blob: 123a6caf7aea8f73384ad3e32a4f4cceb2a07911 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Christopher Faulet7782e232022-03-14 17:31:12 +010042022/03/14 : 2.4.15
5 - CI: github actions: add the output of $CC -dM -E-
6 - CI: github actions: add OpenTracing builds
7 - CI: github actions: use cache for OpenTracing
8 - CI: github actions: use cache for SSL libs
9 - BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()
10 - REGTESTS: fix the race conditions in normalize_uri.vtc
11 - REGTESTS: fix the race conditions in secure_memcmp.vtc
12 - BUG/MINOR: pool: always align pool_heads to 64 bytes
13 - BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed
14 - MINOR: pools: add a new global option "no-memory-trimming"
15 - BUILD: pools: fix backport of no-memory-trimming on non-linux OS
16 - BUG/MINOR: add missing modes in proxy_mode_str()
17 - BUG/MINOR: cli: shows correct mode in "show sess"
18 - BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
19 - BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
20 - BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
21 - BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
22 - DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
23 - BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
24 - DEBUG: stream: Add the missing descriptions for stream trace events
25 - DEBUG: stream: Fix stream trace message to print response buffer state
26 - BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
27 - BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()
28 - BUG/MINOR: stream: make the call_rate only count the no-progress calls
29 - DOC: Fix usage/examples of deprecated ACLs
30 - BUILD: tree-wide: mark a few numeric constants as explicitly long long
31
Christopher Fauleteaa786f2022-02-25 17:10:23 +0100322022/02/25 : 2.4.14
33 - MINOR: sock: move the unused socket cleaning code into its own function
34 - BUG/MEDIUM: mworker: close unused transferred FDs on load failure
35 - BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload
36 - BUG/MINOR: sink: Use the right field in appctx context in release callback
37 - BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names
38 - BUG/MEDIUM: fd: always align fdtab[] to 64 bytes
39 - BUG/MAJOR: compiler: relax alignment constraints on certain structures
40 - CI: ssl: enable parallel builds for OpenSSL on Linux
41 - CI: ssl: do not needlessly build the OpenSSL docs
42 - CI: ssl: keep the old method for ancient OpenSSL versions
43 - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
44 - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
45 - CI: github actions: add OpenSSL-3.0.0 builds
46 - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
47 - CI: github actions: relax OpenSSL-3.0.0 version comparision
48 - CI: github: switch to OpenSSL 3.0.0
49 - CI: github actions: update OpenSSL to 3.0.1
50 - BUG/MINOR: mailers: negotiate SMTP, not ESMTP
51 - BUG/MINOR: tools: url2sa reads ipv4 too far
52 - BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message
53 - BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer
54 - BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer
55 - BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()
56 - REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks
57 - CI: github: enable pool debugging by default
58 - BUG/MEDIUM: stream: Abort processing if response buffer allocation fails
59
Willy Tarreau095275f2022-02-16 16:29:03 +0100602022/02/16 : 2.4.13
61 - BUG/MEDIUM: connection: properly leave stopping list on error
62 - BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer
63 - BUILD/MINOR: fix solaris build with clang.
64 - BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl
65 - MEDIUM: cli: yield between each pipelined command
66 - MINOR: channel: add new function co_getdelim() to support multiple delimiters
67 - BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands
68 - BUG/MEDIUM: cli: Never wait for more data on client shutdown
69 - BUG/MEDIUM: mcli: do not try to parse empty buffers
70 - BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them
71 - MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change
72 - DEBUG: cli: add a new "debug dev fd" expert command
73 - BUILD: debug/cli: condition test of O_ASYNC to its existence
74 - DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY
75 - BUG/MEDIUM: mworker: don't lose the stats socket on failed reload
76 - BUG/MINOR: pools: always flush pools about to be destroyed
77 - DEBUG: pools: add extra sanity checks when picking objects from a local cache
78 - DEBUG: pools: let's add reverse mapping from cache heads to thread and pool
79 - DEBUG: pools: replace the link pointer with the caller's address on pool_free()
80 - BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks
81 - BUG/MINOR: mworker: does not erase the pidfile upon reload
82 - MINOR: listener: replace the listener's spinlock with an rwlock
83 - BUG/MEDIUM: listener: read-lock the listener during accept()
84 - BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies
85 - BUG/MAJOR: spoe: properly detach all agents when releasing the applet
86 - REGTESTS: peers: leave a bit more time to peers to synchronize
87 - BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change
88 - BUG/MINOR: mux-h2: update the session's idle delay before creating the stream
89
Christopher Faulet4b7772e2022-01-11 11:34:19 +0100902022/01/11 : 2.4.12
91 - BUG/MEDIUM: mworker: don't use _getsocks in wait mode
92 - BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data
93
Willy Tarreau1e183b82022-01-07 16:40:23 +0100942022/01/07 : 2.4.11
95 - BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch
96 - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
97 - BUILD: cli: clear a maybe-unused warning on some older compilers
98 - BUILD: ssl: unbreak the build with newer libressl
99 - DOC: fix misspelled keyword "resolve_retries" in resolvers
100 - BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server
101 - REGTESTS: ssl: fix ssl_default_server.vtc
102 - MINOR: proxy: add option idle-close-on-response
103 - BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning
104 - BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message
105 - BUG/MINOR: mux-h1: Fix splicing for messages with unknown length
106 - MINOR: compat: detect support for dl_iterate_phdr()
107 - MINOR: debug: add ability to dump loaded shared libraries
108 - MINOR: debug: add support for -dL to dump library names at boot
109 - BUG/MINOR: ssl: free the fields in srv->ssl_ctx
110 - BUG/MEDIUM: ssl: free the ckch instance linked to a server
111 - BUILD/MINOR: cpuset FreeBSD 14 build fix.
112 - BUILD/MINOR: tools: solaris build fix on dladdr.
113 - BUG/MINOR: cli: fix _getsocks with musl libc
114 - BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry
115
Willy Tarreaubedf2772021-12-23 17:47:51 +01001162021/12/23 : 2.4.10
117 - BUILD/MINOR: server: fix compilation without SSL
118 - BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time
119 - BUG/MINOR: server: Don't rely on last default-server to init server SSL context
120 - BUG/MEDIUM: resolvers: Detach query item on response error
121 - BUG/MAJOR: segfault using multiple log forward sections.
122 - MINOR: mux-h1: Improve H1 traces by adding info about http parsers
123 - BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH
124 - CI: Github Actions: temporarily disable BoringSSL builds
125 - MINOR: cli: "show version" displays the current process version
126 - BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types
127 - IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode
128 - BUG/MINOR: cli/server: Don't crash when a server is added with a custom id
129 - DOC: spoe: Clarify use of the event directive in spoe-message section
130 - DOC: config: Specify %Ta is only available in HTTP mode
131 - DOC: config: retry-on list is space-delimited
132 - BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode
133 - MINOR: pools: work around possibly slow malloc_trim() during gc
134 - BUG/MINOR: backend: do not set sni on connection reuse
135 - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
136
Christopher Fauletf8dcd9f2021-11-24 08:36:25 +01001372021/11/24 : 2.4.9
138 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
139 - MINOR: mux-h2: perform a full cycle shutdown+drain on close
140 - MINOR: mux-h2: add trace on extended connect usage
141 - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
142 - BUG/MINOR: resolvers: fix sent messages were counted twice
143 - BUG/MINOR: resolvers: throw log message if trash not large enough for query
144 - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
145 - DOC: config: Fix typo in ssl_fc_unique_id description
146 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
147 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
148 - DOC: lua: Be explicit with the Reply object limits
149 - MINOR: mux-h1: Slightly Improve H1 traces
150 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
151 - BUG/MINOR: mworker: doesn't launch the program postparser
152 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
153 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
154 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
155 - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
156 - BUILD: makefile: simplify detection of libatomic
157 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
158 - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
159 - CLEANUP: ssl: fix wrong #else commentary
160 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
161 - BUG/MEDIUM: mux-h2: always process a pending shut read
162 - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
163 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
164 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
165 - MINOR: shctx: add a few BUG_ON() for consistency checks
166 - BUG/MINOR: ssl: make SSL counters atomic
167 - MINOR: stream/mux: implement websocket stream flag
168 - MINOR: connection: implement function to update ALPN
169 - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
170 - MEDIUM: server/backend: implement websocket protocol selection
171 - MINOR: server: add ws keyword
172 - MINOR: promex: backend aggregated server check status
173 - BUG/MINOR: cache: Fix loop on cache entries in "show cache"
174
Willy Tarreaud1f8d412021-11-03 11:50:02 +01001752021/11/03 : 2.4.8
176 - CLEANUP: server: always include the storage for SSL settings
177 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
178 - CLEANUP: sample: uninline sample_conv_var2smp_str()
179 - MINOR: sample: provide a generic var-to-sample conversion function
180 - BUG/MEDIUM: sample: properly verify that variables cast to sample
181 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
182 - DOC: configuration: add clarification on escaping in keyword arguments
183 - MINOR: initcall: Rename __GLOBL and __GLOBL1.
184 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
185 - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
186 - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
187 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
188 - Revert "CLEANUP: server: always include the storage for SSL settings"
189 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
190 - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
191 - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
192 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
193 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
194 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
195 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
196 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
197 - BUG/MEDIUM: resolvers: use correct storage for the target address
198 - MINOR: resolvers: merge address and target into a union "data"
199 - BUG/MAJOR: resolvers: add other missing references during resolution removal
200 - BUILD: resolvers: avoid a possible warning on null-deref
201 - BUG/MEDIUM: resolvers: always check a valid item in query_list
202 - BUG/MAJOR: buf: fix varint API post- vs pre- increment
203 - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
204 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
205 - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
206 - MINOR: memprof: report the delta between alloc and free on realloc()
207 - MINOR: memprof: add one pointer size to the size of allocations
208 - BUILD: fix compilation on NetBSD
209 - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
210 - BUILD: atomic: fix build on mac/arm64
211 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
212 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
213 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
214 - CLEANUP: always initialize the answer_list
215 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
216 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
217 - MEDIUM: resolvers: use a kill list to preserve the list consistency
218 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
219 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
220 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
221 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
222 - DOC: halog: Move the `-qry` parameter into the correct section in help text
223 - MINOR: halog: Rename -qry to -query
224 - CLEANUP: halog: Use consistent indentation in help()
225 - BUG/MINOR: halog: Add missing newlines in die() messages
226 - MINOR: halog: Add support for extracting captures using -hdr
227 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
228 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
229 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
230 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
231 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
232 - DOC: config: Fix alphabetical order of fc_* samples
233 - BUILD/MINOR: cpuset freebsd build fix
234 - MINOR: stream: Improve dump of bogus streams
235 - DOC/peers: some grammar fixes for peers 2.1 spec
236 - SCRIPTS: git-show-backports: re-enable file-based filtering
237
Christopher Fauletb5e51a52021-10-04 14:56:33 +02002382021/10/04 : 2.4.7
239 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
240
Christopher Fauletd83fd762021-10-04 08:46:17 +02002412021/10/04 : 2.4.6
242 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
243
Christopher Faulete74a1b32021-10-01 17:54:02 +02002442021/10/01 : 2.4.5
245 - MINOR: lua: Add a flag on lua context to know the yield capability at run time
246 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
247 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
248 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
249 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
250 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
251 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
252 - BUG/MINOR: systemd: ExecStartPre must use -Ws
253 - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
254 - MINOR: htx: Skip headers with no value when adding a header list to a message
255 - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
256 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
257 - BUG/MINOR: compat: make sure __WORDSIZE is always defined
258 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
259 - MINOR: pools: automatically disable malloc_trim() with external allocators
260 - MINOR: pools: use mallinfo2() when available instead of mallinfo()
261 - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
262 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
263 - DOC: management: certificate files must be sanitized before injection
264 - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
265 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
266 - BUG/MINOR: cli/payload: do not search for args inside payload
267 - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
268 - BUILD: tools: get the absolute path of the current binary on NetBSD.
269 - MINOR: tools: add FreeBSD support to get_exec_path()
270 - MINOR: proc: setting the process to produce a core dump on FreeBSD.
271 - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
272 - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
273 - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
274 - IMPORT: slz: silence a build warning with -Wundef
275 - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
276 - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
277 - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
278 - BUILD: tools: properly guard __GLIBC__ with defined()
279 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
280 - MINOR: sample: add missing ARGC_ entries
281 - BUG/MINOR: vars: properly set the argument parsing context in the expression
282 - BUG/MINOR: vars: truncate the variable name in error reports about scope.
283 - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
284 - BUILD: fix dragonfly build again on __read_mostly
285 - BUILD: compiler: fixed a missing test on defined(__GNUC__)
286 - BUILD: halog: fix a -Wundef warning on non-glibc systems
287 - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
288 - BUG/MINOR: server: allow 'enable health' only if check configured
289 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
290 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
291 - BUG/MINOR: http-ana: increment internal_errors counter on response error
292 - MINOR: server: implement a refcount for dynamic servers
293 - MINOR: global: define MODE_STOPPING
294 - BUG/MINOR: server: do not use refcount in free_server in stopping mode
295 - MINOR: server: return the next srv instance on free_server
296 - BUG/MINOR: stats: use refcount to protect dynamic server on dump
297 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
298 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
299 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
300 - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
301 - MINOR: htx: Add an HTX flag to know when a message is fragmented
302 - MINOR: htx: Add a function to know if the free space wraps
303 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
304 - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
305 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
306 - DOC: peers: fix doc "enable" statement on "peers" sections
307 - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
308 - BUG/MEDIUM: lua: fix wakeup condition from sleep()
309 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
310 - MINOR: arg: Be able to forbid unresolved args when building an argument list
311 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
312 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
313 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
314
Willy Tarreauacb1d0b2021-09-07 16:17:15 +02003152021/09/07 : 2.4.4
316 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
317 - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
318 - REGTESTS: abortonclose: after retries, 503 is expected, not close
319 - MINOR: hlua: take the global Lua lock inside a global function
320 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
321 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
322 - BUG/MINOR: base64: base64urldec() ignores padding in output size check
323 - MINOR: compiler: implement an ONLY_ONCE() macro
324 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
325 - BUG/MINOR: time: fix idle time computation for long sleeps
326 - MINOR: time: add report_idle() to report process-wide idle time
327 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
328 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
329 - BUG/MINOR: tools: Fix loop condition in dump_text()
330 - CLEANUP: Add missing include guard to signal.h
331 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
332 - DOC: configuration: remove wrong tcp-request examples in tcp-response
333 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
334 - CLEANUP: htx: remove comments about "must be < 256 MB"
335 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
336 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
337
Willy Tarreau4dd5a5a2021-08-17 14:11:09 +02003382021/08/17 : 2.4.3
339 - BUILD: http_htx: fix ci compilation error with isdigit for Windows
340 - MINOR: mux_h2: define config to disable h2 websocket support
341 - BUG/MINOR: ssl: Default-server configuration ignored by server
342 - BUILD: add detection of missing important CFLAGS
343 - BUILD: lua: silence a build warning with TCC
344 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
345 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
346 - BUILD/MINOR: memprof fix macOs build.
