17161 - [MINOR] acl: add http_auth and http_auth_group
17162 - [MAJOR] use the new auth framework for http stats
17163 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
17164 - [STATS] make it possible to change a CLI connection timeout
17165 - [BUG] patterns: copy-paste typo in type conversion arguments
17166 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
17167 - [MINOR] standard: str2mask: string to netmask converter
17168 - [MINOR] pattern: add support for argument parsers for converters
17169 - [MINOR] pattern: add the "ipmask()" converting function
17170 - [MINOR] config: off-by-one in "stick-table" after list of converters
17171 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
17172 - [BUG] restore accidentely removed line in last patch !
17173 - [MINOR] checks: make the HTTP check code add the CRLF itself
17174 - [MINOR] checks: add the server's status in the checks
17175 - [BUILD] halog: make without arch-specific optimizations
17176 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
17177 - [MINOR] http: disable keep-alive when process is going down
17178 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
17179 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
17180 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
17181 - [MINOR] prepare req_*/rsp_* to receive a condition
17182 - [CLEANUP] config: specify correct const char types to warnif_* functions
17183 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
17184 - [MEDIUM] http: make the request filter loop check for optional conditions
17185 - [MEDIUM] http: add support for conditional request filter execution
17186 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
17187 - [MEDIUM] http: add support for conditional request header addition
17188 - [MEDIUM] http: add support for conditional response header rewriting
17189 - [DOC] add some missing ACLs about response header matching
17190 - [MEDIUM] http: add support for proxy authentication
17191 - [MINOR] http-auth: make the 'unless' keyword work as expected
17192 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
17193 - [MEDIUM] add support for anonymous ACLs
17194 - [MEDIUM] http: switch to tunnel mode after status 101 responses
17195 - [MEDIUM] http: stricter processing of the CONNECT method
17196 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
17197 - [MINOR] config: fix too large ssl-hello-check message.
17198 - [BUG] fix error response in case of server error
17199
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100172002010/01/25 : 1.4-dev8
17201 - [CLEANUP] Keep in sync "defaults" support between documentation and code
17202 - [MEDIUM] http: add support for Proxy-Connection header
17203 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
17204 - [MINOR] http: remove a copy-paste typo in transaction cleaning
17205 - [BUG] http: trim any excess buffer data when recycling a connection
17206
Willy Tarreau6939b552010-01-25 01:54:37 +0100172072010/01/25 : 1.4-dev7
17208 - [BUG] appsession: possible memory leak in case of out of memory condition
17209 - [MINOR] config: don't accept 'appsession' in defaults section
17210 - [MINOR] Add function to parse a size in configuration
17211 - [MEDIUM] Add stick table (persistence) management functions and types
17212 - [MEDIUM] Add pattern fetch management types and functions
17213 - [MEDIUM] Add src dst and dport pattern fetches.
17214 - [MEDIUM] Add stick table configuration and init.
17215 - [MEDIUM] Add stick and store rules analysers.
17216 - [MINOR] add option "mysql-check" to use MySQL health checks
17217 - [BUG] health checks: fix requeued message
17218 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
17219 - [BUG] checks: fix newline termination
17220 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
17221 - [BUG] appsession's sessid must be reset at end of transaction
17222 - [BUILD] appsession did not build anymore under gcc-2.95
17223 - [BUG] server redirection used an uninitialized string.
17224 - [MEDIUM] http: fix handling of message pointers
17225 - [MINOR] http: fix double slash prefix with server redirect
17226 - [MINOR] http redirect: add the ability to append a '/' to the URL
17227 - [BUG] stream_interface: fix retnclose and remove cond_close
17228 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
17229 - [MINOR] http: move appsession 'sessid' from session to http_txn
17230 - [OPTIM] reorder http_txn to optimize cache lines placement
17231 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
17232 - [MINOR] http: add a separate "http-keep-alive" timeout
17233 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
17234 - [DOC] fix various too large lines
17235 - [DOC] remove several trailing spaces
17236 - [DOC] add the doc about stickiness
17237 - [BUILD] remove a warning in standard.h on AIX
17238 - [BUG] checks: chars are unsigned on AIX, check was always true
17239 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
17240 - [BUG] check: we must not check for error before reading a response
17241 - [BUG] buffers: remove remains of wrong obsolete length check
17242 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
17243 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
17244 - [MEDIUM] http: don't switch to tunnel mode upon close
17245 - [DOC] add documentation about connection header processing
17246 - [MINOR] http: add http_remove_header2() to remove a header value.
17247 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
17248 - [MAJOR] http: rework request Connection header handling
17249 - [MAJOR] http: rework response Connection header handling
17250 - [MINOR] add the ability to force kernel socket buffer size.
17251 - [BUG] http_server_error() must not purge a previous pending response
17252 - [OPTIM] http: don't delay response if next request is incomplete
17253 - [MINOR] add the "force-persist" statement to force persistence on down servers
17254 - [MINOR] http: logs must report persistent connections to down servers
17255 - [BUG] buffer_replace2 must never change the ->w entry
17256
Willy Tarreau11f8f542010-01-08 07:49:44 +0100172572010/01/08 : 1.4-dev6
17258 - [BUILD] warning in stream_interface.h
17259 - [BUILD] warning ultoa_r returns char *
17260 - [MINOR] hana: only report stats if it is enabled
17261 - [MINOR] stats: add "a link" & "a href" for sockets
17262 - [MINOR]: stats: add show-legends to report additional informations
17263 - [MEDIUM] default-server support
17264 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
17265 - [MINOR] stats: add href to tracked server
17266 - [BUG] stats: show UP/DOWN status also in tracking servers
17267 - [DOC] Restore ability to search a keyword at the beginning of a line
17268 - [BUG] stats: cookie should be reported under backend not under proxy
17269 - [BUG] cfgparser/stats: fix error message
17270 - [BUG] http: disable auto-closing during chunk analysis
17271 - [BUG] http: fix hopefully last closing issue on data forwarding
17272 - [DEBUG] add an http_silent_debug function to debug HTTP states
17273 - [MAJOR] http: fix again the forward analysers
17274 - [BUG] http_process_res_common() must not skip the forward analyser
17275 - [BUG] http: some possible missed close remain in the forward chain
17276 - [BUG] http: redirect needed to be updated after recent changes
17277 - [BUG] http: don't set no-linger on response in case of forced close
17278 - [MEDIUM] http: restore the original behaviour of option httpclose
17279 - [TESTS] add a file to test various connection modes
17280 - [BUG] http: check options before the connection header
17281 - [MAJOR] session: fix the order by which the analysers are run
17282 - [MEDIUM] session: also consider request analysers added during response
17283 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
17284 - [BUG] http: memory leak with captures when using keep-alive
17285 - [BUG] http: fix for capture memory leak was incorrect
17286 - [MINOR] http redirect: use proper call to return last response
17287 - [MEDIUM] http: wait for some flush of the response buffer before a new request
17288 - [MEDIUM] session: limit the number of analyser loops
17289
Willy Tarreau1f445892010-01-03 23:23:36 +0100172902010/01/03 : 1.4-dev5
17291 - [MINOR] server tracking: don't care about the tracked server's mode
17292 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
17293 - [MEDIUM] appsession: add the "request-learn" option
17294 - [BUG] Configuration parser bug when escaping characters
17295 - [MINOR] CSS & HTML fun
17296 - [MINOR] Collect & provide http response codes received from servers
17297 - [BUG] Fix silly typo: hspr_other -> hrsp_other
17298 - [MINOR] Add "a name" to stats page
17299 - [MINOR] add additional "a href"s to stats page
17300 - [MINOR] Collect & provide http response codes for frontends, fix backends
17301 - [DOC] some small spell fixes and unifications
17302 - [MEDIUM] Decrease server health based on http responses / events, version 3
17303 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
17304 - [BUG] config: fix erroneous check on cookie domain names, again
17305 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
17306 - [DOC] trivial fix for man page
17307 - [MINOR] config: report all supported options for the "bind" keyword
17308 - [MINOR] tcp: add support for the defer_accept bind option
17309 - [MINOR] unix socket: report the socket path in case of bind error
17310 - [CONTRIB] halog: support searching by response time
17311 - [DOC] add a reminder about obsolete documents
17312 - [DOC] point to 1.4 doc, not 1.3
17313 - [DOC] option tcp-smart-connect was missing from index
17314 - [MINOR] http: detect connection: close earlier
17315 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
17316 - [OPTIM] move some rarely used fields out of fdtab
17317 - [MEDIUM] fd: merge fd_list into fdtab
17318 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
17319 - [MINOR] http: add new transaction flags for keep-alive and content-length
17320 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
17321 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
17322 - [MINOR] http request: simplify the test of no-data
17323 - [MEDIUM] http request: simplify POST length detection
17324 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
17325 - [MAJOR] http: create the analyser which waits for a response
17326 - [MINOR] http: pre-set the persistent flags in the transaction
17327 - [MEDIUM] http response: check body length and set transaction flags
17328 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
17329 - [MINOR] http: remove the last call to stream_int_return
17330 - [IMPORT] import ebtree v5.0 into directory ebtree/
17331 - [MEDIUM] build: switch ebtree users to use new ebtree version
17332 - [CLEANUP] ebtree: remove old unused files
17333 - [BUG] definitely fix regparm issues between haproxy core and ebtree
17334 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
17335 - [BUILD] missing #ifndef in ebmbtree.h
17336 - [BUILD] missing #ifndef in ebsttree.h
17337 - [MINOR] tools: add hex2i() function to convert hex char to int
17338 - [MINOR] http: create new MSG_BODY sub-states
17339 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
17340 - [DOC] option is "defer-accept", not "defer_accept"
17341 - [MINOR] http: keep pointer to beginning of data
17342 - [BUG] x-original-to: name was not set in default instance
17343 - [MINOR] http: detect tunnel mode and set it in the session
17344 - [BUG] config: fix error message when config file is not found
17345 - [BUG] config: fix wrong handling of too large argument count
17346 - [BUG] config: disable 'option httplog' on TCP proxies
17347 - [BUG] config: fix erroneous check on cookie domain names
17348 - [BUG] config: cookie domain was ignored in defaults sections
17349 - [MINOR] config: support passing multiple "domain" statements to cookies
17350 - [MINOR] ebtree: add functions to lookup non-null terminated strings
17351 - [MINOR] config: don't report error on all subsequent files on failure
17352 - [BUG] second fix for the printf format warning
17353 - [BUG] check_post: limit analysis to the buffer length
17354 - [MEDIUM] http: process request body in a specific analyser
17355 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
17356 - [MAJOR] http: completely process the "connection" header
17357 - [MINOR] http: only consider chunk encoding with HTTP/1.1
17358 - [MAJOR] buffers: automatically compute the maximum buffer length
17359 - [MINOR] http: move the http transaction init/cleanup code to proto_http
17360 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
17361 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
17362 - [MEDIUM] http: rework chunk-size parser
17363 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
17364 - [MINOR] buffers: add buffer_ignore() to skip some bytes
17365 - [BUG] http: offsets are relative to the buffer, not to ->som
17366 - [MEDIUM] http: automatically re-aling request buffer
17367 - [BUG] http: body parsing must consider the start of message
17368 - [MINOR] new function stream_int_cond_close()
17369 - [MAJOR] http: implement body parser
17370 - [BUG] http: typos on several unlikely() around header insertion
17371 - [BUG] stream_sock: wrong max computation on recv
17372 - [MEDIUM] http: rework the buffer alignment logic
17373 - [BUG] buffers: wrong size calculation for displaced data
17374 - [MINOR] stream_sock: prepare for closing when all pending data are sent
17375 - [MEDIUM] http: add two more states for the closing period
17376 - [MEDIUM] http: properly handle "option forceclose"
17377 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
17378 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
17379 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
17380 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
17381 - [MINOR] config: option forceclose is valid in frontends too
17382 - [BUILD] halog: insufficient include path in makefile
17383 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
17384 - [MEDIUM] http: make the parsers able to wait for a buffer flush
17385 - [MAJOR] http: add support for option http-server-close
17386 - [BUG] http: ensure we abort data transfer on write error
17387 - [BUG] last fix was overzealous and disabled server-close
17388 - [BUG] http: fix erroneous trailers size computation
17389 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
17390 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
17391 - [BUG] http: redirects were broken by chunk changes
17392 - [BUG] http: the request URI pointer is relative to the buffer
17393 - [OPTIM] http: don't immediately enable reading on request
17394 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
17395 - [BUG] http: take care of errors, timeouts and aborts during the data phase
17396 - [MINOR] http: don't wait for sending requests to the server
17397 - [MINOR] http: make the conditional redirect support keep-alive
17398 - [BUG] http: fix cookie parser to support spaces and commas in values
17399 - [MINOR] config: some options were missing for "redirect"
17400 - [MINOR] redirect: add support for unconditional rules
17401 - [MINOR] config: centralize proxy struct initialization
17402 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
17403 - [MEDIUM] config: remove the limitation of 10 config files
17404 - [CLEANUP] http: remove a remaining impossible condition
17405 - [OPTIM] http: optimize a bit the construct of the forward loops
17406
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200174072009/10/12 : 1.4-dev4
17408 - [DOC] add missing rate_lim and rate_max
17409 - [MAJOR] struct chunk rework
17410 - [MEDIUM] Health check reporting code rework + health logging, v3
17411 - [BUG] check if rise/fall has an argument and it is > 0
17412 - [MINOR] health checks logging unification
17413 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
17414 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
17415 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
17416 - [MINOR] Introduce include/types/counters.h
17417 - [CLEANUP] Move counters to dedicated structures
17418 - [MINOR] Add "clear counters" to clear statistics counters
17419 - [MEDIUM] Collect & provide separate statistics for sockets, v2
17420 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
17421 - [MINOR] acl: don't report valid acls as potential mistakes
17422 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
17423 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
17424 - [MINOR] Capture & display more data from health checks, v2
17425 - [BUG] task.c: don't assing last_timer to node-less entries
17426 - [BUG] http stats: large outputs sometimes got some parts chopped off
17427 - [MINOR] backend: export some functions to recount servers
17428 - [MINOR] backend: uninline some LB functions
17429 - [MINOR] include time.h from freq_ctr.h as is uses "now".
17430 - [CLEANUP] backend: move LB algos to individual files
17431 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
17432 - [CLEANUP] proxy: move last lb-specific bits to their respective files
17433 - [MINOR] backend: separate declarations of LB algos from their lookup method
17434 - [MINOR] backend: reorganize the LB algorithm selection
17435 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
17436 - [MINOR] report list of supported pollers with -vv
17437 - [DOC] log-health-checks is an option, not a directive
17438 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
17439 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
17440 - [MINOR] stats: strip CR and LF from the input command line
17441 - [BUG] don't refresh timeouts late after detected activity
17442 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
17443 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
17444 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
17445 - [MEDIUM] stats: don't use s->ana_state anymore
17446 - [MINOR] remove now obsolete ana_state from the session struct
17447 - [MEDIUM] stats: make HTTP stats use an I/O handler
17448 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
17449 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
17450 - [MINOR] config: reference file and line with any listener/proxy/server declaration
17451 - [MINOR] config: report places of duplicate names or IDs
17452 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
17453 - [MINOR] tools: add a new get_next_id() function
17454 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
17455 - [OPTIM] counters: move some max numbers to the counters struct
17456 - [BUG] counters: fix segfault on missing counters for a listener
17457 - [MEDIUM] backend: implement consistent hashing variation
17458 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
17459 - [MINOR] stats: use 'clear counters all' to clear all values
17460 - [MEDIUM] add access restrictions to the stats socket
17461 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
17462 - [MINOR] proxy: provide function to retrieve backend/server pointers
17463 - [MINOR] add the "initial weight" to the server struct.
17464 - [MEDIUM] stats: add the "get weight" command to report a server's weight
17465 - [MEDIUM] stats: add the "set weight" command
17466 - [BUILD] add a 'make tags' target
17467 - [MINOR] stats: add support for numeric IDs in set weight/get weight
17468 - [MINOR] stats: use a dedicated state to output static data
17469 - [OPTIM] stats: check free space before trying to print
17470
Willy Tarreau9f389e02009-09-24 00:12:50 +0200174712009/09/24 : 1.4-dev3
17472 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
17473 - [MEDIUM] Collect & show information about last health check, v3
17474 - [MINOR] export the hostname variable so that all the code can access it
17475 - [MINOR] stats: add a new node-name setting
17476 - [MEDIUM] remove old experimental tcpsplice option
17477 - [BUILD] fix build for systems without SOL_TCP
17478 - [MEDIUM] move connection establishment from backend to the SI.
17479 - [MEDIUM] make the global stats socket part of a frontend
17480 - [MEDIUM] session: account per-listener connections
17481 - [MINOR] session: switch to established state if no connect function
17482 - [MEDIUM] make the unix stats sockets use the generic session handler
17483 - [CLEANUP] unix: remove uxst_process_session()
17484 - [CLEANUP] move remaining stats sockets code to dumpstats
17485 - [MINOR] move the initial task's nice value to the listener
17486 - [MINOR] cleanup set_session_backend by using pre-computed analysers
17487 - [MINOR] set s->srv_error according to the analysers
17488 - [MEDIUM] set rep->analysers from fe and be analysers
17489 - [MEDIUM] replace BUFSIZE with buf->size in computations
17490 - [MEDIUM] make it possible to change the buffer size in the configuration
17491 - [MEDIUM] report error on buffer writes larger than buffer size
17492 - [MEDIUM] stream_interface: add and use ->update function to resync
17493 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
17494 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
17495 - [BUG] tarpit did not work anymore
17496 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
17497 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
17498 - [MINOR] buffers: provide more functions to handle buffer data
17499 - [MEDIUM] buffers: provide new buffer_feed*() function
17500 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
17501 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
17502 - [BUG] buffer_forward() would not correctly consider data already scheduled
17503 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
17504 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
17505 - [MAJOR] http: add support for HTTP 1xx informational responses
17506 - [MINOR] buffers: inline buffer_si_putchar()
17507 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
17508 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
17509 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
17510 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
17511 - [MEDIUM] add support for infinite forwarding
17512 - [BUILD] stream_interface: fix conflicting declaration
17513 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
17514 - [BUG] variable buffer size ignored at initialization time
17515 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
17516 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
17517 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
17518 - [MINOR] stream_interface: add iohandler callback
17519 - [MINOR] stream_interface: add functions to support running as internal/external tasks
17520 - [MEDIUM] session: call iohandler for embedded tasks (applets)
17521 - [MINOR] add a ->private member to the stream_interface
17522 - [MEDIUM] stats: prepare the connection for closing before dumping
17523 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
17524
Willy Tarreau68dcd252009-08-09 22:57:09 +0200175252009/08/09 : 1.4-dev2
17526 - [BUG] task: fix possible crash when some timeouts are not configured
17527 - [BUG] log: option tcplog would log to global if no logger was defined
17528
Willy Tarreaub03d2982009-07-29 22:38:32 +0200175292009/07/29 : 1.4-dev1
17530 - [MINOR] acl: add support for matching of RDP cookies
17531 - [MEDIUM] add support for RDP cookie load-balancing
17532 - [MEDIUM] add support for RDP cookie persistence
17533 - [MINOR] add a new CLF log format
17534 - [MINOR] startup: don't imply -q with -D
17535 - [BUG] ensure that we correctly re-start old process in case of error
17536 - [MEDIUM] add support for binding to source port ranges during connect
17537 - [MINOR] config: track "no option"/"option" changes
17538 - [MINOR] config: support resetting options do default values
17539 - [MEDIUM] implement option tcp-smart-accept at the frontend
17540 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
17541 - [MEDIUM] implement tcp-smart-connect option at the backend
17542 - [MEDIUM] add support for TCP MSS adjustment for listeners
17543 - [MEDIUM] support setting a server weight to zero
17544 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
17545 - [MAJOR] session: don't clear buffer status flags anymore
17546 - [MAJOR] session: only check for timeouts when they have just occurred.
17547 - [MAJOR] session: simplify buffer error handling
17548 - [MEDIUM] config: split parser and checker in two functions
17549 - [MEDIUM] config: support loading multiple configuration files
17550 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
17551 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
17552 - [MEDIUM] splice: set the capability on each stream_interface
17553 - [BUG] http: redirect rules were processed too early
17554 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
17555 - [MEDIUM] http: split request waiter from request processor
17556 - [MEDIUM] session: tell analysers what bit they were called for
17557 - [MAJOR] http: complete splitting of the remaining stages
17558 - [MINOR] report in the proxies the requirements for ACLs
17559 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
17560 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
17561 - [MINOR] prepare callers of session_set_backend to handle errors
17562 - [BUG] default ACLs did not properly set the ->requires flag
17563 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
17564 - [MINOR] ensure we can jump from swiching rules to http without data
17565 - [MINOR] http: take http request timeout from the backend
17566 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
17567 - [BUILD] report commit date and not author's date as build date
17568 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
17569 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
17570 - [BUG] stream_sock: don't stop reading when the poller reports an error
17571 - [BUG] config: tcp-request content only accepts "if" or "unless"
17572 - [BUG] task: fix possible timer drift after update
17573 - [MINOR] apply tcp-smart-connect option for the checks too
17574 - [MINOR] stats: better displaying in MSIE
17575 - [MINOR] config: improve error reporting in global section
17576 - [MINOR] config: improve error reporting in listen sections
17577 - [MINOR] config: the "capture" keyword is not allowed in backends
17578 - [MINOR] config: improve error reporting when checking configuration
17579 - [BUILD] fix a minor build warning on AIX
17580 - [BUILD] use "git cmd" instead of "git-cmd"
17581 - [CLEANUP] report 2009 not 2008 in the copyright banner.