347 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
348 - BUG/MINOR: stats: Add missing agent stats on servers
349 - BUG/MINOR: check: fix the condition to validate a port-less server
350 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
351 - BUG/MINOR: systemd: must check the configuration using -Ws
352 - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
353 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
354 - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
355 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
356 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
357 - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
358 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
359 - BUG/MINOR: select: fix excess number of dead/skip reported
360 - BUG/MINOR: poll: fix abnormally high skip_fd counter
361 - BUG/MINOR: pollers: always program an update for migrated FDs
362 - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
363 - DOC: internals: document the FD takeover process
364 - BUILD: opentracing: fixed build when using pkg-config utility
365 - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
366 - BUG/MINOR: server: update last_change on maint->ready transitions too
367 - MINOR: server: unmark deprecated on enable health/agent cli
368 - ADMIN: dyncookie: implement a simple dynamic cookie calculator
369 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
370 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
371 - BUG/MINOR: buffer: fix buffer_dump() formatting
372 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
373 - DOC: Improve the lua documentation
374 - DOC: config: Fix 'http-response send-spoe-group' documentation
375 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
376 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
377 - CLEANUP: assorted typo fixes in the code and comments
378 - DOC/MINOR: fix typo in management document
379 - MINOR: http: add a new function http_validate_scheme() to validate a scheme
380 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
381 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
382 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
383 - BUG/MEDIUM: h2: give :authority precedence over Host
384 - REGTESTS: add a test to prevent h2 desync attacks
385
Christopher Faulet553dee32021-07-07 16:46:09 +02003862021/07/07 : 2.4.2
387 - BUG/MINOR: server-state: load SRV resolution only if params match the config
388 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
389 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
390 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
391 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
392 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
393 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
394 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
395 - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
396 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
397 - REGTESTS: fix maxconn update with agent-check
398 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
399 - DOC: config: Add missing actions in "tcp-request session" documentation
400 - CLEANUP: dns: Remove a forgotten debug message
401 - BUG/MINOR: resolvers: Always attach server on matching record on resolution
402 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
403 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
404 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
405 - BUILD: Makefile: fix linkage for Haiku.
406 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
407 - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
408 - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
409 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
410 - DOC: config: use CREATE USER for mysql-check
411 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
412 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
413 - DOC: stick-table: add missing documentation about gpt0 stored type
414 - BUG/MEDIUM: sock: make sure to never miss early connection failures
415 - BUG/MINOR: cli: fix server name output in "show fd"
416 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
417 - MINOR: http: implement http_get_scheme
418 - MEDIUM: http: implement scheme-based normalization
419 - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
420 - MEDIUM: h2: apply scheme-based normalization on h2 requests
421 - REGTESTS: add http scheme-based normalization test
422
Willy Tarreau1ce7d492021-06-17 09:06:08 +02004232021/06/17 : 2.4.1
424 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
425 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
426 - BUILD/MINOR: opentracing: fixed build when using clang
427 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
428 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
429 - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
430 - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
431 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
432 - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
433 - MINOR: cfgparse: Fail when encountering extra arguments in macro
434 - DOC: intro: Fix typo in starter guide
435 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
436 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
437 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
438 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
439 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
440 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
441 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
442 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
443 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
444 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
445 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
446 - BUG/MINOR: http: Missing calloc return value check in make_arg_list
447 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
448 - CLEANUP: http-ana: Remove useless if statement about L7 retries
449 - BUG/MINOR: vars: Be sure to have a session to get checks variables
450 - DOC/MINOR: move uuid in the configuration to the right alphabetical order
451 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
452 - MINOR: errors: allow empty va_args for diag variadic macro
453 - DOC: use the req.ssl_sni in examples
454 - BUILD: make tune.ssl.keylog available again
455 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
456 - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
457 - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
458 - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
459 - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
460 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
461 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
462 - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
463 - MINOR: pools: do not maintain the lock during pool_flush()
464 - MINOR: pools: call malloc_trim() under thread isolation
465 - MEDIUM: pools: use a single pool_gc() function for locked and lockless
466 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
467 - CLEANUP: pools: remove now unused seq and pool_free_list
468 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
469 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
470 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
471 - BUG/MINOR: resolvers: answser item list was randomly purged or errors
472 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
473 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
474 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
475 - DOC: lua: Add a warning about buffers modification in HTTP
476 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
477 - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
478 - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
479 - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
480 - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
481 - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
482 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
483 - BUG/MINOR: ssl: use atomic ops to update global shctx stats
484 - BUG/MINOR: mworker: fix typo in chroot error message
485 - CLEANUP: global: remove unused definition of stopping_task[]
486 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
487 - MINOR: backend: only skip LB when there are actual connections
488 - BUG/MINOR: mux-h1: do not skip the error response on bad requests
489 - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
490 - MINOR: connection: add helper conn_append_debug_info()
491 - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
492 - CLEANUP: mux-h2/traces: better align user messages
493 - BUG/MINOR: stats: make "show stat typed desc" work again
494 - MINOR: mux-h2: obey http-ignore-probes during the preface
495 - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
496 - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
497
Willy Tarreau6cbbecf2021-05-14 09:03:30 +02004982021/05/14 : 2.4.0
499 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
500 - CLEANUP: cli/activity: Remove double spacing in set profiling command
501 - CI: Build VTest with clang
502 - CI: extend spellchecker whitelist, add "ists" as well
503 - CLEANUP: assorted typo fixes in the code and comments
504 - BUG/MINOR: memprof: properly account for differences for realloc()
505 - MINOR: memprof: also report the method used by each call
506 - MINOR: memprof: also report the totals and delta alloc-free
507 - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
508 - BUG/MINOR: http_act: Fix normalizer names in error messages
509 - MINOR: uri_normalizer: Add `fragment-strip` normalizer
510 - MINOR: uri_normalizer: Add `fragment-encode` normalizer
511 - IMPORT: slz: use the generic function for the last bytes of the crc32
512 - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
513 - BUILD/MINOR: opentracing: fixed compilation with filter enabled
514 - BUILD: makefile: add a few popular ARMv8 CPU targets
515 - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
516 - REGTESTS: stick-table: add src_conn_rate test
517 - CLEANUP: stick-table: remove a leftover of an old keyword declaration
518 - BUG/MINOR: stats: fix lastchk metric that got accidently lost
519 - EXAMPLES: add a "basic-config-edge" example config
520 - EXAMPLES: add a trivial config for quick testing
521 - DOC: management: Correct example reload command in the document
522 - Revert "CI: Build VTest with clang"
523 - MINOR: activity/cli: optionally support sorting by address on "show profiling"
524 - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
525 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
526 - DOC: config: Fix configuration example for mqtt
527 - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
528 - BUILD: config: avoid a build warning on numa_detect_topology() without threads
529 - DOC: update min requirements in INSTALL
530 - IMPORT: slz: use inttypes.h instead of stdint.h
531 - BUILD: sample: use strtoll() instead of atoll()
532 - MINOR: version: mention that it's LTS now.
533
Willy Tarreau46b93af2021-05-10 07:50:26 +02005342021/05/10 : 2.4-dev19
535 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
536 - BUG/MEDIUM: cli: prevent memory leak on write errors
537 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
538 - MINOR: debug: add a new "debug dev sym" command in expert mode
539 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
540 - CI: Github Actions: switch to LibreSSL-3.3.3
541 - MINOR: srv: close all idle connections on shutdown
542 - MINOR: connection: move session_list member in a union
543 - MEDIUM: mux_h1: release idling frontend conns on soft-stop
544 - MEDIUM: connection: close front idling connection on soft-stop
545 - MINOR: tools: add functions to retrieve the address of a symbol
546 - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
547 - MINOR: activity: add a "memory" entry to "profiling"
548 - MINOR: activity: declare the storage for memory usage statistics
549 - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
550 - MINOR: activity: clean up the show profiling io_handler a little bit
551 - MINOR: activity: make "show profiling" support a few arguments
552 - MINOR: activity: make "show profiling" also dump the memoery usage
553 - MINOR: activity: add the profiling.memory global setting
554 - BUILD: makefile: add new option USE_MEMORY_PROFILING
555 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
556 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
557 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
558 - MEDIUM: mux-h1: Don't block reads when waiting for the other side
559 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
560 - REGTESTS: Add script to test abortonclose option
561 - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
562 - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
563 - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
564 - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
565 - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
566 - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
567 - BUG/MINOR: stream: Decrement server current session counter on L7 retry
568 - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
569 - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
570 - BUG/MINOR: config: .if/.elif should also accept negative integers
571 - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
572 - MINOR: config: keep up-to-date current file/line/section in the global struct
573 - MINOR: config: support some pseudo-variables for file/line/section
574 - BUILD: activity: do not include malloc.h
575 - MINOR: arg: improve the error message on missing closing parenthesis
576 - MINOR: global: export the build features string list
577 - MINOR: global: add version comparison functions
578 - MINOR: config: improve .if condition error reporting
579 - MINOR: config: make cfg_eval_condition() support predicates with arguments
580 - MINOR: config: add predicate "defined()" to conditional expression blocks
581 - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
582 - MINOR: config: add predicate "feature" to detect certain built-in features
583 - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
584 - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
585 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
586 - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
587 - MINOR: config: add a new message directive: .diag
588 - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
589 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
590 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
591 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
592 - MINOR: global: define tainted flag
593 - MINOR: cfgparse: add a new field flags in cfg_keyword
594 - MINOR: cfgparse: implement experimental config keywords
595 - MINOR: action: replace match_pfx by a keyword flags field
596 - MINOR: action: implement experimental actions
597 - MINOR: cli: set tainted when using CLI expert/experimental mode
598 - MINOR: stats: report tainted on show info
599 - MINOR: http_act: mark normalize-uri as experimental
600 - BUILD: fix usage of ha_alert without format string
601 - MINOR: proxy: define PR_CAP_LB
602 - BUG/MINOR: server: do not report diag for peer servers with null weight
603 - DOC: ssl: Extra files loading now works for backends too
604 - ADDONS: make addons/ discoverable by git via .gitignore
605 - DOC: ssl: Add information about crl-file option
606 - MINOR: sample: improve error reporting on missing arg to strcmp() converter
607 - DOC: management: mention that some fields may be emitted as floats
608 - MINOR: tools: implement trimming of floating point numbers
609 - MINOR: tools: add a float-to-ascii conversion function
610 - MINOR: freq_ctr: add new functions to report float measurements
611 - MINOR: stats: avoid excessive padding of float values with trailing zeroes
612 - MINOR: stats: add the HTML conversion for float types
613 - MINOR: stats: pass the appctx flags to stats_fill_info()
614 - MINOR: stats: support an optional "float" option to "show info"
615 - MINOR: stats: use tv_remain() to precisely compute the uptime
616 - MINOR: stats: report uptime and start time as floats with subsecond resolution
617 - MINOR: stats: make "show info" able to report rates as floats when asked
618 - MINOR: config: mark tune.fd.edge-triggered as experimental
619 - REORG: vars: move the "proc" scope variables out of the global struct
620 - REORG: threads: move all_thread_mask() to thread.h
621 - BUILD: wdt: include signal-t.h
622 - BUILD: auth: include missing list.h
623 - REORG: mworker: move proc_self from global to mworker
624 - BUILD: ssl: ssl_utils requires chunk.h
625 - BUILD: config: cfgparse-ssl.c needs tools.h
626 - BUILD: wurfl: wurfl.c needs tools.h
627 - BUILD: spoe: flt_spoe.c needs tools.h
628 - BUILD: promex: service-prometheus.c needs tools.h
629 - BUILD: resolvers: include tools.h
630 - BUILD: config: include tools.h in cfgparse-listen.c
631 - BUILD: htx: include tools.h in http_htx.c
632 - BUILD: proxy: include tools.h in proxy.c
633 - BUILD: session: include tools.h in session.c
634 - BUILD: cache: include tools.h in cache.c
635 - BUILD: sink: include tools.h in sink.c
636 - BUILD: connection: include tools.h in connection.c
637 - BUILD: server-state: include tools.h from server_state.c
638 - BUILD: dns: include tools.h in dns.c
639 - BUILD: payload: include tools.h in payload.c
640 - BUILD: vars: include tools.h in vars.c
641 - BUILD: compression: include tools.h in compression.c
642 - BUILD: mworker: include tools.h from mworker.c
643 - BUILD: queue: include tools.h from queue.c
644 - BUILD: udp: include tools.h from proto_udp.c
645 - BUILD: stick-table: include freq_ctr.h from stick_table.h
646 - BUILD: server: include tools.h from server.c
647 - BUILD: server: include missing proxy.h in server.c
648 - BUILD: sink: include proxy.h in sink.c
649 - BUILD: mworker: include proxy.h in mworker.c
650 - BUILD: filters: include proxy.h in filters.c
651 - BUILD: fcgi-app: include proxy.h in fcgi-app.c
652 - BUILD: connection: move list_mux_proto() to connection.c
653 - REORG: stick-table: uninline stktable_alloc_data_type()
654 - REORG: stick-table: move composite address functions to stick_table.h
655 - REORG: config: uninline warnifnotcap() and failifnotcap()
656 - BUILD: task: remove unused includes from task.c
657 - MINOR: task: stop including stream.h from task.c
658 - BUILD: connection: stop including listener-t.h
659 - BUILD: hlua: include proxy.h from hlua.c
660 - BUILD: mux-h1: include proxy.h from mux-h1.c
661 - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
662 - BUILD: listener: include proxy.h from listener.c
663 - BUILD: http-rules: include proxy.h from http_rules.c
664 - BUILD: thread: include log.h from thread.c
665 - BUILD: comp: include proxy.h from flt_http_comp.c
666 - BUILD: fd: include log.h from fd.c
667 - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
668 - BUILD: makefile: reorder object files by build time
669 - DOC: Fix a few grammar/spelling issues and casing of HAProxy
670 - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
671 - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
672 - DOC: remove last occurrences of "HA-Proxy" syntax
673 - DOC: peers: fix the protocol tag name in the doc
674 - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
675 - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
676 - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
677 - MINOR: tools/rnd: compute the result outside of the CAS loop
678 - BUILD: http_fetch: address a few aliasing warnings with older compilers
679 - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
680 - BUILD: errors: include stdarg in errors.h
681 - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
682 - MINOR: cli: make "help" support a command in argument
683 - MINOR: cli: sort the output of the "help" keywords
684 - CLEANUP: cli/mworker: properly align the help messages
685 - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
686 - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
687 - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
688 - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
689 - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
690
Willy Tarreau080347f2021-05-01 08:25:15 +02006912021/05/01 : 2.4-dev18
692 - DOC: Fix indentation for `path-strip-dot` normalizer
693 - DOC: Fix RFC reference for the percent-to-uppercase normalizer
694 - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
695 - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
696 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
697 - REORG: htx: Inline htx functions to add HTX blocks in a message
698 - CLEANUP: assorted typo fixes in the code and comments
699 - DOC: general: fix white spaces for HTML converter
700 - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
701 - BUG/MINOR: cpuset: move include guard at the very beginning
702 - BUG/MAJOR: fix build on musl with cpu_set_t support
703 - BUG/MEDIUM: cpuset: fix build on MacOS
704 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
705 - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
706 - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
707 - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
708 - MEDIUM: http-ana: handle read error on server side if waiting for response
709 - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
710 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
711 - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
712 - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
713 - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
714 - DOC: general: fix example in set-timeout
715 - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
716 - MINOR: config: add a new "default-path" global directive
717 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
718 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
719 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
720 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
721 - BUG/MEDIUM: peers: reset commitupdate value in new conns
722 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
723 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
724 - MINOR: peers: add informative flags about resync process for debugging
725 - BUG/MEDIUM: time: fix updating of global_now upon clock drift
726 - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
727 - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
728 - MINOR: server: fix doc/trace on lb algo for dynamic server creation
729 - REGTESTS: server: fix cli_add_server due to previous trace update
730 - REGTESTS: add minimal CLI "add map" tests
731 - DOC: management: move "set var" to the proper place
732 - CLEANUP: map: slightly reorder the add map function
733 - MINOR: map: get rid of map_add_key_value()
734 - MINOR: map: show the current and next pattern version in "show map"
735 - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
736 - MINOR: pattern: support purging arbitrary ranges of generations
737 - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
738 - MINOR: map/acl: add the "prepare map/acl" CLI command
739 - MINOR: map/acl: add the "commit map/acl" CLI command
740 - MINOR: map/acl: make "add map/acl" support an optional version number
741 - CLEANUP: map/cli: properly align the map/acl help
742 - BUILD: compiler: do not use already defined __read_mostly on dragonfly
743
Willy Tarreaubfd19d62021-04-23 19:11:10 +02007442021/04/23 : 2.4-dev17
745 - MINOIR: mux-pt/trace: Register a new trace source with its events
746 - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
747 - CI: travis: Drastically clean up .travis.yml
748 - CLEANUP: pattern: make all pattern tables read-only
749 - MINOR: trace: replace the trace() inline function with an equivalent macro
750 - MINOR: initcall: uniformize the section names between MacOS and other unixes
751 - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
752 - MINOR: compiler: add macros to declare section names
753 - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
754 - MINOR: global: declare a read_mostly section
755 - MINOR: fd: move a few read-mostly variables to their own section
756 - MINOR: epoll: move epoll_fd to read_mostly
757 - MINOR: kqueue: move kqueue_fd to read_mostly
758 - MINOR: pool: move pool declarations to read_mostly
759 - MINOR: threads: mark all_threads_mask as read_mostly
760 - MINOR: server: move idle_conn_task to read_mostly
761 - MINOR: protocol: move __protocol_by_family to read_mostly
762 - MINOR: pattern: make the pat_lru_seed read_mostly
763 - MINOR: trace: make trace sources read_mostly
764 - MINOR: freq_ctr: add a generic function to report the total value
765 - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
766 - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
767 - MINOR: freq_ctr: add the missing next_event_delay_period()
768 - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
769 - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
770 - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
771 - MINOR: freq_ctr: simplify and improve the update function
772 - CLEANUP: time: remove the now unused ms_left_scaled
773 - MINOR: time: move the time initialization out of tv_update_date()
774 - MINOR: time: remove useless variable copies in tv_update_date()
775 - MINOR: time: change the global timeval and the the global tick at once
776 - MEDIUM: time: make the clock offset global and no per-thread
777 - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
778 - MINOR: trace: Add the checks as a possible trace source
779 - MINOIR: checks/trace: Register a new trace source with its events
780 - MINOR: hlua: Add function to release a lua function
781 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
782 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
783 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
784 - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
785 - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
786 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
787 - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
788 - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
789 - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
790 - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
791 - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
792 - DOC: internals: update the SSL architecture schema
793 - BUG/MEDIUM: sample: Fix adjusting size in field converter
794 - MINOR: sample: add ub64dec and ub64enc converters
795 - CLEANUP: sample: align samples list in sample.c
796 - MINOR: ist: Add `istclear(struct ist*)`
797 - CI: cirrus: install "pcre" package
798 - MINOR: opentracing: correct calculation of the number of arguments in the args[]
799 - MINOR: opentracing: transfer of context names without prefix
800 - MINOR: sample: converter: Add mjson library.
801 - MINOR: sample: converter: Add json_query converter
802 - CI: travis-ci: enable weekly graviton2 builds
803 - DOC: ssl: Certificate hot update only works on fronted certificates
804 - DOC: ssl: Certificate hot update works on server certificates
805 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
806 - MINOR: threads: Only consider running threads to end a thread harmeless period
807 - BUG/MINOR: checks: Set missing id to the dummy checks frontend
808 - MINOR: logs: Add support of checks as session origin to format lf strings
809 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
810 - MINOR: connection: Make bc_http_major compatible with tcp-checks
811 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
812 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
813 - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
814 - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
815 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
816 - BUG/MINOR: logs: Report the true number of retries if there was no connection
817 - BUILD: makefile: Redirect stderr to /dev/null when probing options
818 - MINOR: uri_normalizer: Add uri_normalizer module
819 - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
820 - MINOR: uri_normalizer: Add `http-request normalize-uri`
821 - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
822 - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
823 - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
824 - MINOR: uri_normalizer: Add a `sort-query` normalizer
825 - MINOR: uri_normalizer: Add a `percent-upper` normalizer
826 - MEDIUM: http_act: Rename uri-normalizers
827 - DOC: Add introduction to http-request normalize-uri
828 - DOC: Note that URI normalization is experimental
829 - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
830 - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
831 - MINOR: pools: drop the unused static history of artificially failed allocs
832 - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
833 - MEDIUM: pools: move the cache into the pool header
834 - MINOR: pool: remove the size field from pool_cache_head
835 - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
836 - MINOR: pools: enable the fault injector in all allocation modes
837 - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
838 - MEDIUM: pools: unify pool_refill_alloc() across all models
839 - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
840 - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
841 - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
842 - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
843 - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
844 - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
845 - MINOR: tools: add statistical_prng_range() to get a random number over a range
846 - MINOR: pools: use cheaper randoms for fault injections
847 - MINOR: pools: move the fault injector to __pool_alloc()
848 - MINOR: pools: split the OS-based allocator in two
849 - MINOR: pools: always use atomic ops to maintain counters
850 - MINOR: pools: move pool_free_area() out of the lock in the locked version
851 - MINOR: pools: factor the release code into pool_put_to_os()
852 - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
853 - MINOR: pools: create unified pool_{get_from,put_to}_cache()
854 - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
855 - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
856 - CLEANUP: pools: make the local cache allocator fall back to the shared cache
857 - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
858 - CLEANUP: pools: uninline pool_put_to_cache()
859 - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
860 - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
861 - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
862 - CONTRIB: mod_defender: import the minimal number of includes
863 - CONTRIB: mod_defender: make the code build with the embedded includes
864 - CONTRIB: modsecurity: import the minimal number of includes
865 - CONTRIB: modsecurity: make the code build with the embedded includes
866 - CLEANUP: sample: Improve local variables in sample_conv_json_query
867 - CLEANUP: sample: Explicitly handle all possible enum values from mjson
868 - CLEANUP: sample: Use explicit return for successful `json_query`s
869 - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
870 - CONTRIB: move spoa_example out of the tree
871 - BUG/MINOR: server: free srv.lb_nodes in free_server
872 - BUG/MINOR: logs: free logsrv.conf.file on exit
873 - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
874 - MINOR: server: add log on dynamic server creation
875 - MINOR: server: implement delete server cli command
876 - CONTRIB: move spoa_server out of the tree
877 - CONTRIB: move modsecurity out of the tree
878 - BUG/MINOR: server: fix potential null gcc error in delete server
879 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
880 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
881 - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
882 - CLEANUP: uri_normalizer: Remove trailing whitespace
883 - MINOR: uri_normalizer: Add a `strip-dot` normalizer
884 - CONTRIB: move mod_defender out of the tree
885 - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
886 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
887 - MINOR: config: add a diag for invalid cpu-map statement
888 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
889 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
890 - BUILD: makefile: fix the "make clean" target on strict bourne shells
891 - IMPORT: slz: import slz into the tree
892 - BUILD: compression: switch SLZ from out-of-tree to in-tree
893 - CI: github: do not build libslz any more
894 - CLEANUP: compression: remove calls to SLZ init functions
895 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
896 - MINOR: cpuset: define a platform-independent cpuset type
897 - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
898 - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
899 - MINOR: thread: implement the detection of forced cpu affinity
900 - MINOR: cfgparse: support the comma separator on parse_cpu_set
901 - MEDIUM: cfgparse: detect numa and set affinity if needed
902 - MINOR: global: add option to disable numa detection
903 - BUG/MINOR: haproxy: fix compilation on macOS
904 - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
905 - MINOR: time: avoid unneeded updates to now_offset
906 - MINOR: time: avoid overwriting the same values of global_now
907 - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
908 - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
909 - BUG/MINOR: peers: remove useless table check if initial resync is finished
910 - BUG/MEDIUM: peers: re-work connection to new process during reload.
911 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
912 - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
913
Willy Tarreau86512dd2021-04-09 17:10:39 +02009142021/04/09 : 2.4-dev16
915 - CLEANUP: dev/flags: remove useless test in the stdin number parser
916 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
917 - MINOR: acl: Add HTTP_2.0 predefined macro
918 - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
919 - BUG/MINOR: tools: fix parsing "us" unit for timers
920 - MINOR: server/bind: add support of new prefixes for addresses.
921 - MINOR: log: register config file and line number on log servers.
922 - MEDIUM: log: support tcp or stream addresses on log lines.
923 - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
924 - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
925 - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
926 - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
927 - MINOR: fd: move .linger_risk into fdtab[].state
928 - MINOR: fd: move .cloned into fdtab[].state
929 - MINOR: fd: move .initialized into fdtab[].state
930 - MINOR: fd: move .et_possible into fdtab[].state
931 - MINOR: fd: move .exported into fdtab[].state
932 - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
933 - MINOR: cli/show-fd: slightly reorganize the FD status flags
934 - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
935 - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
936 - CLEANUP: atomic: make all standard add/or/and/sub operations return void
937 - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
938 - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
939 - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
940 - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
941 - MINOR: atomic: implement native BTS/BTR for x86
942 - MINOR: ist: Add `istappend(struct ist, char)`
943 - MINOR: ist: Add `istshift(struct ist*)`
944 - MINOR: ist: Add `istsplit(struct ist*, char)`
945 - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
946 - MINOR: opentracing: register config file and line number on log servers
947 - MEDIUM: resolvers: add support of tcp address on nameserver line.
948 - MINOR: ist: Rename istappend() to __istappend()
949 - CLEANUP: htx: Make http_get_stline take a `const struct`
950 - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
951 - CLEANUP: Remove useless malloc() casts
952
Willy Tarreau59fa1d12021-04-02 19:16:32 +02009532021/04/02 : 2.4-dev15
954 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
955 - BUG/MINOR: stats: Apply proper styles in HTML status page.
956 - BUG/MEDIUM: time: make sure to always initialize the global tick
957 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
958 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
959 - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
960 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
961 - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
962 - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
963 - MINOR: frontend: Create HTTP txn for HTX streams
964 - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
965 - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
966 - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
967 - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
968 - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
969 - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
970 - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
971 - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
972 - MINOR: muxes: Show muxes flags when the mux list is displayed
973 - DOC: config: Improve documentation about proto/check-proto keywords
974 - MINOR: stream: Use stream type instead of proxy mode when appropriate
975 - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
976 - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
977 - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
978 - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
979 - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
980 - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
981 - DOC: config: Add documentation about TCP to HTTP upgrades
982 - REGTESTS: Add script to tests TCP to HTTP upgrades
983 - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
984 - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
985 - MINOR: action: Use a generic function to check validity of an action rule list
986 - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
987 - MEDIUM: http-rules: Add wait-for-body action on request and response side
988 - REGTESTS: Add script to tests the wait-for-body HTTP action
989 - BUG/MINOR: http-fetch: Fix test on message state to capture the version
990 - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
991 - MINOR: global: define diagnostic mode of execution
992 - MINOR: cfgparse: diag for multiple nbthread statements
993 - MINOR: server: diag for 0 weight server
994 - MINOR: diag: create cfgdiag module
995 - MINOR: diag: diag if servers use the same cookie value
996 - MINOR: config: diag if global section after non-global
997 - TESTS: slightly reorganize the code in the tests/ directory
998 - TESTS: move tests/*.cfg to tests/config
999 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
1000 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
1001 - CONTRIB: halog: fix issue with array of type char
1002 - CONTRIB: tcploop: add a shutr command
1003 - CONTRIB: debug: add the show-fd-to-flags script
1004 - CONTRIB: debug: split poll from flags
1005 - CONTRIB: move some dev-specific tools to dev/
1006 - BUILD: makefile: always build the flags utility
1007 - DEV: flags: replace the unneeded makefile with a README
1008 - BUILD: makefile: integrate the hpack tools
1009 - CONTRIB: merge ip6range with iprange
1010 - CONTRIB: move some admin-related sub-projects to admin/
1011 - CONTRIB: move halog to admin/
1012 - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
1013 - BUILD: makefile: build halog with the correct flags
1014 - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
1015 - CONTRIB: move prometheus-exporter to addons/promex
1016 - DOC: add a few words about USE_* and the addons directory
1017 - CONTRIB: move 51Degrees to addons/51degrees
1018 - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
1019 - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
1020 - CONTRIB: move contrib/opentracing to addons/ot
1021 - BUG/MINOR: opentracing: initialization after establishing daemon mode
1022 - DOC: clarify that compression works for HTTP/2
1023
Willy Tarreauaf6d88b2021-03-27 09:42:09 +010010242021/03/27 : 2.4-dev14
1025 - MEDIUM: quic: Fix build.
1026 - MEDIUM: quic: Fix build.