17582 - [MINOR] print usage on the stats sockets upon invalid commands
17583 - [MINOR] acl: detect and report potential mistakes in ACLs
17584 - [BUILD] fix incorrect printf arg count with tcp_splice
17585 - [BUG] fix random pauses on last segment of a series
17586 - [BUILD] add support for build under Cygwin
17587
Willy Tarreau79158882009-06-09 11:59:08 +0200175882009/06/09 : 1.4-dev0
17589 - exact copy of 1.3.18
17590
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200175912009/05/10 : 1.3.18
17592 - [MEDIUM] add support for "balance hdr(name)"
17593 - [CLEANUP] give a little bit more information in error message
17594 - [MINOR] add X-Original-To: header
17595 - [BUG] x-original-to: fix missing initialization to default value
17596 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
17597 - [MINOR] improve reporting of misplaced acl/reqxxx rules
17598 - [MEDIUM] http: add options to ignore invalid header names
17599 - [MEDIUM] http: capture invalid requests/responses even if accepted
17600 - [BUILD] add format(printf) to printf-like functions
17601 - [MINOR] fix several printf formats and missing arguments
17602 - [BUG] stats: total and lbtot are unsigned
17603 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
17604 - [CLEANUP] remove unused make option from haproxy.spec
17605 - [BUILD] make it possible to pass alternative arch at build time
17606 - [MINOR] switch all stat counters to 64-bit
17607 - [MEDIUM] ensure we don't recursively call pool_gc2()
17608 - [CRITICAL] uninitialized response field can sometimes cause crashes
17609 - [BUG] fix wrong pointer arithmetics in HTTP message captures
17610 - [MINOR] rhel init script : support the reload operation
17611 - [MINOR] add basic signal handling functions
17612 - [BUILD] add signal.o to all makefiles
17613 - [MEDIUM] call signal_process_queue from run_poll_loop
17614 - [MEDIUM] pollers: don't wait if a signal is pending
17615 - [MEDIUM] convert all signals to asynchronous signals
17616 - [BUG] O(1) pollers should check their FD before closing it
17617 - [MINOR] don't close stdio fds twice
17618 - [MINOR] add options dontlog-normal and log-separate-errors
17619 - [DOC] minor fixes and rearrangements
17620 - [BUG] fix parser crash on unconditional tcp content rules
17621 - [DOC] rearrange the configuration manual and add a summary
17622 - [MINOR] standard: provide a new 'my_strndup' function
17623 - [MINOR] implement per-logger log level limitation
17624 - [MINOR] compute the max of sessions/s on fe/be/srv
17625 - [MINOR] stats: report max sessions/s and limit in CSV export
17626 - [MINOR] stats: report max sessions/s and limit in HTML stats
17627 - [MINOR] stats/html: use the arial font before helvetica
17628
Willy Tarreauf459b422009-03-29 15:26:57 +0200176292009/03/29 : 1.3.17
17630 - Update specfile to build for v2.6 kernel.
17631 - [BUG] reset the stream_interface connect timeout upon connect or error
17632 - [BUG] reject unix accepts when connection limit is reached
17633 - [MINOR] show sess: report number of calls to each task
17634 - [BUG] don't call epoll_ctl() on closed sockets
17635 - [BUG] stream_sock: disable I/O on fds reporting an error
17636 - [MINOR] sepoll: don't count two events on the same FD.
17637 - [MINOR] show sess: report a lot more information about sessions
17638 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
17639 - [BUG] don't set an expiration date directly from now_ms
17640 - [MINOR] implement ulltoh() to write HTML-formatted numbers
17641 - [MINOR] stats/html: group digits by 3 to clarify numbers
17642 - [BUILD] remove haproxy-small.spec
17643 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
17644
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100176452009/03/22 : 1.3.16
17646 - [BUILD] Fixed Makefile for linking pcre
17647 - [CONTRIB] selinux policy for haproxy
17648 - [MINOR] show errors: encode backslash as well as non-ascii characters
17649 - [MINOR] cfgparse: some cleanups in the consistency checks
17650 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
17651 - [MINOR] tcp-inspect: permit the use of no-delay inspection
17652 - [MEDIUM] reverse internal proxy declaration order to match configuration
17653 - [CLEANUP] config: catch and report some possibly wrong rule ordering
17654 - [BUG] connect timeout is in the stream interface, not the buffer
17655 - [BUG] session: errors were not reported in termination flags in TCP mode
17656 - [MINOR] tcp_request: let the caller take care of errors and timeouts
17657 - [CLEANUP] http: remove some commented out obsolete code in process_response
17658 - [MINOR] update ebtree to version 4.1
17659 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
17660 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
17661 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
17662 - [MINOR] sched: permit a task to stay up between calls
17663 - [MINOR] task: keep a task count and clean up task creators
17664 - [MINOR] stats: report number of tasks (active and running)
17665 - [BUG] server check intervals must not be null
17666 - [OPTIM] stream_sock: don't retry to read after a large read
17667 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
17668 - [MEDIUM] session: don't resync FSMs on non-interesting changes
17669 - [BUG] check for global.maxconn before doing accept()
17670 - [OPTIM] sepoll: do not re-check whole list upon accepts
17671
Willy Tarreau8185ced2009-03-09 22:45:53 +0100176722009/03/09 : 1.3.16-rc2
17673 - [BUG] stream_sock: write timeout must be updated when forwarding !
17674
Willy Tarreauff63b432009-03-09 01:03:42 +0100176752009/03/09 : 1.3.16-rc1
17676 - appsessions: cleanup DEBUG_HASH and initialize request_counter
17677 - [MINOR] acl: add new keyword "connslots"
17678 - [MINOR] cfgparse: fix off-by 2 in error message size
17679 - [BUILD] fix build with gcc 4.3
17680 - [BUILD] fix MANDIR default location to match documentation
17681 - [TESTS] add a debug patch to help trigger the stats bug
17682 - [BUG] Flush buffers also where there are exactly 0 bytes left
17683 - [MINOR] Allow to specify a domain for a cookie
17684 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
17685 - [MEDIUM] Fix memory freeing at exit
17686 - [MEDIUM] Fix memory freeing at exit, part 2
17687 - [BUG] Fix listen & more of 2 couples <ip>:<port>
17688 - [DOC] remove buggy comment for use_backend
17689 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
17690 - [MEDIUM] add support for URI hash depth and length limits
17691 - [MINOR] permit renaming of x-forwarded-for header
17692 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
17693 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
17694 - [MEDIUM] upgrade to ebtree v4.0
17695 - [DOC] update the README file with new build options
17696 - [MEDIUM] reduce risk of event starvation in ev_sepoll
17697 - [MEDIUM] detect streaming buffers and tag them as such
17698 - [MEDIUM] add support for conditional HTTP redirection
17699 - [BUILD] make install should depend on haproxy not "all"
17700 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
17701 - [BUG] event pollers must not wait if a task exists in the run queue
17702 - [BUG] queue management: wake oldest request in queues
17703 - [BUG] log: reported queue position was offed-by-one
17704 - [BUG] fix the dequeuing logic to ensure that all requests get served
17705 - [DOC] documentation for the "retries" parameter was missing.
17706 - [MEDIUM] implement a monotonic internal clock
17707 - [MEDIUM] further improve monotonic clock by check forward jumps
17708 - [OPTIM] add branch prediction hints in list manipulations
17709 - [MAJOR] replace ultree with ebtree in wait-queues
17710 - [BUG] we could segfault during exit while freeing uri_auths
17711 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
17712 - [MINOR] introduce now_ms, the current date in milliseconds
17713 - [BUG] disable buffer read timeout when reading stats
17714 - [MEDIUM] rework the wait queue mechanism
17715 - [BUILD] change declaration of base64tab to fix build with Intel C++
17716 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
17717 - [MAJOR] use an ebtree instead of a list for the run queue
17718 - [MEDIUM] introduce task->nice and boot access to statistics
17719 - [OPTIM] task_queue: assume most consecutive timers are equal
17720 - [BUILD] silent a warning in unlikely() with gcc 4.x
17721 - [MAJOR] convert all expiration timers from timeval to ticks
17722 - [BUG] use_backend would not correctly consider "unless"
17723 - [TESTS] added test-acl.cfg to test some ACL combinations
17724 - [MEDIUM] add support for configuration keyword registration
17725 - [MEDIUM] modularize the global "stats" keyword configuration parser
17726 - [MINOR] cfgparse: add support for warnings in external functions
17727 - [MEDIUM] modularize the "timeout" keyword configuration parser
17728 - [MAJOR] implement tcp request content inspection
17729 - [MINOR] acl: add a new parsing function: parse_dotted_ver
17730 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
17731 - [CLEANUP] remove unused include/types/client.h
17732 - [CLEANUP] remove many #include <types/xxx> from C files
17733 - [CLEANUP] remove dependency on obsolete INTBITS macro
17734 - [DOC] document the new "tcp-request" keyword and associated ACLs
17735 - [MINOR] acl: add REQ_CONTENT to the list of default acls
17736 - [MEDIUM] acl: permit fetch() functions to set the result themselves
17737 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
17738 - [MINOR] acl: add the "wait_end" acl verb
17739 - [MEDIUM] acl: enforce ACL type checking
17740 - [MEDIUM] acl: set types on all currently known ACL verbs
17741 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
17742 - [CLEANUP] remove 65 useless NULL checks before free
17743 - [MEDIUM] memory: update pool_free2() to support NULL pointers
17744 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
17745 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
17746 - [MEDIUM] process_srv: don't rely at all on client state
17747 - [MEDIUM] process_cli: don't rely at all on server state
17748 - [BUG] fix segfault with url_param + check_post
17749 - [BUG] server timeout was not considered in some circumstances
17750 - [BUG] client timeout incorrectly rearmed while waiting for server
17751 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
17752 - [MAJOR] get rid of SV_STANALYZE (step 2)
17753 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
17754 - [MAJOR] completely separate HTTP and TCP states on the request path
17755 - [BUG] fix recently introduced loop when client closes early
17756 - [MAJOR] get rid of the SV_STHEADERS state
17757 - [MAJOR] better separation of response processing and server state
17758 - [MAJOR] clearly separate HTTP response processing from TCP server state
17759 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
17760 - [MINOR] term_trace: add better instrumentations to trace the code
17761 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
17762 - [BUG] process_response must not enable the read FD
17763 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
17764 - [BUG] process_response: do not touch srv_state
17765 - [BUG] maintain_proxies must not disable backends
17766 - [CLEANUP] get rid of BF_SHUT*_PENDING
17767 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
17768 - [MAJOR] process_session: rely only on buffer flags
17769 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
17770 - [MEDIUM] centralize buffer timeout checks at the top of process_session
17771 - [MINOR] ensure the termination flags are set by process_xxx
17772 - [MEDIUM] session: move the analysis bit field to the buffer
17773 - [OPTIM] process_cli/process_srv: reduce the number of tests
17774 - [BUG] regparm is broken on gcc < 3
17775 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
17776 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
17777 - [BUG] process_cli/process_srv: don't call shutdown when already done
17778 - [BUG] process_request: HTTP body analysis must return zero if missing data
17779 - [TESTS] test-fsm: 22 regression tests for state machines
17780 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
17781 - [BUG] fix harmless but wrong fd insertion sequence
17782 - [MEDIUM] make it possible for analysers to follow the whole session
17783 - [MAJOR] rework of the server FSM
17784 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
17785 - [MEDIUM] massive cleanup of process_srv()
17786 - [MEDIUM] second level of code cleanup for process_srv_data
17787 - [MEDIUM] third cleanup and optimization of process_srv_data()
17788 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
17789 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
17790 - [MAJOR] make the client side use stream_sock_process_data()
17791 - [MEDIUM] split stream_sock_process_data
17792 - [OPTIM] stream_sock_read must check for null-reads more often
17793 - [MINOR] only call flow analysers when their read side is connected.