1027 - CI: codespell: whitelist "Dragan Dosen"
1028 - CLEANUP: assorted typo fixes in the code and comments
1029 - CI: github actions: update LibreSSL to 3.2.5
1030 - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
1031 - CLEANUP: mark defproxy as const on parse tune.fail-alloc
1032 - REGTESTS: remove unneeded experimental-mode in cli add server test
1033 - REGTESTS: wait for proper return of enable server in cli add server test
1034 - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
1035 - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
1036 - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
1037 - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
1038 - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
1039 - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
1040 - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
1041 - CLEANUP: compression: do not test for buffer before calling b_alloc()
1042 - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
1043 - MINOR: channel: simplify the channel's buffer allocation
1044 - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
1045 - CLEANUP: dynbuf: remove b_alloc_margin()
1046 - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
1047 - CLEANUP: pools: remove the unused pool_get_first() function
1048 - MINOR: pools: make the pool allocator support a few flags
1049 - MINOR: pools: add pool_zalloc() to return a zeroed area
1050 - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
1051 - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
1052 - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
1053 - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
1054 - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
1055 - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
1056 - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
1057 - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
1058 - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
1059 - MINOR: time: also provide a global, monotonic global_now_ms timer
1060 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
1061 - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
1062 - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
1063 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
1064 - CLEANUP: ssl: remove unused definitions
1065 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
1066 - MINOR: lua: Slightly improve function dumping the lua traceback
1067 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
1068 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
1069 - MINOR: fd: make fd_clr_running() return the remaining running mask
1070 - MINOR: fd: remove the unneeded running bit from fd_insert()
1071 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
1072 - CLEANUP: fd: remove unused fd_set_running_excl()
1073 - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
1074 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
1075 - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
1076 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
1077 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
1078 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
1079 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
1080 - BUG/MINOR: ssl: Fix update of default certificate
1081 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
1082 - BUILD: ssl: introduce fine guard for ssl random extraction functions
1083 - REORG: global: move initcall register code in a dedicated file
1084 - REORG: global: move free acl/action in their related source files
1085 - REORG: split proxy allocation functions
1086 - MINOR: proxy: implement a free_proxy function
1087 - MINOR: proxy: define cap PR_CAP_LUA
1088 - MINOR: lua: properly allocate the lua Socket proxy
1089 - MINOR: lua: properly allocate the lua Socket servers
1090 - MINOR: vars: make get_vars() allow the session to be null
1091 - MINOR: vars: make the var() sample fetch keyword depend on nothing
1092 - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
1093 - MINOR: sample: make smp_resolve_args() return an allocate error message
1094 - MINOR: sample: add a new SMP_SRC_CONST sample capability
1095 - MINOR: sample: mark the truly constant sample fetch keywords as such
1096 - MINOR: sample: add a new CFG_PARSER context for samples
1097 - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
1098 - MEDIUM: vars: add support for a "set-var" global directive
1099 - REGTESTS: add a basic reg-test for some "set-var" commands
1100 - MINOR: sample: add a new CLI_PARSER context for samples
1101 - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
1102 - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
1103 - MEDIUM: cli: add a new experimental "set var" command
1104 - MINOR: compat: add short aliases for a few very commonly used types
1105 - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
1106 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
1107
Willy Tarreau09cc6692021-03-19 17:16:18 +010011082021/03/19 : 2.4-dev13
1109 - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
1110 - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
1111 - MINOR: tools: improve word fingerprinting by counting presence
1112 - MINOR: tools: do not sum squares of differences for word fingerprints
1113 - MINOR: cli: improve fuzzy matching to work on all remaining words at once
1114 - MINOR: cli: sort the suggestions by order of relevance
1115 - MINOR: cli: limit spelling suggestions to 5
1116 - MINOR: cfgparse/proxy: also support spelling fixes on options
1117 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
1118 - MINOR: time: export the global_now variable
1119 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
1120 - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
1121 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
1122 - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
1123 - MINOR: cli: implement experimental-mode
1124 - REORG: server: add a free server function
1125 - MINOR: cfgparse: always alloc idle conns task
1126 - REORG: server: move keywords in srv_kws
1127 - MINOR: server: remove fastinter from mistyped kw list
1128 - REORG: server: split parse_server
1129 - REORG: server: move alert traces in parse_server
1130 - REORG: server: rename internal functions from parse_server
1131 - REORG: server: attach servers in parse_server
1132 - REORG: server: use flags for parse_server
1133 - MINOR: server: prepare parsing for dynamic servers
1134 - MINOR: stats: export function to allocate extra proxy counters
1135 - MEDIUM: server: implement 'add server' cli command
1136 - REGTESTS: implement test for 'add server' cli
1137 - MINOR: server: enable standard options for dynamic servers
1138 - MINOR: server: support keyword proto in 'add server' cli
1139 - BUG/MINOR: protocol: add missing support of dgram unix socket.
1140 - CLEANUP: Fix a typo in fix_is_valid description
1141 - MINOR: raw_sock: Add a close method.
1142 - MEDIUM: connections: Introduce a new XPRT method, start().
1143 - MEDIUM: connections: Implement a start() method for xprt_handshake.
1144 - MEDIUM: connections: Implement a start() method in ssl_sock.
1145 - MINOR: muxes: garbage collect the reset() method.
1146 - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
1147 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
1148 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
1149
Willy Tarreauacdd47d2021-03-13 11:48:28 +010011502021/03/13 : 2.4-dev12
1151 - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
1152 - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
1153 - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
1154 - MINOR: connection: Use a `struct ist` to store proxy_authority
1155 - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
1156 - BUILD: task: fix build at -O0 with threads disabled
1157 - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
1158 - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
1159 - BUILD: connection: do not use VAR_ARRAY in struct tlv
1160 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
1161 - MINOR: build: force CC to set a return code when probing options
1162 - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
1163 - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
1164 - CLEANUP: config: also address the cfg_keyword API change in the compression code
1165 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
1166 - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
1167 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
1168 - OPTIM: task: automatically adjust the default runqueue-depth to the threads
1169 - BUG/MINOR: connection: Missing QUIC initialization
1170 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
1171 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
1172 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
1173 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
1174 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
1175 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
1176 - BUG/MINOR: server-state: properly handle the case where the base is not set
1177 - BUG/MINOR: server-state: use the argument, not the global state
1178 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
1179 - CLEANUP: vars: make the error message clearer on missing arguments for set-var
1180 - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
1181 - CLEANUP: actions: the keyword must always be const from the rule
1182 - MINOR: tools: add simple word fingerprinting to find similar-looking words
1183 - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
1184 - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
1185 - MINOR: cfgparse: suggest correct spelling for unknown words in global section
1186 - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
1187 - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
1188 - MINOR: actions: add a function to suggest an action ressembling a given word
1189 - MINOR: http-rules: suggest approaching action names on mismatch
1190 - MINOR: tcp-rules: suggest approaching action names on mismatch
1191 - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
1192 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
1193 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
1194 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
1195 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
1196 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
1197 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
1198 - MINOR: resolvers: new function find_srvrq_answer_record()
1199 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
1200 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
1201 - MINOR: resolvers: Use a function to remove answers attached to a resolution
1202 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
1203 - MINOR: resolvers: Add function to change the srv status based on SRV resolution
1204 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
1205 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
1206 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
1207 - MINOR: resolvers: Use milliseconds for cached items in resolver responses
1208 - MINOR: resolvers: Don't try to match immediatly renewed ADD items
1209 - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
1210 - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
1211 - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
1212 - CLEANUP: cli: fix misleading comment and better indent the access level flags
1213 - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
1214 - MINOR: cli: test the appctx level for master access instead of comparing pointers
1215 - MINOR: cli: print the error message in the parser function itself
1216 - MINOR: cli: filter the list of commands to the matching part
1217 - MEDIUM: cli: apply spelling fixes for known commands before listing them
1218 - MINOR: tools: add the ability to update a word fingerprint
1219 - MINOR: cli: apply the fuzzy matching on the whole command instead of words
1220 - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
1221 - CLEANUP: cli: rename the last few "stats_" to "cli_"
1222 - CLEANUP: task: make sure tasklet handlers always indicate their statuses
1223 - CLEANUP: assorted typo fixes in the code and comments
1224
Willy Tarreau7bbc6c92021-03-05 21:24:23 +010012252021/03/05 : 2.4-dev11
1226 - CI: codespell: skip Makefile for spell check
1227 - CLEANUP: assorted typo fixes in the code and comments
1228 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
1229 - BUG/MINOR: connection: Use the client's dst family for adressless servers
1230 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
1231 - CLEANUP: Use ist2(const void*, size_t) whenever possible
1232 - CLEANUP: Use IST_NULL whenever possible
1233 - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
1234 - BUILD: quic: Implicit conversion between SSL related enums.
1235 - DOC: spoe: Add a note about fragmentation support in HAProxy
1236 - MINOR: contrib: add support for heartbeat control messages.
1237 - MINOR: contrib: Enhance peers dissector heuristic.
1238 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
1239 - CLEANUP: Reapply the ist2() replacement patch
1240 - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
1241 - CLEANUP: Use isttest(const struct ist) whenever possible
1242 - Revert "CI: Pin VTest to a known good commit"
1243 - CLEANUP: backend: fix a wrong comment
1244 - BUG/MINOR: backend: free allocated bind_addr if reuse conn
1245 - MINOR: backend: handle reuse for conns with no server as target
1246 - REGTESTS: test http-reuse if no server target
1247 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
1248 - BUG/MINOR: server-state: Don't load server-state file for disabled backends
1249 - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
1250 - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
1251 - DOC: fix originalto except clause on destination address
1252 - CLEANUP: Use the ist() macro whenever possible
1253 - CLEANUP: Replace for loop with only a condition by while
1254 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
1255 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
1256 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
1257 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
1258 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
1259 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
1260 - MINOR: pools: double the local pool cache size to 1 MB
1261 - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
1262 - CLEANUP: stream: explain why we queue the stream at the head of the server list
1263 - MEDIUM: backend: use a trylock when trying to grab an idle connection
1264 - REORG: tools: promote the debug PRNG to more general use as a statistical one
1265 - OPTIM: lb-random: use a cheaper PRNG to pick a server
1266 - MINOR: task: stop abusing the nice field to detect a tasklet
1267 - MINOR: task: move the nice field to the struct task only
1268 - MEDIUM: task: extend the state field to 32 bits
1269 - MINOR: task: add an application specific flag to the state: TASK_F_USR1
1270 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
1271 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
1272 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
1273 - MINOR: server: don't read curr_used_conns multiple times
1274 - CLEANUP: global: reorder some fields to respect cache lines
1275 - CLEANUP: sockpair: silence a coverity check about fcntl()
1276 - CLEANUP: lua: set a dummy file name and line number on the dummy servers
1277 - MINOR: server: add a global list of all known servers
1278 - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
1279 - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
1280 - MINOR: server: move actconns to the per-thread structure
1281 - CLEANUP: server: reorder some fields in the server struct to respect cache lines
1282 - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
1283 - BUG/MINOR: backend: fix condition for reuse on mode HTTP
1284 - BUILD: Fix build when using clang without optimizing.
1285 - CLEANUP: assorted typo fixes in the code and comments
1286
Willy Tarreau8ab65c22021-02-26 22:49:10 +010012872021/02/26 : 2.4-dev10
1288 - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
1289 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
1290 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
1291 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
1292 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
1293 - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
1294 - DOC: muxes: add a diagram of the exchanges between muxes and outer world
1295 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
1296 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
1297 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
1298 - MINOR: stream: add an "epoch" to figure which streams appeared when
1299 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
1300 - MINOR: streams: use one list per stream instead of a global one
1301 - MEDIUM: streams: do not use the streams lock anymore
1302 - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
1303 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
1304 - MINOR: tasks: do not maintain the rqueue_size counter anymore
1305 - CLEANUP: tasks: use a less confusing name for task_list_size
1306 - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
1307 - MINOR: task: limit the remote thread wakeup to the global runqueue only
1308 - MINOR: task: move the allocated tasks counter to the per-thread struct
1309 - CLEANUP: task: split the large tasklet_wakeup_on() function in two
1310 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
1311 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
1312 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
1313 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
1314 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
1315 - BUG/MEDIUM: resolvers: Reset address for unresolved servers
1316 - DOC: Update the module list in MAINTAINERS file
1317 - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
1318 - DOC: Update the HTX API documentation
1319 - DOC: Update the filters guide
1320 - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
1321 - MINOR: task: split the counts of local and global tasks picked
1322 - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
1323 - MINOR: task: don't decrement then increment the local run queue
1324 - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
1325 - MINOR: task: make grq_total atomic to move it outside of the grq_lock
1326 - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
1327 - MINOR: task: make tasklet wakeup latency measurements more accurate
1328 - MINOR: server: Be more strict on the server-state line parsing
1329 - MINOR: server: Only fill one array when parsing a server-state line
1330 - MEDIUM: server: Refactor apply_server_state() to make it more readable
1331 - CLEANUP: server: Rename state_line node to node instead of name_name
1332 - CLEANUP: server: Rename state_line structure into server_state_line
1333 - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
1334 - MINOR: server: Be more strict when reading the version of a server-state file
1335 - MEDIUM: server: Store parsed params of a server-state line in the tree
1336 - MINOR: server: Remove cached line from global server-state tree when found
1337 - MINOR: server: Move loading state of servers in a dedicated function
1338 - MEDIUM: server: Use a tree to store local server-state lines
1339 - MINOR: server: Parse and store server-state lines in a dedicated function
1340 - MEDIUM: server: Don't load server-state file if a line is corrupted
1341 - REORG: server: Export and rename some functions updating server info
1342 - REORG: server-state: Move functions to deal with server-state in its own file
1343 - MINOR: server-state: Don't load server-state file for serverless proxies
1344 - CLEANUP: muxes: Remove useless if condition in show_fd function
1345 - BUG/MINOR: stats: fix compare of no-maint url suffix
1346 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
1347 - MINOR: ssl: mark the SSL handshake tasklet as heavy
1348 - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
1349 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
1350 - MINOR: task: add one extra tasklet class: TL_HEAVY
1351 - MINOR: task: place the heavy elements in TL_HEAVY
1352 - MINOR: task: only limit TL_HEAVY tasks but not others
1353 - BUG/MINOR: http-ana: Only consider dst address to process originalto option
1354 - MINOR: tools: Add net_addr structure describing a network addess
1355 - MINOR: tools: Add function to compare an address to a network address
1356 - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
1357 - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
1358 - REGTESTS: Add script to test except param for fowardedfor/originalto options
1359 - DOC: scheduler: add a diagram showing the different queues and their usages
1360 - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
1361 - CLEANUP: config: replace a few free() with ha_free()
1362 - CLEANUP: vars: always zero the pointers after a free()
1363 - CLEANUP: ssl: remove a useless "if" before freeing an error message
1364 - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
1365 - CLEANUP: ssl: use realloc() instead of free()+malloc()
1366
Willy Tarreau31dd3932021-02-20 13:30:31 +010013672021/02/20 : 2.4-dev9
1368 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
1369 - CLEANUP: check: fix get_check_status_info declaration
1370 - CLEANUP: contrib/prometheus-exporter: align for with srv status case
1371 - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
1372 - MINOR: stats: add helper to get status string
1373 - MEDIUM: contrib/prometheus-exporter: add listen stats
1374 - BUG/MINOR: dns: add test on result getting value from buffer into ring.
1375 - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
1376 - BUG/MINOR: dns: missing test writing in output channel in session handler
1377 - BUG/MINOR: dns: fix ring attach control on dns_session_new
1378 - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
1379 - BUG/MAJOR: connection: prevent double free if conn selected for removal
1380 - BUG/MINOR: session: atomically increment the tracked sessions counter
1381 - REGTESTS: fix http_reuse_conn_hash proxy test
1382 - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
1383 - MINOR: connection: remove pointers for prehash in conn_hash_params
1384 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
1385 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
1386 - DEBUG: thread: add 5 extra lock labels for statistics and debugging
1387 - OPTIM: server: switch the actconn list to an mt-list
1388 - Revert "MINOR: threads: change lock_t to an unsigned int"
1389 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
1390 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
1391 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
1392 - OPTIM: lb-leastconn: do not unlink the server if it did not change
1393 - MINOR: tasks: add DEBUG_TASK to report caller info in a task
1394 - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
1395 - BUG/MINOR: sample: Always consider zero size string samples as unsafe
1396 - MINOR: cli: add missing agent commands for set server
1397 - BUILD/MEDIUM: da Adding pcre2 support.
1398 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
1399 - REGTESTS: reorder reuse conn proxy protocol test
1400 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
1401 - MINOR: tasks: refine the default run queue depth
1402 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
1403 - MINOR: mux_h2: do not try to remove front conn from idle trees
1404 - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
1405 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
1406 - MINOR: connection: allocate dynamically hash node for backend conns
1407 - DOC: DeviceAtlas documentation typo fix.
1408 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
1409 - BUG/MINOR: http-rules: Always replace the response status on a return action
1410 - BUG/MINOR: server: Init params before parsing a new server-state line
1411 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
1412 - MEDIUM: server: Don't introduce a new server-state file version
1413 - DOC: contrib/prometheus-exporter: remove htx reference
1414 - REGTESTS: contrib/prometheus-exporter: test NaN values
1415 - REGTESTS: contrib/prometheus-exporter: test well known labels
1416 - CI: github actions: switch to stable LibreSSL release
1417 - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
1418 - MINOR: dynbuf: make the buffer wait queue per thread
1419 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
1420 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
1421 - MINOR: sched: have one runqueue ticks counter per thread
1422
Willy Tarreaudc626ec2021-02-13 10:17:27 +010014232021/02/13 : 2.4-dev8
1424 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
1425 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
1426 - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
1427 - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
1428 - MEDIUM: contrib/prometheus-exporter: export base stick table stats
1429 - CLEANUP: assorted typo fixes in the code and comments
1430 - CLEANUP: check: fix some typo in comments
1431 - CLEANUP: tools: typo in `strl2irc` mention
1432 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
1433 - MEDIUM: ssl: add a rwlock for SSL server session cache
1434 - BUG/MINOR: intops: fix mul32hi()'s off-by-one
1435 - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
1436 - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
1437 - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
1438 - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
1439 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
1440 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
1441 - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
1442 - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
1443 - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
1444 - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
1445 - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
1446 - BUG/MINOR: server: re-align state file fields number
1447 - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
1448 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
1449 - CLEANUP: remove unused variable assigned found by Coverity
1450 - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
1451 - BUG/MINOR: backend: hold correctly lock when killing idle conn
1452 - MEDIUM: connection: protect idle conn lists with locks
1453 - MEDIUM: connection: replace idle conn lists by eb trees
1454 - MINOR: backend: search conn in idle/safe trees after available
1455 - MINOR: backend: search conn in idle tree after safe on always reuse
1456 - MINOR: connection: prepare hash calcul for server conns
1457 - MINOR: connection: use the srv pointer for the srv conn hash
1458 - MINOR: backend: compare conn hash for session conn reuse
1459 - MINOR: connection: use sni as parameter for srv conn hash
1460 - MINOR: reg-tests: test http-reuse with sni
1461 - MINOR: backend: rewrite alloc of stream target address
1462 - MINOR: connection: use dst addr as parameter for srv conn hash
1463 - MINOR: reg-test: test http-reuse with specific dst addr
1464 - MINOR: backend: rewrite alloc of connection src address
1465 - MINOR: connection: use src addr as parameter for srv conn hash
1466 - MINOR: connection: use proxy protocol as parameter for srv conn hash
1467 - MINOR: reg-tests: test http-reuse with proxy protocol
1468 - MINOR: doc: update http reuse for new eligilible connections
1469 - BUG/MINOR: backend: fix compilation without ssl
1470 - REGTESTS: adjust http_reuse_conn_hash requirements
1471 - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
1472 - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
1473 - CI: cirrus: update FreeBSD image to 12.2
1474 - MEDIUM: cli: add check-addr command
1475 - MEDIUM: cli: add agent-port command
1476 - MEDIUM: server: add server-states version 2
1477 - MEDIUM: server: support {check,agent}_addr, agent_port in server state
1478 - MINOR: server: enhance error precision when applying server state
1479 - BUG/MINOR: server: Fix server-state-file-name directive
1480 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
1481 - BUG/MEDIUM: config: don't pick unset values from last defaults section
1482 - BUG/MINOR: stats: revert the change on ST_CONVDONE
1483 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
1484 - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
1485 - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
1486 - BUILD: proxy: add missing compression-t.h to proxy-t.h
1487 - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
1488 - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
1489 - MEDIUM: proxy: only take defaults when a default proxy is passed.
1490 - MINOR: proxy: move the defproxy freeing code to proxy.c
1491 - MINOR: proxy: always properly reset the just freed default instance pointers
1492 - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
1493 - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
1494 - BUG/MINOR: server: parse_server() must take a const for the defproxy
1495 - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
1496 - MINOR: proxy: add a new capability PR_CAP_DEF
1497 - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
1498 - MINOR: cfgparse: use a pointer to the current default proxy
1499 - MINOR: proxy: also store the name for a defaults section
1500 - MINOR: proxy: support storing defaults sections into their own tree
1501 - MEDIUM: proxy: store the default proxies in a tree by name
1502 - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
1503 - MINOR: http: add baseq sample fetch
1504 - CLEANUP: tcpcheck: Remove a useless test on port variable
1505 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
1506 - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
1507 - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
1508 - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
1509 - DOC: tune: explain the origin of block size for ssl.cachesize
1510 - MINOR: tcp: add support for defer-accept on FreeBSD.
1511 - MINOR: ring: adds new ring_init function.
1512 - CLEANUP: channel: fix comment in ci_putblk.
1513 - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
1514 - BUG/MINOR: resolvers: fix attribute packed struct for dns
1515 - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
1516 - MINOR: resolvers: renames type dns_resolvers to resolvers.
1517 - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
1518 - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
1519 - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
1520 - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
1521 - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
1522 - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
1523 - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
1524 - MINOR: resolvers: rework dns stats prototype because specific to resolvers
1525 - MEDIUM: resolvers: split resolving and dns message exchange layers.
1526 - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
1527 - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
1528 - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
1529
Willy Tarreau5d46fbd2021-02-05 15:17:33 +010015302021/02/05 : 2.4-dev7
1531 - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
1532 - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
1533 - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
1534 - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
1535 - CLEANUP: stats: improve field selection for frontend http fields
1536 - CLEANUP: assorted typo fixes in the code and comments
1537 - DOC: Improve documentation of the various hdr() fetches
1538 - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
1539 - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
1540 - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
1541 - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
1542 - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
1543 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
1544 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
1545 - MINOR: reg-tests: add http-reuse test
1546 - CLEANUP: srv: fix comment for pool-max-conn
1547 - CLEANUP: backend: remove an obsolete comment on conn_backend_get
1548 - REORG: backend: simplify conn_backend_get
1549 - MINOR: ssl: Server ssl context prepare function refactoring
1550 - MINOR: ssl: Certificate chain loading refactorization
1551 - MEDIUM: ssl: Load client certificates in a ckch for backend servers
1552 - MEDIUM: ssl: Enable backend certificate hot update
1553 - MINOR: ssl: Remove client_crt member of the server's ssl context
1554 - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
1555 - CLEANUP: ssl: remove SSL_CTX function parameter
1556 - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
1557 - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
1558 - CI: Fix DEBUG_STRICT definition for Coverity
1559 - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
1560 - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
1561 - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
1562 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
1563 - BUG/MEDIUM: session: only retrieve ready idle conn from session
1564 - BUG/MEDIUM: backend: never reuse a connection for tcp mode
1565 - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
1566 - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
1567 - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
1568 - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
1569 - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
1570 - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
1571 - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
1572 - MINOR: stream: Add a function to validate TCP to H1 upgrades
1573 - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
1574 - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
1575 - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
1576 - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
1577 - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
1578 - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
1579 - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
1580 - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
1581 - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
1582 - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
1583 - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
1584 - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
1585 - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
1586 - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
1587 - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
1588 - MINOR: htx: Add a function to know if a block is the only one in a message
1589 - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
1590 - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
1591 - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
1592 - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
1593 - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
1594 - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
1595 - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
1596 - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
1597 - MINOR: h1: reject websocket handshake if missing key
1598 - MEDIUM: h1: generate WebSocket key on response if needed
1599 - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
1600 - MEDIUM: h2: parse Extended CONNECT reponse to htx
1601 - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
1602 - MEDIUM: h1: add a WebSocket key on handshake if needed
1603 - MEDIUM: mux_h2: generate Extended CONNECT response
1604 - MEDIUM: h2: parse Extended CONNECT request to htx
1605 - MEDIUM: h2: send connect protocol h2 settings
1606 - MINOR: vtc: add test for h1/h2 protocol upgrade translation
1607 - MINOR: vtc: add websocket test
1608 - REGTESTS: Fix required versions for several scripts
1609 - REGTEST: Don't use the websocket to validate http-check
1610 - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
1611 - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
1612 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
1613 - BUG/MEDIUM: listener: do not accept connections faster than we can process them
1614 - REGTESTS: set_ssl_server_cert.vtc: set as broken
1615 - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
1616 - BUG/MINOR: backend: check available list allocation for reuse
1617 - CI: Fix the coverity builds
1618 - DOC: management: fix "show resolvers" alphabetical ordering
1619 - MINOR: tools: add print_time_short() to print a condensed duration value
1620 - MINOR: activity: make profiling more manageable
1621 - MINOR: activity: declare a new structure to collect per-function activity
1622 - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
1623 - MINOR: activity: also report collected tasks stats in "show profiling"
1624 - MINOR: activity: flush scheduler stats on "set profiling tasks on"
1625 - MINOR: activity: add a new "show tasks" command to list currently active tasks
1626 - MINOR: listener: export accept_queue_process
1627 - MINOR: session: export session_expire_embryonic()
1628 - MINOR: muxes: export the timeout and shutr task handlers
1629 - MINOR: checks: export a few functions that appear often in trace dumps
1630 - MINOR: peers: export process_peer_sync() to improve traces
1631 - MINOR: stick-tables: export process_table_expire()
1632 - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
1633 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
1634 - MINOR: http-fetch: Don't check if argument list is set in sample fetches
1635 - MINOR: http-conv: Don't check if argument list is set in sample converters
1636 - MINOR: sample: Don't check if argument list is set in sample fetches
1637 - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
1638 - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
1639 - MINOR: mux-h2: Slightly improve request HEADERS frames sending
1640 - MINOR: contrib/prometheus-exporter: declare states for objects
1641 - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
1642 - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
1643 - MINOR: listener: export manage_global_listener_queue()
1644 - BUG/MINOR: activity: take care of late wakeups in "show tasks"
1645 - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
1646 - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
1647 - MINOR: checks: Add function to get the result code corresponding to a status
1648 - MAJOR: contrib/prometheus-exporter: move health check status to labels
1649 - MINOR: contrib/prometheus-exporter: improve service status description field
1650 - MINOR: stats: improve pending connections description
1651 - MINOR: stats: improve max stats descriptions
1652 - MINOR: contrib/prometheus-exporter: use stats desc when possible
1653 - MINOR: contrib/prometheus-exporter: add uweight field
1654 - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
1655 - CLEANUP: contrib/prometheus-exporter: remove unused includes
1656 - CLEANUP: contrib/prometheus-exporter: align and reorder fields
1657 - CLEANUP: contrib/prometheus-exporter: remove description in README
1658 - DOC: contrib/prometheus-exporter: Add missing metrics in README
1659 - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
1660 - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
1661 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
1662 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
1663 - BUG/MINOR: mux_h2: fix incorrect stat titles
1664 - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
1665 - BUG/MINOR: cli: fix set server addr/port coherency with health checks
1666 - MINOR: server: Don't set the check port during the update from a state file
1667 - MINOR: dns: Don't set the check port during a server dns resolution
1668 - MEDIUM: check: remove checkport checkaddr flag
1669 - MEDIUM: server: adding support for check_port in server state
1670 - BUG/MINOR: check: consitent way to set agentaddr
1671 - MEDIUM: check: align agentaddr and agentport behaviour
1672 - DOC: server: Add missing params in comment of the server state line parsing
1673 - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
1674 - REGTESTS: mark http-check-send.vtc as 2.4-only
1675 - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
1676 - BUG/MINOR: ssl: do not try to use early data if not configured
1677 - REGTESTS: unbreak http-check-send.vtc
1678 - MINOR: cli/show_fd: report local and report ports when known
1679 - BUILD: Makefile: move REGTESTST_TYPE default setting
1680 - BUG/MEDIUM: mux-h2: handle remaining read0 cases
1681 - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
1682 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
1683 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
1684
Willy Tarreau24c41d52021-01-22 16:19:46 +010016852021/01/22 : 2.4-dev6
1686 - MINOR: converter: adding support for url_enc
1687 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
1688 - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
1689 - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
1690 - BUILD: Makefile: exclude broken tests by default
1691 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
1692 - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
1693 - MINOR: contrib/prometheus-exporter: export build_info
1694 - DOC: fix some spelling issues over multiple files
1695 - CLEANUP: Fix spelling errors in comments
1696 - SCRIPTS: announce-release: fix typo in help message
1697 - CI: github: add a few more words to the codespell ignore list
1698 - DOC: Add maintainers for the Prometheus exporter
1699 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
1700 - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
1701 - CLEANUP: sample: remove uneeded check in json validation
1702 - MINOR: reg-tests: add a way to add service dependency
1703 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
1704 - BUG/MINOR: reg-tests: fix service dependency script
1705 - MINOR: reg-tests: add base prometheus test
1706 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
1707 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
1708 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
1709 - BUG/MINOR: init: enforce strict-limits when using master-worker
1710 - MINOR: contrib/prometheus-exporter: avoid connection close header
1711 - MINOR: contrib/prometheus-exporter: use fill_info for process dump
1712 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
1713 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
1714 - MINOR: server: Forbid server definitions in frontend sections
1715 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
1716 - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
1717 - MINOR: pattern: add the missing generation ID manipulation functions
1718 - MINOR: peers: Add traces for peer control messages.
1719 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
1720 - BUILD: peers: fix build warning about unused variable
1721 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
1722 - MINOR: cache: Do not store responses with an unknown encoding
1723 - BUG/MINOR: peers: Possible appctx pointer dereference.