17794 - [MEDIUM] reintroduce BF_HIJACK with produce_content
17795 - [MINOR] re-arrange buffer flags and rename some of them
17796 - [MINOR] do not check for BF_SHUTR when computing write timeout
17797 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
17798 - [OPTIM] reduce the number of calls to task_wakeup()
17799 - [OPTIM] force inlining of large functions with gcc >= 3
17800 - [MEDIUM] indicate a reason for a task wakeup
17801 - [MINOR] change type of fdtab[]->owner to void*
17802 - [MAJOR] make stream sockets aware of the stream interface
17803 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
17804 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
17805 - [MEDIUM] process_session: make use of the new buffer flags
17806 - [CLEANUP] process_session: move debug outputs out of the critical loop
17807 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
17808 - [OPTIM] add compiler hints in tick_is_expired()
17809 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
17810 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
17811 - [MINOR] add an expiration flag to the stream_sock_interface
17812 - [MAJOR] migrate the connection logic to stream interface
17813 - [MAJOR] add a connection error state to the stream_interface
17814 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
17815 - [MEDIUM] continue layering cleanups.
17816 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
17817 - [MEDIUM] remove stream_sock_update_data()
17818 - [MINOR] maintain a global session list in order to ease debugging
17819 - [BUG] shutw must imply close during a connect
17820 - [MEDIUM] process shutw during connection attempt
17821 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
17822 - [MAJOR] complete layer4/7 separation
17823 - [CLEANUP] move the session-related functions to session.c
17824 - [MINOR] call session->do_log() for logging
17825 - [MINOR] replace the ambiguous client_return function by stream_int_return
17826 - [MINOR] replace client_retnclose() with stream_int_retnclose()
17827 - [MINOR] replace srv_close_with_err() with http_server_error()
17828 - [MEDIUM] make the http server error function a pointer in the session
17829 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
17830 - [MINOR] stream_sock_data_finish() should not expose fd
17831 - [MEDIUM] extract TCP request processing from HTTP
17832 - [MEDIUM] extract the HTTP tarpit code from process_request().
17833 - [MEDIUM] move the HTTP request body analyser out of process_request().
17834 - [MEDIUM] rename process_request to http_process_request
17835 - [BUG] fix forgotten server session counter
17836 - [MINOR] declare process_session in session.h, not proto_http.h
17837 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
17838 - [MINOR] add an analyser code for UNIX stats request
17839 - [MINOR] pre-set analyser flags on the listener at registration time
17840 - [BUG] do not forward close from cons to prod with analysers
17841 - [MEDIUM] ensure that sock->shutw() also closes read for init states
17842 - [MINOR] add an analyser state in struct session
17843 - [MAJOR] make unix sockets work again with stats
17844 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
17845 - [MINOR] move the listener reference from fd to session
17846 - [MEDIUM] reference the current hijack function in the buffer itself
17847 - [MINOR] slightly rebalance stats_dump_{raw,http}
17848 - [MINOR] add a new back-reference type : struct bref
17849 - [MINOR] add back-references to sessions for later use by a dumper.
17850 - [MEDIUM] add support for "show sess" in unix stats socket
17851 - [BUG] do not release the connection slot during a retry
17852 - [BUG] dynamic connection throttling could return a max of zero conns
17853 - [BUG] do not try to pause backends during reload
17854 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
17855 - [BUG] acl-related keywords are not allowed in defaults sections
17856 - [BUG] cookie capture is declared in the frontend but checked on the backend
17857 - [BUG] critical errors should be reported even in daemon mode
17858 - [MINOR] redirect: add support for the "drop-query" option
17859 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
17860 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
17861 - [BUG] do not dequeue requests on a dead server
17862 - [BUG] do not dequeue the backend's pending connections on a dead server
17863 - [MINOR] stats: indicate if a task is running in "show sess"
17864 - [BUG] check timeout must not be changed if timeout.check is not set
17865 - [BUG] "option transparent" is for backend, not frontend !
17866 - [MINOR] transfer errors were not reported anymore in data phase
17867 - [MEDIUM] add a send limit to a buffer
17868 - [MEDIUM] don't report buffer timeout when there is I/O activity
17869 - [MEDIUM] indicate when we don't care about read timeout
17870 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
17871 - [MEDIUM] enable inter-stream_interface wakeup calls
17872 - [MAJOR] implement autonomous inter-socket forwarding
17873 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
17874 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
17875 - [MEDIUM] i/o: rework ->to_forward and ->send_max
17876 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
17877 - [OPTIM] buffer: replace rlim by max_len
17878 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
17879 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
17880 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
17881 - [MEDIUM] split stream_sock_write() into callback and core functions
17882 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
17883 - [MINOR] stream_sock: fix a few wrong empty calculations
17884 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
17885 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
17886 - [MEDIUM] splice: add configuration options and set global.maxpipes
17887 - [MINOR] introduce structures required to support Linux kernel splicing
17888 - [MEDIUM] add definitions for Linux kernel splicing
17889 - [MAJOR] complete support for linux 2.6 kernel splicing
17890 - [BUG] reserve some pipes for backends with splice enabled
17891 - [MEDIUM] splice: add hints to support older buggy kernels
17892 - [MEDIUM] introduce pipe pools
17893 - [MEDIUM] splice: make use of pipe pools
17894 - [STATS] report pipe usage in the statistics
17895 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
17896 - [BUILD] fix snapshot date extraction with negative timezones
17897 - [MEDIUM] move global tuning options to the global structure
17898 - [MEDIUM] splice: add the global "nosplice" option
17899 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
17900 - [BUG] we must not exit if protocol binding only returns a warning
17901 - [MINOR] add support for bind interface name
17902 - [BUG] inform the user when root is expected but not set
17903 - [MEDIUM] add support for source interface binding
17904 - [MEDIUM] add support for source interface binding at the server level
17905 - [MEDIUM] implement bind-process to limit service presence by process
17906 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
17907 - [DOC] filled the logging section of the configuration manual
17908 - [DOC] document HTTP status codes
17909 - [DOC] document a few missing info about errorfile
17910 - [BUG] fix random memory corruption using "show sess"
17911 - [BUG] fix unix socket processing of interrupted output
17912 - [DOC] add diagrams of queuing and future ACL design
17913 - [BUILD] proto_http did not build on gcc-2.95
17914 - [BUG] the "source" keyword must first clear optional settings
17915 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
17916 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
17917 - [MEDIUM] store a complete dump of request and response errors in proxies
17918 - [MEDIUM] implement error dump on unix socket with "show errors"
17919 - [DOC] document "show errors"
17920 - [MINOR] errors dump must use user-visible date, not internal date.
17921 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
17922 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
17923 - [MEDIUM] measure and report session rate on frontend, backends and servers
17924 - [BUG] the "connslots" keyword was matched as "connlots"
17925 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
17926 - [MEDIUM] implement "rate-limit sessions" for the frontend
17927 - [BUG] interface binding: length must include the trailing zero
17928 - [BUG] typo in timeout error reporting : report *res and not *err
17929 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
17930 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
17931 - [BUG] switch server-side stream interface to close in case of abort
17932 - [CLEANUP] remove last references to term_trace
17933 - [OPTIM] freq_ctr: do not rotate the counters when reading
17934 - [BUG] disable any analysers for monitoring requests
17935 - [BUG] rate-limit in defaults section was ignored
17936 - [BUG] task: fix handling of duplicate keys
17937 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
17938 - [OPTIM] displace tasks in the wait queue only if absolutely needed
17939 - [MEDIUM] minor update to the task api: let the scheduler queue itself
17940 - [BUG] event_accept() must always wake the task up, even in health mode
17941 - [CLEANUP] task: distinguish between clock ticks and timers
17942 - [OPTIM] task: reduce the number of calls to task_queue()
17943 - [OPTIM] do not re-check req buffer when only response has changed
17944 - [CLEANUP] don't enable kernel splicing when socket is closed
17945 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
17946 - [MINOR] buffers: implement buffer_flush()
17947 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
17948 - [BUILD] build fixes for Solaris
17949 - [BUILD] proto_http did not build on gcc-2.95 (again)
17950 - [CONTRIB] halog: fast log parser for haproxy
17951 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
17952
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200179532008/04/19 : 1.3.15
17954 - [BUILD] Added support for 'make install'
17955 - [BUILD] Added 'install-man' make target for installing the man page
17956 - [BUILD] Added 'install-bin' make target
17957 - [BUILD] Added 'install-doc' make target
17958 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
17959 - [BUILD] Changed 'install' target to install the binaries first
17960 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
17961 - [MEDIUM]: Inversion for options
17962 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
17963 - [BUG]: Restore clearing t->logs.bytes
17964 - [MEDIUM]: rework checks handling
17965 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
17966 - [MEDIUM] Implement "track [<backend>/]<server>"
17967 - [MINOR] Implement persistent id for proxies and servers
17968 - [BUG] Don't increment server connections too much + fix retries
17969 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
17970 - [MAJOR] proto_uxst rework -> SNMP support
17971 - [BUG] appsession lookup in URL does not work
17972 - [BUG] transparent proxy address was ignored in backend
17973 - [BUG] hot reconfiguration failed because of a wrong error check
17974 - [DOC] big update to the configuration manual
17975 - [DOC] large update to the configuration manual
17976 - [DOC] document more options
17977 - [BUILD] major rework of the GNU Makefile
17978 - [STATS] add support for "show info" on the unix socket
17979 - [DOC] document options forwardfor to logasap
17980 - [MINOR] add support for the "backlog" parameter
17981 - [OPTIM] introduce global parameter "tune.maxaccept"
17982 - [MEDIUM] introduce "timeout http-request" in frontends
17983 - [MINOR] tarpit timeout is also allowed in backends
17984 - [BUG] increment server connections for each connect()
17985 - [MEDIUM] add a turn-around state of one second after a connection failure
17986 - [BUG] fix typo in redispatched connection
17987 - [DOC] document options nolinger to ssl-hello-chk
17988 - [DOC] added documentation for "option tcplog" to "use_backend"
17989 - [BUG] connect_server: server might not exist when sending error report
17990 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
17991 - [MEDIUM] add non-local bind to connect() on Linux
17992 - [MINOR] add transparent proxy support for balabit's Tproxy v4
17993 - [BUG] use backend's source and not server's source with tproxy
17994 - [BUG] fix overlapping server flags
17995 - [MEDIUM] fix server health checks source address selection
17996 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
17997 - [DOC] added "server", "source" and "stats" keywords
17998 - [DOC] all server parameters have been documented
17999 - [DOC] document all req* and rsp* keywords.