1724 - MINOR: build: discard echoing in help target
1725 - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
1726 - CLEANUP: cache: Use proper data types in secondary_key_cmp()
1727 - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
1728 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
1729 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
1730 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
1731 - CLEANUP: tools: make resolve_sym_name() take a const pointer
1732 - CLEANUP: cli: make "show fd" use a const connection to access other fields
1733 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
1734 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
1735 - MINOR: ssl: provide a "show fd" helper to report important SSL information
1736 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
1737 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
1738 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
1739 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
1740 - CI: Pin VTest to a known good commit
1741 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
1742 - MINOR: cli/show_fd: report some easily detectable suspicious states
1743 - MINOR: ssl/show_fd: report some FDs as suspicious when possible
1744 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
1745 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
1746 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
1747 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
1748 - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
1749 - MINOR: http: Add HTTP 501-not-implemented error message
1750 - MINOR: muxes: Add exit status for errors about not implemented features
1751 - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
1752 - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
1753 - DOC: Remove space after comma in converter signature
1754 - DOC: Rename '<var name>' to '<var>' in converter signature
1755 - MINOR: stats: duplicate 3 fields in bytes in info
1756 - MINOR: stats: add new start time field
1757 - MINOR: contrib/prometheus-exporter: merge info description from stats
1758 - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
1759 - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
1760 - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
1761 - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
1762 - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
1763 - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
1764 - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
1765 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
1766 - MINOR: debug: always export the my_backtrace function
1767 - MINOR: debug: extract the backtrace dumping code to its own function
1768 - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
1769 - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
1770 - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
1771 - BUILD: debug: fix build warning by consuming the write() result
1772 - MINOR: lua: remove unused variable
1773 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
1774
Willy Tarreau421ed392021-01-06 17:41:32 +010017752021/01/06 : 2.4-dev5
1776 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
1777 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
1778 - MINOR: time: increase the minimum wakeup interval to 60s
1779 - MINOR: check: do not ignore a connection header for http-check send
1780 - REGTESTS: complete http-check test
1781 - CI: travis-ci: drop coverity scan builds
1782 - MINOR: atomic: don't use ; to separate instruction on aarch64.
1783 - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
1784 - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
1785 - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
1786 - CLEANUP: xxhash: remove the unused src/xxhash.c
1787 - MINOR: sample: add the xxh3 converter
1788 - REGTESTS: add tests for the xxh3 converter
1789 - MINOR: protocol: Create proto_quic QUIC protocol layer.
1790 - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
1791 - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
1792 - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
1793 - MINOR: connection: Add a new xprt to connection.
1794 - MINOR: ssl: Export definitions required by QUIC.
1795 - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
1796 - MINOR: tools: Add support for QUIC addresses parsing.
1797 - MINOR: quic: Add definitions for QUIC protocol.
1798 - MINOR: quic: Import C source code files for QUIC protocol.
1799 - MINOR: listener: Add QUIC info to listeners and receivers.
1800 - MINOR: server: Add QUIC definitions to servers.
1801 - MINOR: ssl: SSL CTX initialization modifications for QUIC.
1802 - MINOR: ssl: QUIC transport parameters parsing.
1803 - MINOR: quic: QUIC socket management finalization.
1804 - MINOR: cfgparse: QUIC default server transport parameters init.
1805 - MINOR: quic: Enable the compilation of QUIC modules.
1806 - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
1807 - MINOR: quic: Attempt to make trace more readable
1808 - MINOR: quic: Make usage of the congestion control window.
1809 - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
1810 - MINOR: quic: Code reordering to help in reviewing/modifying.
1811 - MINOR: quic: Add traces to congestion avoidance NewReno callback.
1812 - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
1813 - MINOR: quic: Update the initial salt to that of draft-29.
1814 - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
1815 - MINOR: quic: make a packet build fails when qc_build_frm() fails.
1816 - MINOR: quic: Add traces for quic_packet_encrypt().
1817 - MINOR: cache: Refactoring of secondary_key building functions
1818 - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
1819 - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
1820 - MINOR: cache: Add specific secondary key comparison mechanism
1821 - MINOR: http: Add helper functions to trim spaces and tabs
1822 - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
1823 - REGTESTS: cache: Simplify vary.vtc file
1824 - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
1825 - MINOR: cache: Remove redundant test in http_action_req_cache_use
1826 - MINOR: cache: Replace the "process-vary" option's expected values
1827 - CI: GitHub Actions: enable daily Coverity scan
1828 - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
1829 - MEDIUM: stick-tables: Add srvkey option to stick-table
1830 - REGTESTS: add test for stickiness using "srvkey addr"
1831 - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
1832 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
1833 - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
1834 - MINOR: lua: Use consistent error message 'memory allocation failed'
1835 - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
1836 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
1837 - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
1838 - MINOR: qpack: Add static header table definitions for QPACK.
1839 - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
1840 - CLEANUP: quic: Remove useless QUIC event trace definitions.
1841 - BUG/MINOR: quic: Possible CRYPTO frame building errors.
1842 - MINOR: quic: Pass quic_conn struct to frame parsers.
1843 - BUG/MINOR: quic: Wrong STREAM frames parsing.
1844 - MINOR: quic: Drop packets with STREAM frames with wrong direction.
1845 - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
1846 - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
1847 - MINOR: ssl: make tlskeys_list_get_next() take a list element
1848 - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
1849 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
1850 - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
1851 - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
1852 - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
1853 - CLEANUP: spoe: fix typo on `var_check_arg` comment
1854 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
1855 - CI: github actions: build several popular "contrib" tools
1856 - DOC: Improve the message printed when running `make` w/o `TARGET`
1857 - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
1858 - REGTESTS: add unresolvable servers to srvkey-addr
1859 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
1860 - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
1861 - SCRIPTS: improve announce-release to support different tag and versions
1862 - SCRIPTS: make announce release support preparing announces before tag exists
1863 - CLEANUP: assorted typo fixes in the code and comments
1864 - BUG/MINOR: srv: do not init address if backend is disabled
1865 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
1866 - CLEANUP: assorted typo fixes in the code and comments
1867 - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
1868
Willy Tarreau4d711762020-12-21 11:54:56 +010018692020/12/21 : 2.4-dev4
1870 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
1871 - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
1872 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
1873 - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
1874 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
1875 - MEDIUM: cache: Add a secondary entry counter and insertion limitation
1876 - MEDIUM: cache: Avoid going over duplicates lists too often
1877 - MINOR: cache: Add a max-secondary-entries cache option
1878 - CI: cirrus: drop CentOS 6 builds
1879 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
1880 - MINOR: vars: replace static functions with global ones
1881 - MINOR: opentracing: add ARGC_OT enum
1882 - CONTRIB: opentracing: add the OpenTracing filter
1883 - DOC: opentracing: add the OpenTracing filter section
1884 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
1885 - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
1886 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
1887 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
1888 - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
1889 - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
1890 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
1891 - CLEANUP: debug: mark the RNG's seed as unsigned
1892 - CONTRIB: halog: fix build issue caused by %L printf format
1893 - CONTRIB: halog: mark the has_zero* functions unused
1894 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
1895 - CONTRIB: debug: address "poll" utility build on non-linux platforms
1896 - BUILD: plock: remove dead code that causes a warning in gcc 11
1897 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
1898 - BUG/MINOR: dns: SRV records ignores duplicated AR records
1899 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
1900 - CLEANUP: assorted typo fixes in the code and comments
1901 - DOC: assorted typo fixes in the documentation
1902 - CI: codespell: whitelist "te" and "nd" words
1903
Willy Tarreaua786c412020-12-11 17:22:51 +010019042020/12/11 : 2.4-dev3
1905 - MINOR: log: Logging HTTP path only with %HPO
1906 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
1907 - MINOR: traces: add a new level "error" below the "user" level
1908 - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
1909 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
1910 - BUG/MINOR: lua: missing "\n" in error message
1911 - BUG/MINOR: lua: lua-load doesn't check its parameters
1912 - BUG/MINOR: lua: Post init register function are not executed beyond the first one
1913 - BUG/MINOR: lua: Some lua init operation are processed unsafe
1914 - MINOR: actions: Export actions lookup functions
1915 - MINOR: actions: add a function returning a service pointer from its name
1916 - MINOR: cli: add a function to look up a CLI service description
1917 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
1918 - MINOR: cache: Improve accept_encoding_normalizer
1919 - MINOR: cache: Add entry to the tree as soon as possible
1920 - BUG/MINOR: trace: Wrong displayed trace level
1921 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
1922 - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
1923 - MEDIUM: lua-thread: use atomics for memory accounting
1924 - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
1925 - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
1926 - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
1927 - MINOR: lua-thread: Use NULL context for main lua state
1928 - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
1929 - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
1930 - MINOR: lua-thread: Split hlua_init() function in two parts
1931 - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
1932 - MINOR: lua-thread: Split hlua_load function in two parts
1933 - MINOR: lua-thread: Split hlua_post_init() function in two parts
1934 - MINOR: lua-thread: Add the "thread" core variable
1935 - MEDIUM: lua-thread: No longer use locked context in initialization parts
1936 - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
1937 - MINOR: lua-thread: Replace global gL var with an array of states
1938 - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
1939 - MINOR: lua-thread: Replace state_from by state_id
1940 - MINOR: lua-thread: Store each function reference and init reference in array
1941 - MEDIUM: lua-thread: Add the lua-load-per-thread directive
1942 - MINOR: lua-thread: Add verbosity in errors
1943 - REGTESTS: add a test for the threaded Lua code
1944 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
1945 - DOC/MINOR: Fix formatting in Management Guide
1946 - MINOR: cache: Do not store stale entry
1947 - MINOR: cache: Add extra "cache-control" value checks
1948 - MEDIUM: cache: Remove cache entry in case of POST on the same resource
1949 - MINOR: cache: Consider invalid Age values as stale
1950 - BUG/MEDIUM: lua-thread: some parts must be initialized once
1951 - BUG/MINOR: lua-thread: close all states on deinit
1952 - BUG/MINOR: listener: use sockaddr_in6 for IPv6
1953 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
1954 - MINOR: session: Add the idle duration field into the session
1955 - MINOR: mux-h1: Update session idle duration when data are received
1956 - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
1957 - MINOR: logs: Use session idle duration when no stream is provided
1958 - MINOR: stream: Always get idle duration from the session
1959 - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
1960 - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
1961 - MINOR: muxes: Remove get_cs_info callback function now useless
1962 - MINOR: stream: Pass an optional input buffer when a stream is created
1963 - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
1964 - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
1965 - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
1966 - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
1967 - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
1968 - MINOR: mux-h1: Add a rxbuf into the H1 stream
1969 - MINOR: mux-h1: Don't set CS flags in internal parsing functions
1970 - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
1971 - MINOR: mux-h1: rework the h1_timeout_task() function
1972 - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
1973 - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
1974 - MINOR: mux-h1: Rework how shutdowns are handled
1975 - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
1976 - MINOR: mux-h1: Process next request for IDLE connection only
1977 - MINOR: mux-h1: Add a idle expiration date on the H1 connection
1978 - MINOR: stick-tables: Add functions to update some values of a tracked counter
1979 - MINOR: session: Add functions to increase http values of tracked counters
1980 - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
1981 - MINOR: logs: Get the multiplexer exist status when no stream is provided
1982 - MINOR: mux-h1: Add functions to send HTTP errors from the mux
1983 - MAJOR: mux-h1: Create the client stream as later as possible
1984 - DOC: config: Add notes about errors emitted by H1 mux
1985 - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
1986 - MINOR: http-ana: Remove useless update of t_idle duration of the stream
1987 - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
1988 - MEDIUM: http-ana: Don't process partial or empty request anymore
1989 - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
1990 - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
1991 - REGTESTS: Fix proxy_protocol_tlv_validation
1992 - MINOR: http-ana: Properly set message flags from the start-line flags
1993 - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
1994 - MINOR: protocol: add a ->set_port() helper to address families
1995 - MINOR: listener: automatically set the port when creating listeners
1996 - MINOR: listener: now use a generic add_listener() function
1997 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
1998 - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
1999 - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
2000 - MINOR: protocol: remove the redundant ->sock_domain field
2001 - MINOR: protocol: export protocol definitions
2002 - CLEANUP: protocol: group protocol struct members by usage
2003 - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
2004 - MINOR: connection: use the control layer's init/close
2005 - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
2006 - BUG/MAJOR: spoa/python: Fixing return None
2007 - DOC: spoa/python: Fixing typo in IP related error messages
2008 - DOC: spoa/python: Rephrasing memory related error messages
2009 - DOC: spoa/python: Fixing typos in comments
2010 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
2011 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
2012 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
2013 - BUG/MEDIUM: spoa/python: Fixing references to None
2014 - DOC: email change of the DeviceAtlas maintainer
2015 - MINOR: cache: Dump secondary entries in "show cache"
2016 - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
2017 - MINOR: stream-int: don't touch polling anymore on shutdown
2018 - MINOR: connection: implement cs_drain_and_close()
2019 - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
2020 - MINOR: checks: use cs_drain_and_close() instead of draining the connection
2021 - MINOR: checks: don't call conn_cond_update_polling() anymore
2022 - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
2023 - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
2024 - BUG/MINOR: http-check: Use right condition to consider HTX message as full
2025 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
2026 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
2027 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
2028 - BUG/MINOR: tools: Reject size format not starting by a digit
2029 - MINOR: action: define enum for timeout type of the set-timeout rule
2030 - MINOR: stream: prepare the hot refresh of timeouts
2031 - MEDIUM: stream: support a dynamic server timeout
2032 - MEDIUM: stream: support a dynamic tunnel timeout
2033 - MEDIUM: http_act: define set-timeout server/tunnel action
2034 - MINOR: frontend: add client timeout sample fetch
2035 - MINOR: backend: add timeout sample fetches
2036 - MINOR: stream: add sample fetches
2037 - MINOR: stream: add timeout sample fetches
2038 - REGTESTS: add regtest for http-request set-timeout
2039 - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
2040 - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
2041 - MINOR: connection: remove sock-specific code from conn_sock_send()
2042 - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
2043 - MINOR: protocol: add a ->drain() function at the connection control layer
2044 - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
2045 - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
2046 - MEDIUM: connection: make use of the control layer check_events/ignore_events
2047
Willy Tarreauc94431b2020-12-01 08:15:26 +010020482020/12/01 : 2.4-dev2
2049 - BUILD: Make DEBUG part of .build_opts
2050 - BUILD: Show the value of DEBUG= in haproxy -vv
2051 - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
2052 - MINOR: stream: Add level 7 retries on http error 401, 403
2053 - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
2054 - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
2055 - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
2056 - BUG/MEDIUM: http_act: Restore init of log-format list
2057 - DOC: better describes how to configure a fallback crt
2058 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
2059 - MINOR: cache: Prepare helper functions for Vary support
2060 - MEDIUM: cache: Add the Vary header support
2061 - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
2062 - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
2063 - BUG/MAJOR: peers: fix partial message decoding
2064 - DOC: cache: Add new caching limitation information
2065 - DOC: cache: Add information about Vary support
2066 - DOC: better document the config file format and escaping/quoting rules
2067 - DOC: Clarify %HP description in log-format
2068 - CI: github actions: update LibreSSL to 3.3.0
2069 - CI: github actions: enable 51degrees feature
2070 - MINOR: fd/threads: silence a build warning with threads disabled
2071 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
2072 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
2073 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
2074 - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
2075 - MINOR: config: Deprecate and ignore tune.chksize global option
2076 - MINOR: config: Add a warning if tune.chksize is used
2077 - REORG: tcpcheck: Move check option parsing functions based on tcp-check
2078 - MINOR: check: Always increment check health counter on CONPASS
2079 - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
2080 - DOC: config: Make disable-on-404 option clearer on transition conditions
2081 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
2082 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
2083 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
2084 - MINOR: debug: add "debug dev sched" to stress the scheduler.