18000 - [DOC] added documentation about HTTP header manipulations
18001 - [BUG] log response byte count, not request
18002 - [BUILD] code did not build in full debug mode
18003 - [BUG] fix truncated responses with sepoll
18004 - [MINOR] use s->frt_addr as the server's address in transparent proxy
18005 - [MINOR] fix configuration hint about timeouts
18006 - [DOC] minor cleanup of the doc and notice to contributors
18007 - [MINOR] report correct section type for unknown keywords.
18008 - [BUILD] update MacOS Makefile to build on newer versions
18009 - [DOC] fix erroneous "useallbackups" option in the doc
18010 - [DOC] applied small fixes from early readers
18011 - [MINOR] add configuration support for "redir" server keyword
18012 - [MEDIUM] completely implement the server redirection method
18013 - [TESTS] add a test case for the server redirection mechanism
18014 - [DOC] add a configuration entry for "server ... redir <prefix>"
18015 - [BUILD] backend.c and checks.c did not build without tproxy !
18016 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
18017 - [BUILD] backend.c and checks.c did not build without tproxy !
18018 - [OPTIM] used unsigned ints for HTTP state and message offsets
18019 - [OPTIM] GCC4's builtin_expect() is suboptimal
18020 - [BUG] failed conns were sometimes incremented in the frontend!
18021 - [BUG] timeout.check was not pre-set to eternity
18022 - [TESTS] add test-pollers.cfg to easily report pollers in use
18023 - [BUG] do not apply timeout.connect in checks if unset
18024 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
18025 - [MINOR] silent gcc for a wrong warning
18026 - [CLEANUP] update .gitignore to ignore more temporary files
18027 - [CLEANUP] report dlmalloc's source path only if explictly specified
18028 - [BUG] str2sun could leak a small buffer in case of error during parsing
18029 - [BUG] option allbackups was not working anymore in roundrobin mode
18030 - [MAJOR] implementation of the "leastconn" load balancing algorithm
18031 - [BUILD] ensure that users don't build without setting the target anymore.
18032 - [DOC] document the leastconn LB algo
18033 - [MEDIUM] fix stats socket limitation to 16 kB
18034 - [DOC] fix unescaped space in httpchk example.
18035 - [BUG] fix double-decrement of server connections
18036 - [TESTS] add a test case for port mapping
18037 - [TESTS] add a benchmark for integer hashing
18038 - [TESTS] add new methods in ip-hash test file
18039 - [MAJOR] implement parameter hashing for POST requests
18040
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100180412007/12/06 : 1.3.14
18042 - New option http_proxy (Alexandre Cassen)
18043 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
18044 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
18045 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
18046 - use backends only with use_backend directive (Krzysztof Oledzki)
18047 - Handle long lines properly (Krzysztof Oledzki)
18048 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
18049 - continous statistics (Krzysztof Oledzki)
18050 - add support for logging via a UNIX socket (Robert Tsai)
18051 - fix error checking in strl2ic/strl2uic()
18052 - fix calls to localtime()
18053 - provide easier-to-use ultoa_* functions
18054 - provide easy-to-use limit_r and LIM2A* macros
18055 - add a simple test for the status page
18056 - move error codes to common/errors.h
18057 - silent warning about LIST_* being redefined on OpenBSD
18058 - add socket address length to the protocols
18059 - group PR_O_BALANCE_* bits into a checkable value
18060 - externalize the "balance" option parser to backend.c
18061 - introduce the "url_param" balance method
18062 - make default_backend work in TCP mode too
18063 - disable warning about localtime_r on Solaris
18064 - adjust error messages about conflicting proxies
18065 - avoid calling some layer7 functions if not needed
18066 - simplify error path in event_accept()
18067 - add an options field to the listeners
18068 - added a new state to listeners
18069 - unbind_listener() must use fd_delete() and not close()
18070 - add a generic unbind_listener() primitive
18071 - add a generic delete_listener() primitive
18072 - add a generic unbind_all_listeners() primitive
18073 - create proto_tcp and move initialization of proxy listeners
18074 - stats: report numerical process ID, proxy ID and server ID
18075 - relative_pid was not initialized
18076 - missing header names in raw stats output
18077 - fix missing parenthesis in check_response_for_cacheability
18078 - small optimization on session_process_counters()
18079 - merge ebtree version 3.0
18080 - make ebtree headers multiple-include compatible
18081 - ebtree: include config.h for REGPRM*
18082 - differentiate between generic LB params and map-specific ones
18083 - add a weight divisor to the struct proxy
18084 - implement the Fast Weighted Round Robin (FWRR) algo
18085 - include filltab25.c to experiment on FWRR for dynamic weights
18086 - merge test-fwrr.cfg to validate dynamic weights
18087 - move the load balancing algorithm to be->lbprm.algo
18088 - change server check result to a bit field
18089 - implement "http-check disable-on-404" for graceful shutdown
18090 - secure the calling conditions of ->set_server_status_{up,down}
18091 - report disabled servers as "NOLB" when they are still UP
18092 - document the "http-check disable-on-404" option
18093 - http-check disable-on-404 is not limited to HTTP mode
18094 - add a test file for disable-on-404
18095 - use distinct bits per load-balancing algorithm type
18096 - implement the slowstart parameter for servers
18097 - document the server's slowstart parameter
18098 - stats: report the server warm up status in a "throttle" column
18099 - fix 2 minor issues on AIX
18100 - add the "nbsrv" ACL verb
18101 - add the "fail" condition to monitor requests
18102 - remove a warning from gcc due to htons() in standard.c
18103 - fwrr: ensure that we never overflow in placements
18104 - store the build options to report with -vv
18105 - fix the status return of the init script (R.I. Pienaar)
18106 - stats: real time monitoring script for unix socket (Prizee)
18107 - document "nbsrv" and "monitor fail"
18108 - restrict the set of allowed characters for identifiers
18109 - implement a time parsing function
18110 - add support for time units in the configuration
18111 - add a bit of documentation about timers
18112 - introduce separation between contimeout, and tarpit + queue
18113 - introduce the "timeout" keyword
18114 - grouped all timeouts in one structure
18115 - slowstart is in ms, not seconds
18116 - slowstart: ensure we don't start with a null weight
18117 - report the number of times each server was selected
18118 - fix build on AIX due to recent log changes
18119 - fix build on Solaris due to recent log changes
18120
Willy Tarreaue855f422007-10-18 22:38:22 +0200181212007/10/18 : 1.3.13
18122 - replace the code under O'Reilly license (Arnaud Cornet)
18123 - add a small man page (Arnaud Cornet)
18124 - stats: report haproxy's version by default (Krzysztof Oledzki)
18125 - stats: count server retries and redispatches (Krzysztof Oledzki)
18126 - core: added easy support for Doug Lea's malloc (dlmalloc)
18127 - core: fade out memory usage when stopping proxies
18128 - core: moved the sockaddr pointer to the fdtab structure
18129 - core: add generic protocol support
18130 - core: implement client-side support for PF_UNIX sockets
18131 - stats: implement the CSV output
18132 - stats: add a link to the CSV export HTML page
18133 - stats: implement the statistics output on a unix socket
18134 - config: introduce the "stats" keyword in global section
18135 - build: centralize version and date into one file for each
18136 - tests: added a new hash algorithm
18137
181382007/10/18 : 1.3.12.3
18139 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
18140 - fix double-free during clean exit (Krzysztof Oledzki)
18141 - prevent the system from sending an RST when closing health-checks
18142 (Krzysztof Oledzki)
18143 - do not add a cache-control header when on non-cacheable responses
18144 (Krzysztof Oledzki)
18145 - spread health checks even more (Krzysztof Oledzki)
18146 - stats: scope "." must match the backend and not the frontend
18147 - fixed call to chroot() during startup
18148 - fix wrong timeout computation in event_accept()
18149 - remove condition for exit() under fork() failure
18150
181512007/09/20 : 1.3.12.2
18152 - fix configuration sanity checks for TCP listeners
18153 - set the log socket receive window to zero bytes
18154 - pre-initialize timeouts to infinity, not zero
18155 - fix the SIGHUP message not to alert on server-less proxies
18156 - timeouts and retries could be ignored when switching backend
18157 - added a file to check that "retries" works.
18158 - O'Reilly has clarified its license
18159
181602007/09/05 : 1.3.12.1
18161 - spec I/O: fix allocations of spec entries for an FD
18162 - ensure we never overflow in chunk_printf()
18163 - improve behaviour with large number of servers per proxy
18164 - add support for "stats refresh <interval>"
18165 - stats page: added links for 'refresh' and 'hide down'
18166 - fix backend's weight in the stats page.
18167 - the "stats" keyword is not allowed in a pure frontend.
18168 - provide a test configuration file for stats and checks
18169
Willy Tarreaub21152b2007-06-17 23:41:40 +0200181702007/06/17 : 1.3.12
18171 - fix segfault at exit when using captures
18172 - bug: negation in ACL conds was not cleared between terms
18173 - errorfile: use a local file to feed error messages
18174 - acl: support '-i' to ignore case when matching
18175 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
18176 - acl: support maching on 'path' component
18177 - acl: implement matching on header values
18178 - acl: distinguish between request and response headers
18179 - acl: permit to return any header when no name specified
18180 - acl: provide default ACLs
18181 - added the 'use_backend' keyword for full content-switching
18182 - acl: specify the direction during fetches
18183 - acl: provide the argument length for fetch functions
18184 - acl: provide a reference to the expr to fetch()
18185 - improve memory freeing upon exit
18186 - str2net() must not change the const char *
18187 - shut warnings 'is*' macros from ctype.h on solaris
18188
Willy Tarreaua3503e02007-06-03 17:27:07 +0200181892007/06/03 : 1.3.11.4
18190 - do not re-arm read timeout in SHUTR state !
18191 - optimize I/O by detecting system starvation
18192 - the epoll FD must not be shared between processes
18193 - limit the number of events returned by *poll*
18194
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200181952007/05/14 : 1.3.11.3
18196 - pre-initialize timeouts with tv_eternity during parsing
18197
Willy Tarreaufc273c22007-05-14 03:42:47 +0200181982007/05/14 : 1.3.11.2
18199 - fixed broken health-checks since switch to timeval
18200
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200182012007/05/14 : 1.3.11.1
18202 - fixed ev_kqueue which was forgotten during the switch to timeval
18203 - allowed null timeouts for past events in select
18204
Willy Tarreau544eb402007-05-14 02:42:33 +0200182052007/05/14 : 1.3.11
18206 - fixed ev_sepoll again by rewriting the state machine
18207 - switched all timeouts to timevals instead of milliseconds
18208 - improved memory management using mempools v2.
18209 - several minor optimizations
18210
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200182112007/05/09 : 1.3.10.2
18212 - fixed build on OpenBSD (missing types.h)
18213
Willy Tarreau13398d32007-05-09 22:58:28 +0200182142007/05/09 : 1.3.10.1
18215 - fixed sepoll transition matrix (two states were missing)
18216
Willy Tarreau61beedf2007-05-09 01:44:58 +0200182172007/05/08 : 1.3.10
18218 - several fixes in ev_sepoll
18219 - fixed some expiration dates on some tasks
18220 - fixed a bug in connection establishment detection due to speculative I/O
18221 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
18222 - implemented URI hashing algorithm (Guillaume Dallaire)
18223 - implemented SMTP health checks (Peter van Dijk)
18224 - replaced the rbtree with ul2tree from old scheduler project
18225 - new framework for generic ACL support
18226 - added the 'acl' and 'block' keywords to the config language
18227 - added several ACL criteria and matches (IP, port, URI, ...)
18228 - cleaned up and better modularization for some time functions
18229 - fixed list macros
18230 - fixed useless memory allocation in str2net()
18231 - store the original destination address in the session
18232
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200182332007/04/15 : 1.3.9
18234 - modularized the polling mechanisms and use function pointers instead
18235 of macros at many places
18236 - implemented support for FreeBSD's kqueue() polling mechanism
18237 - fixed a warning on OpenBSD : MIN/MAX redefined
18238 - change socket registration order at startup to accomodate kqueue.
18239 - several makefile cleanups to support old shells
18240 - fix build with limits.h once for all
18241 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
18242 - fdtab now holds the results of polling
18243 - implemented support for speculative I/O processing with epoll()
18244 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
18245 - auto-registering of pollers at load time
18246
Willy Tarreau42c76592007-04-03 20:30:13 +0200182472007/04/03 : 1.3.8.2
18248 - rewriting either the status line or request line could crash the
18249 process due to a pointer which ought to be reset before parsing.
18250 - rewriting the status line in the response did not work, it caused
18251 a 502 Bad Gateway due to an erroneous state during parsing
18252
Willy Tarreauef6d7612007-04-01 11:06:22 +0200182532007/04/01 : 1.3.8.1
18254 - fix reqadd when no option httpclose is used.
18255 - removed now unused fiprm and beprm from proxies
18256 - split logs into two versions : TCP and HTTP
18257 - added some docs about http headers storage and acls
18258 - added a VIM script for syntax color highlighting (Bruno Michel)
18259
Willy Tarreaud661cc02007-03-26 00:24:56 +0200182602007/03/25 : 1.3.8
18261 - fixed several bugs which might have caused a crash with bad configs
18262 - several optimizations in header processing
18263 - many progresses towards transaction-based processing
18264 - option forwardfor may be used in frontends
18265 - completed HTTP response processing
18266 - some code refactoring between request and response processing
18267 - new HTTP header manipulation functions
18268 - optimizations on the recv() patch to reduce CPU usage under very
18269 high data rates.
18270 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
18271 - username/groupname support from Marcus Rueckert
18272 - added the "except" keyword to the "forwardfor" option (Bryan German)
18273 - support for health-checks on other addresses (Fabrice Dulaunoy)
18274 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
18275 - do not insert "Connection: close" in HTTP/1.0 messages
18276
Willy Tarreau9cabf702007-01-26 23:49:01 +0100182772007/01/26 : 1.3.7
18278 - fix critical bug introduced with 1.3.6 : an empty request header
18279 may lead to a crash due to missing pointer assignment
18280 - hdr_idx might be left uninitialized in debug mode
18281 - fixed build on FreeBSD due to missing fd_set declaration
18282
Willy Tarreaue7a24382007-01-22 08:57:44 +0100182832007/01/22 : 1.3.6.1
18284 - change in the header chaining broke cookies and authentication
18285
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100182862007/01/22 : 1.3.6
18287 - stats now support the HEAD method too
18288 - extracted http request from the session
18289 - huge rework of the HTTP parser which is now a 28-state FSM.
18290 - linux-style likely/unlikely macros for optimization hints
18291 - do not create a server socket when there's no server
18292 - imported lots of docs
18293
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100182942007/01/07 : 1.3.5
18295 - stats: swap color sets for active and backup servers
18296 - try to guess server check port when unset
18297 - added complete support and doc for TCP Splicing
18298 - replace the wait-queue linked list with an rbtree.
18299 - a few bugfixes and cleanups
18300
Willy Tarreau85270da2007-01-02 00:59:39 +0100183012007/01/02 : 1.3.4
18302 - support for cttproxy on the server side to present the client
18303 address to the server.
18304 - added support for SO_REUSEPORT on Linux (needs kernel patch)
18305 - new RFC2616-compliant HTTP request parser with header indexing
18306 - split proxies in frontends, rulesets and backends
18307 - implemented the 'req[i]setbe' to select a backend depending
18308 on the contents
18309 - added the 'default_backend' keyword to select a default BE.
18310 - new stats page featuring FEs and BEs + bytes in both dirs
18311 - improved log format to indicate the backend and the time in ms.
18312 - lots of cleanups
18313
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200183142006/10/15 : 1.3.3
18315 - fix broken redispatch option in case the connection has already
18316 been marked "in progress" (ie: nearly always).
18317 - support regparm on x86 to speed up some often called functions
18318 - removed a few useless calls to gettimeofday() in log functions.
18319 - lots of 'const char*' cleanups
18320 - turn every FD_* into functions which are faster on recent CPUs
18321
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200183222006/09/03 : 1.3.2
18323 - started the changes towards I/O completion callbacks. stream_sock* have
18324 replaced event_*.
18325 - added the new "reqtarpit" and "reqitarpit" protection features
18326
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200183272006/07/09 : 1.3.1 (1.2.15)
18328 - now, haproxy warns about missing timeout during startup to try to
18329 eliminate all those buggy configurations.
18330 - added "Content-Type: text/html" in responses wherever appropriate, as
18331 suggested by Cameron Simpson.
18332 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
18333 test server's health
18334 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
18335 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
18336 at once.
18337
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200183382006/06/29 : 1.3.0
18339 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020018340 difference is expected at all.
18341 - fixed a bug by which neither stats nor error messages could be returned if
18342 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020018343
willy tarreau7e6328d2006-05-21 23:26:20 +0200183442006/05/21 : 1.2.14
18345 - new HTML status report with the 'stats' keyword.
18346 - added the 'abortonclose' option to better resist traffic surges
18347 - implemented dynamic traffic regulation with the 'minconn' option
18348 - show request time on denied requests
18349 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
18350 - now a proxy instance is allowed to run without servers, which is
18351 useful to dedicate one instance to stats
18352 - added lots of error counters
18353 - a missing parenthesis preventd matching of cacheable cookies
18354 - a missing parenthesis in poll_loop() might have caused missed events.
18355
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200183562006/05/14 : 1.2.13.1
18357 - an uninitialized field in the struct session could cause a crash when
18358 the session was freed. This has been encountered on Solaris only.
18359 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
18360 be nice to them by performing a soft stop if pause fails.
18361
willy tarreauc3a2e072006-05-13 18:51:38 +0200183622006/05/13 : 1.2.13
18363 - 'maxconn' server parameter to do per-server session limitation
18364 - queueing to support non-blocking session limitation
18365 - fixed removal of cookies for cookie-less servers such as backup servers
18366 - two separate wait queues for expirable and non-expirable tasks provide
18367 better performance with lots of sessions.
18368 - some code cleanups and performance improvements
18369 - made state dumps a bit more verbose
18370 - fixed missing checks for NULL srv in dispatch mode
18371 - load balancing on backup servers was not possible in source hash mode.
18372 - two session flags shared the same bit, but fortunately they were not
18373 compatible.
18374
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200183752006/04/15 : 1.2.12
18376 Very few changes preparing for more important changes to support per-server
18377 session limitations and queueing :
18378 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
18379 - added the 'weight' parameter to the servers, limited to 1..256. It applies
18380 to roundrobin and source hash.
18381 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
18382
willy tarreaue0dd2692006-03-30 16:27:34 +0200183832006/03/30 : 1.2.11.1
18384 - under some conditions, it might have been possible that when the
18385 last dead server became available, it would not have been used
18386 till another one would have changed state. Could not be reproduced
18387 at all, however seems possible from the code.
18388
willy tarreaud2058dc2006-03-25 20:35:41 +0100183892006/03/25 : 1.2.11
18390 - added the '-db' command-line option to disable backgrounding.
18391 - added the -sf/-st command-line arguments which are used to specify
18392 a list of pids to send a FINISH or TERMINATE signal upon startup.
18393 They will also be asked to release their port if a bind fails.
18394 - reworked the startup mechanism to allow the sending of a signal to a list
18395 of old pids if a socket cannot be bound, with a retry for a limited amount
18396 of time (1 second by default).
18397 - added the ability to enforce limits on memory usage.
18398 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
18399 - re-architectured the server round-robin mechanism to ease integration of
18400 other algorithms. It now relies on the number of active and backup servers.
18401 - added a counter for the number of active and backup servers, and report
18402 these numbers upon SIGHUP or state change.
18403
willy tarreaubfad5742006-03-23 14:19:11 +0100184042006/03/23 : 1.2.10.1
18405 - while fixing the backup server round-robin "feature", a new bug was
18406 introduced which could miss some backup servers.
18407 - the displayed proxy name was wrong when dumping upon SIGHUP.
18408
willy tarreauaaff30e2006-03-19 21:30:41 +0100184092006/03/19 : 1.2.10
18410 - assert.h is needed when DEBUG is defined.
18411 - ENORMOUS long standing bug affecting the epoll polling system :
18412 event_data is a union, not a structure !
18413 - Make fd management more robust and easier to debug. Also some
18414 micro-optimisations.
18415 - Limit the number of consecutive accept() in multi-process mode.
18416 This produces a more evenly distributed load across the processes and
18417 slightly improves performance by reducing bottlenecks.
18418 - Make health-checks be more regular, and faster to retry after a timeout.
18419 - Fixed some messages to ease parsing of alerts.
18420 - provided a patch to enable epoll on RHEL3 kernels.
18421 - Separated OpenBSD build from the main Makefile into a new one.
18422
willy tarreau50be0172006-03-15 19:41:19 +0100184232006/03/15 : 1.2.9
18424 - haproxy could not be stopped after being paused, it had to be woken up
18425 first. This has been fixed.
18426 - the 'ulimit-n' parameter is now optional and by default computed from
18427 maxconn + the number of listeners + the number of health-checks.