2085 - MINOR: debug: add a trivial PRNG for scheduler stress-tests
2086 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
2087 - MINOR: task: remove tasklet_insert_into_tasklet_list()
2088 - MINOR: task: perform atomic counter increments only once per wakeup
2089 - MINOR: task: remove __tasklet_remove_from_tasklet_list()
2090 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
2091 - BUG/MEDIUM: local log format regression.
2092
Willy Tarreau1a38ffc2020-11-21 16:00:40 +010020932020/11/21 : 2.4-dev1
2094 - MINOR: ist: Add istend() function to return a pointer to the end of the string
2095 - MINOR: sample: Add converters to parse FIX messages
2096 - REGTEST: converter: Add a regtest for fix converters
2097 - MINOR: sample: Add converts to parses MQTT messages
2098 - REGTEST: converter: Add a regtest for MQTT converters
2099 - MINOR: compat: automatically include malloc.h on glibc
2100 - MEDIUM: pools: call malloc_trim() from pool_gc()
2101 - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
2102 - MINOR: pattern: move the update revision to the pat_ref, not the expression
2103 - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
2104 - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
2105 - MINOR: pattern: make the delete and prune functions more generic
2106 - MEDIUM: pattern: link all final elements from the reference
2107 - MEDIUM: pattern: change the pat_del_* functions to delete from the references
2108 - MINOR: pattern: remerge the list and tree deletion functions
2109 - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
2110 - CLEANUP: acl: don't reference the generic pattern deletion function anymore
2111 - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
2112 - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
2113 - MINOR: pattern: store a generation number in the reference patterns
2114 - MEDIUM: pattern: only match patterns that match the current generation
2115 - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
2116 - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
2117 - MINOR: pattern: add pat_ref_purge_older() to purge old entries
2118 - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
2119 - MINOR: pattern: during reload, delete elements frem the ref, not the expression
2120 - MINOR: pattern: prepare removal of a pattern from the list head
2121 - MEDIUM: pattern: turn the pattern chaining to single-linked list
2122 - CLEANUP: cfgparse: remove duplicate registration for transparent build options
2123 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
2124 - MINOR: http-htx: Add understandable errors for the errorfiles parsing
2125 - MINOR: ssl: instantiate stats module
2126 - MINOR: ssl: count client hello for stats
2127 - MINOR: ssl: add counters for ssl sessions
2128 - DOC: config: Fix a typo on ssl_c_chain_der
2129 - MINOR: server: remove idle lock in srv_cleanup_connections
2130 - BUILD: ssl: silence build warning on uninitialised counters
2131 - BUILD: http-htx: fix build warning regarding long type in printf
2132 - REGTEST: ssl: test wildcard and multi-type + exclusions
2133 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
2134 - CI: Expand use of GitHub Actions for CI
2135 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
2136 - BUG/MINOR: pattern: a sample marked as const could be written
2137 - BUG/MINOR: lua: set buffer size during map lookups
2138 - MEDIUM: cache: Change caching conditions
2139 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
2140 - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
2141 - MINOR: peers: Add traces to peer_treat_updatemsg().
2142 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
2143 - BUG/MINOR: peers: Missing TX cache entries reset.
2144 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
2145 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
2146 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
2147 - BUG/MEDIUM: check: reuse srv proto only if using same mode
2148 - MINOR: check: report error on incompatible proto
2149 - MINOR: check: report error on incompatible connect proto
2150 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
2151 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
2152 - MINOR: spoe: Don't close connection in sync mode on processing timeout
2153 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
2154 - MINOR: init: Fix the prototype for per-thread free callbacks
2155 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
2156 - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
2157 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
2158 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
2159 - REGTESTS: Add sample_fetches/cook.vtc
2160 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
2161 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
2162 - CLEANUP: flt-trace: Remove unused random-parsing option
2163 - MINOR: flt-trace: Add an option to inhibits trace messages
2164 - MINOR: flt-trace: Use a bitfield for the trace options
2165 - REGTESTS: Add a script to test the random forwarding with several filters
2166 - REGTESTS: mark the abns test as broken again
2167 - REGTESTS: converter: add url_dec test
2168 - CI: Stop hijacking the hosts file
2169 - CI: Make the h2spec workflow more consistent with the VTest workflow
2170 - CI: travis-ci: remove amd64, osx builds
2171 - CI: travis-ci: arm64 are not allowed to fail anymore
2172 - DOC: add missing 3.10 in the summary
2173 - MINOR: ssl: remove client hello counters
2174 - MEDIUM: stats: add counters for failed handshake
2175 - MINOR: ssl: create common ssl_ctx init
2176 - MEDIUM: cli/ssl: configure ssl on server at runtime
2177 - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
2178 - DOC: coding-style: update a few rules about pointers
2179 - BUG/MINOR: ssl: segv on startup when AKID but no keyid
2180 - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
2181 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
2182 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
2183 - BUG/MEDIUM: ssl: error when no certificate are found
2184 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
2185 - BUG/MEDIUM: ssl/crt-list: fix error when no file found
2186 - CI: Github Actions: enable prometheus exporter
2187 - CI: Github Actions: remove LibreSSL-3.0.2 builds
2188 - CI: Github Actions: enable BoringSSL builds
2189 - CI: travis-ci: remove builds migrated to GH actions
2190 - BUILD: makefile: enable crypt(3) for OpenBSD
2191 - CI: Github Action: run "apt-get update" before packages restore
2192 - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
2193 - CI: Pass the github.event_name to matrix.py
2194 - CI: Clean up Windows CI
2195 - DOC: clarify how to create a fallback crt
2196 - CLEANUP: connection: do not use conn->owner when the session is known
2197 - BUG/MAJOR: connection: reset conn->owner when detaching from session list
2198 - REGTESTS: mark proxy_protocol_random_fail as broken
2199 - BUG/MINOR: http_htx: Fix searching headers by substring
2200 - MINOR: http_act: Add -m flag for del-header name matching method
2201
Willy Tarreau1db55792020-11-05 17:20:35 +010022022020/11/05 : 2.4-dev0
2203 - MINOR: version: it's development again.
2204 - DOC: mention in INSTALL that it's development again
2205
Willy Tarreau1c0a7222020-11-05 17:04:53 +010022062020/11/05 : 2.3.0
2207 - CLEANUP: pattern: remove unused entry "tree" in pattern.val
2208 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
2209 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
2210 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
2211 - BUG/MINOR: checks: Report a socket error before any connection attempt
2212 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
2213 - MINOR: server: Copy configuration file and line for server templates
2214 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
2215 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
2216 - MINOR: debug: don't count free(NULL) in memstats
2217 - BUG/MINOR: filters: Skip disabled proxies during startup only
2218 - MINOR: mux_h2: capitalize frame type in stats
2219 - MINOR: mux_h2: add stat for total count of connections/streams
2220 - MINOR: stats: do not display empty stat module title on html
2221 - BUG/MEDIUM: stick-table: limit the time spent purging old entries
2222 - BUG/MEDIUM: listener: only enable a listening listener if needed
2223 - BUG/MEDIUM: listener: never suspend inherited sockets
2224 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
2225 - MINOR: fd: add fd_want_recv_safe()
2226 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
2227 - REGTESTS: mark abns_socket as working now
2228 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
2229 - MINOR: sock: add a check against cross worker<->master socket activities
2230 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
2231 - BUG/MEDIUM: server: make it possible to kill last idle connections
2232 - MINOR: mworker/cli: the master CLI use its own applet
2233 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
2234 - BUILD: ssl: use feature macros for detecting ec curves manipulation support
2235 - DOC: Add dns as an available domain to show stat
2236 - BUILD: makefile: usual reorder of objects for faster builds
2237 - DOC: update INSTALL to mention that TCC is supported
2238 - DOC: mention in INSTALL that haproxy 2.3 is a stable version
2239 - MINOR: version: mention that it's stable now
2240
Willy Tarreaubd703e52020-10-31 13:17:06 +010022412020/10/31 : 2.3-dev9
2242 - CLEANUP: http_ana: remove unused assignation of `att_beg`
2243 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
2244 - BUG/MINOR: log: fix memory leak on logsrv parse error
2245 - BUG/MINOR: log: fix risk of null deref on error path
2246 - BUILD: ssl: more elegant OpenSSL early data support check
2247 - CI: github actions: update h2spec to 2.6.0
2248 - BUG/MINOR: cache: Check the return value of http_replace_res_status
2249 - MINOR: cache: Store the "Last-Modified" date in the cache_entry
2250 - MINOR: cache: Process the If-Modified-Since header in conditional requests
2251 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
2252 - MINOR: mux-h2: register a stats module
2253 - MINOR: mux-h2: add counters instance to h2c
2254 - MINOR: mux-h2: add stats for received frame types
2255 - MINOR: mux-h2: report detected error on stats
2256 - MINOR: mux-h2: count open connections/streams on stats
2257 - BUG/MINOR: server: fix srv downtime calcul on starting
2258 - BUG/MINOR: server: fix down_time report for stats
2259 - BUG/MINOR: lua: initialize sample before using it
2260 - MINOR: cache: Add Expires header value parsing
2261 - MINOR: ist: Add a case insensitive istmatch function
2262 - BUG/MINOR: cache: Manage multiple values in cache-control header value
2263 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
2264 - MINOR: pattern: make pat_ref_append() return the newly added element
2265 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
2266 - MINOR: pattern: export pat_ref_push()
2267 - CLEANUP: pattern: use calloc() rather than malloc for structures
2268 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
2269
Willy Tarreaufb1b9e32020-10-24 13:14:31 +020022702020/10/24 : 2.3-dev8
2271 - MINOR: backend: replace the lbprm lock with an rwlock
2272 - MINOR: lb/map: use seek lock and read locks where appropriate
2273 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
2274 - MINOR: lb/first: use a read lock in fas_get_next_server()
2275 - MINOR: lb/chash: use a read lock in chash_get_server_hash()
2276 - BUG/MINOR: disable dynamic OCSP load with BoringSSL
2277 - BUILD: ssl: make BoringSSL use its own version numbers
2278 - CLEANUP: threads: don't register an initcall when not debugging
2279 - MINOR: threads: change lock_t to an unsigned int
2280 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
2281 - CLEANUP: task: remove the unused and mishandled global_rqueue_size
2282 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
2283 - MEDIUM: config: report that "nbproc" is deprecated
2284 - BUG/MINOR: listener: close before free in `listener_accept`
2285 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
2286 - BUG/MINOR: queue: properly report redistributed connections
2287 - CONTRIB: tcploop: remove unused local variables in tcp_pause()
2288 - BUILD: makefile: add entries to build common debugging tools
2289 - BUG/MEDIUM: server: support changing the slowstart value from state-file
2290 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
2291 - MINOR: http: Add etag comparison function
2292 - MEDIUM: cache: Store the ETag information in the cache_entry
2293 - MEDIUM: cache: Add support for 'If-None-Match' request header
2294 - REGTEST: cache: Add if-none-match test case
2295 - CLEANUP: compression: Make use of http_get_etag_type()
2296 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
2297 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
2298 - MINOR: threads/debug: only report used lock stats
2299 - MINOR: threads/debug: only report lock stats for used operations
2300 - MINOR: proxy; replace the spinlock with an rwlock
2301 - MINOR: server: read-lock the cookie during srv_set_dyncookie()
2302 - MINOR: proxy/cli: only take a read lock in "show errors"
2303 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
2304 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
2305 - MINOR: queue: reduce the locked area in pendconn_add()
2306 - OPTIM: queue: make the nbpend counters atomic
2307 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
2308 - MINOR: leastconn: take the queue length into account when queuing servers
2309 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
2310 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
2311 - MINOR: stats: support the "up" output modifier for "show stat"
2312 - MINOR: stats: also support a "no-maint" show stat modifier
2313 - MINOR: stats: indicate the number of servers in a backend's status
2314 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
2315 - REGTEST: ssl: test "set ssl cert" with separate key / crt
2316 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
2317 - MINOR: stats: report server's user-configured weight next to effective weight
2318 - CI: travis-ci: switch to Ubuntu 20.04
2319 - CONTRIB: release-estimator: Add release estimating tool
2320 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
2321 - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
2322
Willy Tarreau9d58c9b2020-10-17 10:31:50 +020023232020/10/17 : 2.3-dev7
2324 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
2325 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
2326 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
2327 - MINOR: fd: report an error message when failing initial allocations
2328 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
2329 - MINOR: sock: add sock_accept_conn() to test a listening socket
2330 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
2331 - MINOR: sockpair: implement the .rx_listening function
2332 - CLEANUP: tcp: make use of sock_accept_conn() where relevant
2333 - CLEANUP: unix: make use of sock_accept_conn() where relevant
2334 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
2335 - CONTRIB: tcploop: implement a disconnect operation 'D'
2336 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
2337 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
2338 - BUG/MINOR: connection: fix loop iter on connection takeover
2339 - BUG/MEDIUM: connection: fix srv idle count on conn takeover
2340 - MINOR: connection: improve list api usage
2341 - MINOR: mux/connection: add a new mux flag for HOL risk
2342 - MINOR: connection: don't check priv flag on free
2343 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
2344 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
2345 - MEDIUM: h2: remove conn from session on detach
2346 - MEDIUM: fcgi: remove conn from session on detach
2347 - DOC: Describe reuse safe for HOL handling
2348 - MEDIUM: proxy: remove obsolete "mode health"
2349 - MEDIUM: proxy: remove obsolete "monitor-net"
2350 - CLEANUP: protocol: remove the ->drain() function
2351 - CLEANUP: fd: finally get rid of fd_done_recv()
2352 - MINOR: connection: make sockaddr_alloc() take the address to be copied
2353 - MEDIUM: listener: allocate the connection before queuing a new connection
2354 - MINOR: session: simplify error path in session_accept_fd()
2355 - MINOR: connection: add new error codes for accept_conn()
2356 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
2357 - MINOR: protocol: add a new function accept_conn()
2358 - MINOR: sock: implement sock_accept_conn() to accept a connection
2359 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
2360 - MEDIUM: listener: use protocol->accept_conn() to accept a connection
2361 - MEDIUM: listener: remove the second pass of fd manipulation at the end
2362 - MINOR: protocol: add a default I/O callback and put it into the receiver
2363 - MINOR: log: set the UDP receiver's I/O handler in the receiver
2364 - MINOR: protocol: register the receiver's I/O handler and not the protocol's
2365 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
2366 - DOC: improve the documentation for "option nolinger"
2367 - BUG/MEDIUM: proxy: properly stop backends
2368 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
2369 - MINOR: threads: augment rwlock debugging stats to report seek lock stats
2370 - MINOR: threads: add the transitions to/from the seek state
2371 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
2372 - BUILD: listener: avoir a build warning when threads are disabled
2373 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
2374 - MINOR: ssl: add volatile flags to ssl samples
2375 - MEDIUM: backend: reuse connection if using a static sni
2376 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
2377 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
2378 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
2379 - DOC: fix typo in MAX_SESS_STKCTR
2380
Willy Tarreaub7ffe192020-10-10 10:45:13 +020023812020/10/10 : 2.3-dev6
2382 - REGTESTS: use "command" instead of "which" for better POSIX compatibility
2383 - BUILD: makefile: Update feature flags for OpenBSD
2384 - DOC: agent-check: fix typo in "fail" word expected reply
2385 - DOC: crt: advise to move away from cert bundle
2386 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
2387 - REGTEST: fix host part in balance-uri-path-only.vtc
2388 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
2389 - REGTEST: the iif converter test requires 2.3
2390 - REGTEST: make agent-check.vtc require 1.8
2391 - REGTEST: make abns_socket.vtc require 1.8
2392 - REGTEST: make map_regm_with_backref require 1.7
2393 - BUILD: makefile: Update feature flags for FreeBSD
2394 - OPTIM: backend/random: never queue on the server, always on the backend
2395 - OPTIM: backend: skip LB when we know the backend is full
2396 - BUILD: makefile: Fix building with closefrom() support enabled
2397 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
2398 - MINOR: tools: support for word expansion of environment in parse_line
2399 - BUILD: tools: fix minor build issue on isspace()
2400 - BUILD: makefile: Enable closefrom() support on Solaris
2401 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
2402 - MINOR: ssl: Add error if a crt-list might be truncated
2403 - MINOR: ssl: remove uneeded check in crtlist_parse_file
2404 - BUG/MINOR: Fix several leaks of 'log_tag' in init().