18428 - it is now possible to specify a maximum number of connections at build
18429 time with the SYSTEM_MAXCONN define. The value set in the configuration
18430 file will then be limited to this value, and only the command-line '-n'
18431 option will be able to bypass it. It will prevent against accidental
18432 high memory usage on small systems.
18433 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
18434 versions did not detect a line beginning with a space as the continuation
18435 of previous header. It is now correct.
18436 - health checks sent to servers configured with identical intervals were
18437 sent in perfect synchronisation because the initial time was the same
18438 for all. This could induce high load peaks when fragile servers were
18439 hosting tens of instances for the same application. Now the load is
18440 spread evenly across the smallest interval amongst a listener.
18441 - a new 'forceclose' option was added to make the proxy close the outgoing
18442 channel to the server once it has sent all its headers and the server
18443 starts responding. This helps some servers which don't close upon the
18444 'Connection: close' header. It implies 'option httpclose'.
18445 - there was a bug in the way the backup servers were handled. They were
18446 erroneously load-balanced while the doc said the opposite. Since
18447 load-balanced backup servers is one of the features some people have
18448 been asking for, the problem was fixed to reflect the documented
18449 behaviour and a new option 'allbackups' was introduced to provide the
18450 feature to those who need it.
18451 - a never ending connect() could lead to a fast select() loop if its
18452 timeout times the number of retransmits exceeded the server read or write
18453 timeout, because the later was used to compute select()'s timeout while
18454 the connection timeout was not reached.
18455 - now we initialize the libc's localtime structures very early so that even
18456 under OOM conditions, we can still send dated error messages without
18457 segfaulting.
18458 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
18459 descriptors are closed.
18460
willy tarreau065f1c02006-01-29 22:10:07 +0100184612006/01/29 : 1.2.8
18462 - fixed a nasty bug affecting poll/epoll which could return unmodified data
18463 from the server to the client, and sometimes lead to memory corruption
18464 crashing the process.
18465 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
18466
184672005/12/18 : 1.2.7.1
18468 - the "retries" option was ignored because connect() could not return an
18469 error if the connection failed before the timeout.
18470 - TCP health-checks could not detect a connection refused in poll/epoll
18471 mode.
18472
willy tarreaua56eca72005-12-18 01:34:42 +0100184732005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010018474 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
18475 least on Solaris, this caused the libc's regex primitives to be used instead
18476 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010018477 - delayed the quiet mode during startup so that most of the startup alerts can
18478 be displayed even in quiet mode.
18479 - display an alert when a listener has no address, invalid or no port, or when
18480 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010018481 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010018482
willy tarreaub952e1d2005-12-18 01:31:20 +0100184832005/10/09 : 1.2.7rc (1.1.33rc)
18484 - second batch of socklen_t changes.
18485 - clean-ups from Cameron Simpson.
18486 - because tv_remain() does not know about eternity, using no timeout can
18487 make select() spin around a null time-out. Bug reported by Cameron Simpson.
18488 - client read timeout was not properly set to eternity initialized after an
18489 accept() if it was not set in the config. It remained undetected so long
18490 because eternity is 0 and newly allocated pages are zeroed by the system.
18491 - do not call get_original_dst() when not in transparent mode.
18492 - implemented a workaround for a bug in certain epoll() implementations on
18493 linux-2.4 kernels (epoll-lt <= 0.21).
18494 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
18495
willy tarreauc5f73ed2005-12-18 01:26:38 +0100184962005/08/07 : 1.2.6
18497 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
18498
184992005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010018500 - added the number of active sessions (proxy/process) in the logs
18501
185022005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010018503 - the time-out fix introduced in 1.1.25 caused a corner case where it was
18504 possible for a client to keep a connection maintained regardless of the
18505 timeout if the server closed the connection during the HEADER phase,
18506 while the client ignored the close request while doing nothing in the
18507 other direction. This has been fixed now by ensuring that read timeouts
18508 are re-armed when switching to any SHUTW state.
18509
185102005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
18511 - enhanced error reporting in the logs. Now the proxy will precisely detect
18512 various error conditions related to the system and/or process limits, and
18513 generate LOG_EMERG logs indicating that a resource has been exhausted.
18514 - logs will contain two new characters for the error cause : 'R' indicates
18515 a resource exhausted, and 'I' indicates an internal error, though this
18516 one should never happen.
18517 - server connection timeouts can now be reported in the logs (sC), as well
18518 as connections refused because of maxconn limitations (PC).
18519
185202005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
18521 - new global configuration keyword "ulimit-n" may be used to raise the FD
18522 limit to usable values.
18523 - a warning is now displayed on startup if the FD limit is lower than the
18524 configured maximum number of sockets.
18525
185262005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
18527 - new configuration keyword "monitor-net" makes it possible to be monitored
18528 by external devices which connect to the proxy without being logged nor
18529 forwarded to any server. Particularly useful on generic TCPv4 relays.
18530
willy tarreau5dffb602005-12-18 01:15:23 +0100185312005/06/21 : 1.2.5.2
18532 - fixed build on PPC where chars are unsigned by default
18533
willy tarreau08dedbe2005-12-18 01:13:48 +0100185342005/05/02 : 1.2.5.1
18535 - dirty hack to fix a bug introduced with epoll : if we close an FD and
18536 immediately reassign it to another session through a connect(), the
18537 Prev{Read,Write}Events are not updated, which causes trouble detecting
18538 changes, thus leading to many timeouts at high loads.
18539
willy tarreau64a3cc32005-12-18 01:13:11 +0100185402005/04/30 : 1.2.5 (1.1.31)
18541 - changed the runtime argument to disable epoll() to '-de'
18542 - changed the runtime argument to disable poll() to '-dp'
18543 - added global options 'nopoll' and 'noepoll' to do the same at the
18544 configuration level.
18545 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
18546 support epoll().
18547 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
18548 - conditionned signals redirection to #ifdef DEBUG_MEMORY
18549
willy tarreau1c2ad212005-12-18 01:11:29 +0100185502005/04/26 : 1.2.5-pre4
18551 - made epoll() support a compile-time option : ENABLE_EPOLL
18552 - provided a very little libc replacement for a possibly missing epoll()
18553 implementation which can be enabled by -DUSE_MY_EPOLL
18554 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
18555 The equivalent runtime argument becomes '-P'. A few tests show that it
18556 performs like select() with many fds, but slightly slower (certainly
18557 because of the higher amount of memory involved).
18558 - separated the 3 polling methods and the tasks scheduler into 4 distinct
18559 functions which makes the code a lot more modular.
18560 - moved some event tables to private static declarations inside the poller
18561 functions.
18562 - the poller functions can now initialize themselves, run, and cleanup.
18563 - changed the runtime argument to enable epoll() to '-E'.
18564 - removed buggy epoll_ctl() code in the client_retnclose() function. This
18565 function was never meant to remove anything.
18566 - fixed a typo which caused glibc to yell about a double free on exit.
18567 - removed error checking after epoll_ctl(DEL) because we can never know if
18568 the fd is still active or already closed.
18569 - added a few entries in the makefile
18570
willy tarreauad90a0c2005-12-18 01:09:15 +0100185712005/04/25 : 1.2.5-pre3
18572 - experimental epoll() support (use temporary '-e' argument)
18573
185742005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010018575 - implemented the HTTP 303 code for error redirection. This forces the
18576 browser to fetch the given URI with a GET request. The new keyword for
18577 this is 'errorloc303', and a new 'errorloc302' keyword has been created
18578 to make them easily distinguishable.
18579 - added more controls in the parser for valid use of '\x' sequence.
18580 - few fixes from Alex & Klaus
18581
willy tarreauad90a0c2005-12-18 01:09:15 +0100185822005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010018583 - fixed a few errors in the documentation
18584
185852005/02/13
18586 - do not pre-initialize unused file-descriptors before select() anymore.
18587
willy tarreau12350152005-12-18 01:03:27 +0100185882005/01/22 : 1.2.4
18589 - merged Alexander Lazic's and Klaus Wagner's work on application
18590 cookie-based persistence. Since this is the first merge, this version is
18591 not intended for general use and reports are more than welcome. Some
18592 documentation is really needed though.
18593
willy tarreau0174f312005-12-18 01:02:42 +0100185942005/01/22 : 1.2.3 (1.1.30)
18595 - add an architecture guide to the documentation
18596 - released without any changes
18597
185982004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
18599 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
18600 compatible with Apache. This limit can be configured in the makefile now.
18601 Thanks to Eric Fehr for the checks.
18602 - added a per-server "source" option which now makes it possible to bind to
18603 a different source for each (potentially identical) server.
18604 - changed cookie-based server selection slightly to allow several servers to
18605 share a same cookie, thus making it possible to associate backup servers to
18606 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
18607 - added the cookie 'prefix' mode which makes it possible to use persistence
18608 with thin clients which support only one cookie. The server name is prefixed
18609 before the application cookie, and restore back.
18610 - fixed the order of servers within an instance to match documentation. Now
18611 the servers are *really* used in the order of their declaration. This is
18612 particularly important when multiple backup servers are in use.
18613
willy tarreau4302f492005-12-18 01:00:37 +0100186142004/10/18 : 1.2.2 (1.1.29)
18615 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
18616 option was enabled without the 'tcplog' option.
18617 - encode_string() would use hdr_encode_map instead of the map argument.
18618
186192004/08/10 : (1.1.29-pre2)
18620 - the logged request is now encoded with '#XX' for unprintable characters
18621 - new keywords 'capture request header' and 'capture response header' enable
18622 logging of arbitrary HTTP headers in requests and responses
18623 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
18624
willy tarreau982249e2005-12-18 00:57:06 +0100186252004/06/06 : 1.2.1 (1.1.28)
18626 - added the '-V' command line option to verbosely report errors even though
18627 the -q or 'quiet' options are specified. This is useful with '-c'.
18628 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010018629
willy tarreau982249e2005-12-18 00:57:06 +0100186302004/06/05 :
18631 - added the "logasap" option which produces a log without waiting for the data
18632 to be transferred from the server to the client.
18633 - added the "httpclose" option which removes any "connection:" header and adds
18634 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010018635 - added the 'checkcache' option which blocks cacheable responses containing
18636 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010018637 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
18638 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010018639
186402004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010018641 - send an EMERG log when no server is available for a given proxy
18642 - added the '-c' command line option to syntactically check the
18643 configuration file without starting the service.
18644
willy tarreau8a86dbf2005-12-18 00:45:59 +0100186452003/11/09 : 1.2.0
18646 - the same as 1.1.27 + IPv6 support on the client side
18647
willy tarreaufe2c5c12005-12-17 14:14:34 +0100186482003/10/27 : 1.1.27
18649 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
18650 bug : the code still assumed that HTTP requests were the same size as the
18651 original ones (22 bytes), and failed if they were not.
18652 - added support for pidfiles.
18653
willy tarreauc58fc692005-12-17 14:13:08 +0100186542003/10/22 : 1.1.26
18655 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
18656 broke almost all compatibility with POST requests, because the proxy
18657 stopped to read anything from the client as soon as it got all of its
18658 headers.
18659
willy tarreauc1cae632005-12-17 14:12:23 +0100186602003/10/15 : 1.1.25
18661 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
18662 generic TCP proxies, or lighter logs for HTTP proxies.
18663 - fixed a time-out condition wrongly reported as client time-out in data
18664 phase if the client timeout was lower than the connect timeout times the
18665 number of retries.
18666
willy tarreau197e8ec2005-12-17 14:10:59 +0100186672003/09/21 : 1.1.24
18668 - if a client sent a full request then shut its write connection down, then
18669 the request was aborted. This case was detected only when using haproxy
18670 both as health-check client and as a server.
18671 - if 'option httpchk' is used in a 'health' mode server, then responses will
18672 change from 'OK' to 'HTTP/1.0 200 OK'.
18673 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
18674 server response followed by a close could be ignored, and the server seen
18675 as failed.
18676
willy tarreaueedaa9f2005-12-17 14:08:03 +0100186772003/09/19 : 1.1.23
18678 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
18679 'default' sections to keep previous parameters, and not initialize logs
18680 correctly.
18681 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
18682 relying on 'dispatch' mode to segfault at the first connection.
18683 - 'option httpchk' now supports method, HTTP version and a few headers.
18684 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
18685 'defaults' section
18686
186872003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010018688 - 'listen' now supports optionnal address:port-range lists
18689 - 'bind' introduced to add new listen addresses
18690 - fixed a bug which caused a session to be kept established on a server till
18691 it timed out if the client closed during the DATA phase.
18692 - the port part of each server address can now be empty to make the proxy
18693 connect to the server on the same port it was connected to, be an absolute
18694 unsigned number to reflect a single port (as in older versions), or an
18695 explicitly signed number (+N/-N) to indicate that this offset must be
18696 applied to the port the proxy was connected to, when connecting to the
18697 server.
18698 - the 'port' server option allows the user to specify a different
18699 health-check port than the service one. It is mandatory when only relative
18700 ports have been specified and check is required. By default, the checks are
18701 sent to the service port.
18702 - new 'defaults' section which is rather similar to 'listen' except that all
18703 values are only used as default values for future 'listen' sections, until
18704 a new 'defaults' resets them. At the moment, server options, regexes,
18705 cookie names and captures cannot be set in the 'defaults' section.
18706
willy tarreau2f6ba652005-12-17 13:57:42 +0100187072003/05/06 : 1.1.21
18708 - changed the debug output format so that it now includes the session unique
18709 ID followed by the instance name at the beginning of each line.
18710 - in debug mode, accept now shows the client's IP and port.
18711 - added one 3 small debugging scripts to search and pretty print debug output
18712 - changed the default health check request to "OPTIONS /" instead of
18713 "OPTIONS *" since not all servers implement the later one.
18714 - "option httpchk" now accepts an optional parameter allowing the user to
18715 specify and URI other than '/' during health-checks.
18716
willy tarreaub1ff9db2005-12-17 13:51:03 +0100187172003/04/21 : 1.1.20
18718 - fixed two problems with time-outs, one where a server would be logged as
18719 timed out during transfer that take longer to complete than the fixed
18720 time-out, and one where clients were logged as timed-out during the data
18721 phase because they didn't have anything to send. This sometimes caused
18722 slow client connections to close too early while in fact there was no
18723 problem. The proper fix would be to have a per-fd time-out with
18724 conditions depending on the state of the HTTP FSM.
18725
willy tarreau906b2682005-12-17 13:49:52 +0100187262003/04/16 : 1.1.19
18727 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
18728 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
18729 cookie persistence because it uses "cookie:". Two memcmp() have been
18730 replaced with strncasecmp().
18731
willy tarreau036e1ce2005-12-17 13:46:33 +0100187322003/04/02 : 1.1.18
18733 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
18734 REGEX=pcre on the make command line.
18735 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
18736 - when explicit source address binding is required, it is now also used for
18737 health-checks.
18738 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
18739 itself.
18740 - factored several strings to reduce binary size by about 2 kB.
18741 - replaced setreuid() and setregid() with more standard setuid() and setgid().
18742 - added 4 status flags to the log line indicating who ended the connection
18743 first, the sessions state, the validity of the cookie, and action taken on
18744 the set-cookie header.
18745
187462002/10/18 : 1.1.17
18747 - add the notion of "backup" servers, which are used only when all other
18748 servers are down.
18749 - make Set-Cookie return "" instead of "(null)" when the server has no
18750 cookie assigned (useful for backup servers).
18751 - "log" now supports an optionnal level name (info, notice, err ...) above
18752 which nothing is sent.
18753 - replaced some strncmp() with memcmp() for better efficiency.
18754 - added "capture cookie" option which logs client and/or server cookies
18755 - cleaned up/down messages and dump servers states upon SIGHUP
18756 - added a redirection feature for errors : "errorloc <errnum> <url>"
18757 - now we won't insist on connecting to a dead server, even with a cookie,
18758 unless option "persist" is specified.
18759 - added HTTP/408 response for client request time-out and HTTP/50[234] for
18760 server reply time-out or errors.
18761
187622002/09/01 : 1.1.16
18763 - implement HTTP health checks when option "httpchk" is specified.
18764
187652002/08/07 : 1.1.15
18766 - replaced setpgid()/setpgrp() with setsid() for better portability, because
18767 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
18768
187692002/07/20 : 1.1.14
18770 - added "postonly" cookie mode
18771
187722002/07/15 : 1.1.13
18773 - tv_diff used inverted parameters which led to negative times !
18774
187752002/07/13 : 1.1.12
18776 - fixed stats monitoring, and optimized some tv_* for most common cases.
18777 - replaced temporary 'newhdr' with 'trash' to reduce stack size
18778 - made HTTP errors more HTML-fiendly.
18779 - renamed strlcpy() to strlcpy2() because of a slightly difference between
18780 their behaviour (return value), to avoid confusion.
18781 - restricted HTTP messages to HTTP proxies only
18782 - added a 502 message when the connection has been refused by the server,
18783 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
18784 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
18785 inserting a cookie, because some caches (apache) don't understand it.
18786 - fixed processing of server headers when client is in SHUTR state
18787
187882002/07/04 :
18789 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
18790 setpgid()
18791
187922002/06/04 : 1.1.11
18793 - fixed multi-cookie handling in client request to allow clean deletion
18794 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010018795 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010018796 - added a "nocache" option to "cookie" to specify that we explicitly want
18797 to add a "cache-control" header when we add a cookie.
18798 It is also possible to add an "Expires: <old-date>" to keep compatibility
18799 with old/broken caches.
18800
188012002/05/10 : 1.1.10
18802 - if a cookie is used in insert+indirect mode, it's desirable that the
18803 the servers don't see it. It was not possible to remove it correctly
18804 with regexps, so now it's removed automatically.
18805
188062002/04/19 : 1.1.9
18807 - don't use snprintf()'s return value as an end of message since it may
18808 be larger. This caused bus errors and segfaults in internal libc's
18809 getenv() during localtime() in send_log().
18810 - removed dead insecure send_syslog() function and all references to it.
18811 - fixed warnings on Solaris due to buggy implementation of isXXXX().
18812
188132002/04/18 : 1.1.8
18814 - option "dontlognull"
18815 - fixed "double space" bug in config parser
18816 - fixed an uninitialized server field in case of dispatch
18817 with no existing server which could cause a segfault during
18818 logging.
18819 - the pid logged was always the father's, which was wrong for daemons.
18820 - fixed wrong level "LOG_INFO" for message "proxy started".
18821
188222002/04/13 :
18823 - http logging is now complete :
18824 - ip:port, date, proxy, server
18825 - req_time, conn_time, hdr_time, tot_time
18826 - status, size, request
18827 - source address
18828
188292002/04/12 : 1.1.7
18830 - added option forwardfor
18831 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
18832 - added "log global" in "listen" section.
18833
188342002/04/09 :
18835 - added a new "global" section :
18836 - logs
18837 - debug, quiet, daemon modes
18838 - uid, gid, chroot, nbproc, maxconn
18839
188402002/04/08 : 1.1.6
18841 - regex are now chained and not limited anymore.
18842 - unavailable server now returns HTTP/502.
18843 - increased per-line args limit to 40
18844 - added reqallow/reqdeny to block some request on matches
18845 - added HTTP 400/403 responses
18846
188472002/04/03 : 1.1.5
18848 - connection logging displayed incorrect source address.
18849 - added proxy start/stop and server up/down log events.
18850 - replaced log message short buffers with larger trash.
18851 - enlarged buffer to 8 kB and replace buffer to 4 kB.
18852
188532002/03/25 : 1.1.4
18854 - made rise/fall/interval time configurable
18855
188562002/03/22 : 1.1.3
18857 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
18858 which could lead to loops.
18859
188602002/03/21 : 1.1.2
18861 - fixed a bug in buffer management where we could have a loop
18862 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
18863 => implemented an adjustable buffer limit.
18864 - fixed a bug : expiration of tasks in wait queue timeout is used again,
18865 and running tasks are skipped.
18866 - added some debug lines for accept events.
18867 - send warnings for servers up/down.
18868
188692002/03/12 : 1.1.1
18870 - fixed a bug in total failure handling
18871 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
18872
188732002/03/10 : 1.1.0
18874 - fixed a few timeout bugs
18875 - rearranged the task scheduler subsystem to improve performance,
18876 add new tasks, and make it easier to later port to librt ;
18877 - allow multiple accept() for one select() wake up ;
18878 - implemented internal load balancing with basic health-check ;
18879 - cookie insertion and header add/replace/delete, with better strings
18880 support.
18881
188822002/03/08
18883 - reworked buffer handling to fix a few rewrite bugs, and
18884 improve overall performance.
18885 - implement the "purge" option to delete server cookies in direct mode.
18886
188872002/03/07
18888 - fixed some error cases where the maxfd was not decreased.
18889
188902002/02/26
18891 - now supports transparent proxying, at least on linux 2.4.
18892
188932002/02/12
18894 - soft stop works again (fixed select timeout computation).
18895 - it seems that TCP proxies sometimes cannot timeout.
18896 - added a "quiet" mode.
18897 - enforce file descriptor limitation on socket() and accept().
18898
188992001/12/30 : release of version 1.0.2 : fixed a bug in header processing
189002001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
189012001/12/16 : release of version 1.0.0.
189022001/12/16 : added syslog capability for each accepted connection.
189032001/11/19 : corrected premature end of files and occasional SIGPIPE.
189042001/10/31 : added health-check type servers (mode health) which replies OK then closes.
189052001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
18906 with or without cookies (use keyword http for this).
189072001/09/01 : added client/server header replacing with regexps.
18908 eg:
18909 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
18910 srvexp ^Server:\ .* Server:\ Apache
189112000/11/29 : first fully working release with complete FSMs and timeouts.
189122000/11/28 : major rewrite
189132000/11/26 : first write