2405 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
2406 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
2407 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
2408 - DOC: ssl: new "cert bundle" behavior
2409 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
2410 - CLEANUP: ssl: "bundle" is not an OpenSSL wording
2411 - MINOR: counters: fix a typo in comment
2412 - BUG/MINOR: stats: fix validity of the json schema
2413 - REORG: stats: export some functions
2414 - MINOR: stats: add stats size as a parameter for csv/json dump
2415 - MINOR: stats: hide px/sv/li fields in applet struct
2416 - REORG: stats: extract proxy json dump
2417 - REORG: stats: extract proxies dump loop in a function
2418 - MINOR: hlua: Display debug messages on stderr only in debug mode
2419 - MINOR: stats: define the concept of domain for statistics
2420 - MINOR: stats: define additional flag px cap on domain
2421 - MEDIUM: stats: add delimiter for static proxy stats on csv
2422 - MEDIUM: stats: define an API to register stat modules
2423 - MEDIUM: stats: add abstract type to store counters
2424 - MEDIUM: stats: integrate static proxies stats in new stats
2425 - MINOR: stats: support clear counters for dynamic stats
2426 - MINOR: stats: display extra proxy stats on the html page
2427 - MINOR: stats: add config "stats show modules"
2428 - MINOR: dns/stats: integrate dns counters in stats
2429 - MINOR: stats: remove for loop declaration
2430 - DOC: ssl: fix typo about ocsp files
2431 - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
2432 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
2433 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
2434 - CLEANUP: cache: Fix leak of cconf->c.name during config check
2435 - CLEANUP: ssl: Release cached SSL sessions on deinit
2436 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
2437 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
2438 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
2439 - CLEANUP: sock-unix: Remove an unreachable goto clause
2440 - BUG/MINOR: proxy: inc req counter on new syslog messages.
2441 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
2442 - MINOR: stats: inc req counter on listeners.
2443 - MINOR: channel: new getword and getchar functions on channel.
2444 - MEDIUM: log: syslog TCP support on log forward section.
2445 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
2446 - DOC: re-work log forward bind statement documentation.
2447 - DOC: fix a confusing typo on a regsub example
2448 - BUILD: Add a DragonFlyBSD target
2449 - BUG/MINOR: makefile: fix a tiny typo in the target list
2450 - BUILD: makefile: Update feature flags for NetBSD
2451 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
2452 - DOC: Add missing stats fields in the management doc
2453 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
2454 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
2455 - DOC: Fix typos in configuration.txt
2456 - BUG/MINOR: http: Fix content-length of the default 500 error
2457 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
2458 - REGTESTS: mark abns_socket as broken
2459 - MEDIUM: fd: always wake up one thread when enabling a foreing FD
2460 - MEDIUM: listeners: don't bounce listeners management between queues
2461 - MEDIUM: init: stop disabled proxies after initializing fdtab
2462 - MEDIUM: listeners: make unbind_listener() converge if needed
2463 - MEDIUM: deinit: close all receivers/listeners before scanning proxies
2464 - MEDIUM: listeners: remove the now unused ZOMBIE state
2465 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
2466 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
2467 - MINOR: listeners: introduce listener_set_state()
2468 - MINOR: proxy: maintain per-state counters of listeners
2469 - MEDIUM: proxy: remove the unused PR_STFULL state
2470 - MEDIUM: proxy: remove the PR_STERROR state
2471 - MEDIUM: proxy: remove state PR_STPAUSED
2472 - MINOR: startup: don't rely on PR_STNEW to check for listeners
2473 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
2474 - MEDIUM: proxy: replace proxy->state with proxy->disabled
2475 - MEDIUM: proxy: remove start_proxies()
2476 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
2477 - MINOR: listeners: check the current listener state in pause_listener()
2478 - MINOR: listeners: check the current listener earlier state in resume_listener()
2479 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
2480 - MINOR: protocol: introduce protocol_{pause,resume}_all()
2481 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
2482 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
2483 - MEDIUM: proto_tcp: make the pause() more robust in multi-process
2484 - BUG/MEDIUM: listeners: correctly report pause() errors
2485 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
2486 - CLEANUP: protocol: remove the ->disable_all method
2487 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
2488 - MINOR: listeners: export enable_listener()
2489 - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
2490 - CLEANUP: protocol: remove the ->enable_all method
2491 - CLEANUP: listeners: remove the now unused enable_all_listeners()
2492 - MINOR: protocol: rename the ->listeners field to ->receivers
2493 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
2494 - MINOR: protocol: implement an ->rx_resume() method
2495 - MINOR: listener: use the protocol's ->rx_resume() method when available
2496 - MINOR: sock: provide a set of generic enable/disable functions
2497 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
2498 - MINOR: protocol: add a new pair of enable/disable methods for listeners
2499 - MEDIUM: listeners: now use the listener's ->enable/disable
2500 - MINOR: listeners: split delete_listener() in two versions
2501 - MINOR: listeners: count unstoppable jobs on creation, not deletion
2502 - MINOR: listeners: add a new stop_listener() function
2503 - MEDIUM: proxy: make stop_proxy() now use stop_listener()
2504 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
2505 - MEDIUM: proxy: centralize proxy status update and reporting
2506 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
2507 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
2508 - MEDIUM: udp: implement udp_suspend() and udp_resume()
2509 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
2510 - MEDIUM: listeners: always close master vs worker listeners
2511 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
2512 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
2513 - CLEANUP: listeners: remove the do_close argument to unbind_listener()
2514 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
2515 - MEDIUM: receivers: add an rx_unbind() method in the protocols
2516 - MINOR: listeners: split do_unbind_listener() in two
2517 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
2518 - MEDIUM: config: mark "grace" as deprecated
2519 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
2520 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
2521 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
2522 - BUILD: makefile: Enable getaddrinfo() on OS/X
2523
Christopher Faulet05f01882020-09-25 18:40:47 +020025242020/09/25 : 2.3-dev5
2525 - DOC: Fix typo in iif() example
2526 - CLEANUP: Update .gitignore
2527 - BUILD: introduce possibility to define ABORT_NOW() conditionally
2528 - CI: travis-ci: help Coverity to recognize abort()
2529 - BUG/MINOR: Fix type passed of sizeof() for calloc()
2530 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
2531 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
2532 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
2533 - BUG/MINOR: ssl: verifyhost is case sensitive
2534 - BUILD: makefile: change default value of CC from gcc to cc
2535 - CI: travis-ci: split asan step out of running tests
2536 - BUG/MINOR: server: report correct error message for invalid port on "socks4"
2537 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
2538 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
2539 - BUG/MINOR: log-forward: fail on unknown keywords
2540 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
2541 - BUG/MEDIUM: log-forward: always quit on parsing errors
2542 - MEDIUM: ssl: remove bundle support in crt-list and directories
2543 - MEDIUM: ssl/cli: remove support for multi certificates bundle
2544 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
2545 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
2546 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
2547 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
2548 - CLEANUP: ssl: remove test on "multi" variable in ckch functions
2549 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
2550 - CLEANUP: ssl: remove utility functions for bundle
2551 - DOC: explain bundle emulation in configuration.txt
2552 - BUILD: fix build with openssl < 1.0.2 since bundle removal
2553 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
2554 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
2555 - MINOR: listener: create a new struct "settings" in bind_conf
2556 - MINOR: listener: move bind_proc and bind_thread to struct settings
2557 - MINOR: listener: move the interface to the struct settings
2558 - MINOR: listener: move the network namespace to the struct settings
2559 - REORG: listener: create a new struct receiver
2560 - REORG: listener: move the listening address to a struct receiver
2561 - REORG: listener: move the receiving FD to struct receiver
2562 - REORG: listener: move the listener's proto to the receiver
2563 - MINOR: listener: make sock_find_compatible_fd() check the socket type
2564 - REORG: listener: move the receiver part to a new file
2565 - MINOR: receiver: link the receiver to its settings
2566 - MINOR: receiver: link the receiver to its owner
2567 - MINOR: listener: prefer to retrieve the socket's settings via the receiver
2568 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
2569 - MINOR: listener: move the INHERITED flag down to the receiver
2570 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
2571 - MINOR: sock: make sock_find_compatible_fd() only take a receiver
2572 - MINOR: protocol: rename the ->bind field to ->listen
2573 - MINOR: protocol: add a new ->bind() entry to bind the receiver
2574 - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
2575 - MEDIUM: tcp: make use of sock_inet_bind_receiver()
2576 - MEDIUM: udp: make use of sock_inet_bind_receiver()
2577 - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
2578 - MEDIUM: uxst: make use of sock_unix_bind_receiver()
2579 - MEDIUM: sockpair: implement sockpair_bind_receiver()
2580 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
2581 - MEDIUM: protocol: explicitly start the receiver before the listener
2582 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
2583 - MINOR: protocol: add a new proto_fam structure for protocol families
2584 - MINOR: protocol: retrieve the family-specific fields from the family
2585 - CLEANUP: protocol: remove family-specific fields from struct protocol
2586 - MINOR: protocol: add a real family for existing FDs
2587 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
2588 - MINOR: tools: make str2sa_range() take more options than just resolve
2589 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
2590 - MEDIUM: tools: make str2sa_range() validate callers' port specifications
2591 - MEDIUM: config: remove all checks for missing/invalid ports/ranges
2592 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
2593 - MINOR: listener: remove the inherited arg to create_listener()
2594 - MINOR: tools: make str2sa_range() optionally return the fd
2595 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
2596 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
2597 - MINOR: config: do not test an inherited socket again
2598 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
2599 - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
2600 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
2601 - MINOR: tools: remove the central test for "udp" in str2sa_range()
2602 - MINOR: cfgparse: add str2receiver() to parse dgram receivers
2603 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
2604 - MEDIUM: config: make str2listener() not accept datagram sockets anymore
2605 - MINOR: listener: pass the chosen protocol to create_listeners()
2606 - MINOR: tools: make str2sa_range() directly return the protocol
2607 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
2608 - MINOR: protocol: add the control layer type in the protocol struct
2609 - MEDIUM: protocol: store the socket and control type in the protocol array
2610 - MEDIUM: tools: make str2sa_range() use protocol_lookup()
2611 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
2612 - MINOR: tools: drop listener detection hack from str2sa_range()
2613 - BUILD: sock_unix: add missing errno.h
2614 - MINOR: sock_inet: report the errno string in binding errors
2615 - MINOR: sock_unix: report the errno string in binding errors
2616 - BUILD: sock_inet: include errno.h
2617 - MINOR: h2/trace: also display the remaining frame length in traces
2618 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
2619 - BUG/MEDIUM: h2: report frame bits only for handled types
2620 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
2621 - BUG/MINOR: Fix memory leaks cfg_parse_peers
2622 - BUG/MINOR: config: Fix memory leak on config parse listen
2623 - MINOR: backend: make the "whole" option of balance uri take only one bit
2624 - MINOR: backend: add a new "path-only" option to "balance uri"
2625 - REGTESTS: add a few load balancing tests
2626 - BUG/MEDIUM: listeners: do not pause foreign listeners
2627 - BUG/MINOR: listeners: properly close listener FDs
2628 - BUILD: trace: include tools.h
2629
Willy Tarreau253c4dc2020-09-11 17:05:59 +020026302020/09/11 : 2.3-dev4
2631 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
2632 - BUG/MEDIUM: ssl: crt-list negative filters don't work
2633 - DOC: overhauling github issue templates
2634 - MEDIUM: cfgparse: Emit hard error on truncated lines
2635 - DOC: cache: Use '<name>' instead of '<id>' in error message
2636 - MINOR: cache: Reject duplicate cache names
2637 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
2638 - MINOR: stats: prevent favicon.ico requests for stats page
2639 - BUILD: tools: include auxv a bit later
2640 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
2641 - MEDIUM: ssl: Support certificate chaining for certificate generation
2642 - MINOR: ssl: Support SAN extension for certificate generation
2643 - MINOR: tcp: don't try to set/clear v6only on inherited sockets
2644 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
2645 - MINOR: reload: determine the foreing binding status from the socket
2646 - MEDIUM: reload: stop passing listener options along with FDs
2647 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
2648 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
2649 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
2650 - MINOR: fd: add a new "exported" flag and use it for all regular listeners
2651 - MEDIUM: reload: pass all exportable FDs, not just listeners
2652 - DOC: add description of pidfile in master-worker mode
2653 - BUG/MINOR: reload: do not fail when no socket is sent
2654 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
2655 - CLEANUP: tcp: stop exporting smp_fetch_src()
2656 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
2657 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
2658 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
2659 - REORG: sock: start to move some generic socket code to sock.c
2660 - MINOR: sock: introduce sock_inet and sock_unix
2661 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
2662 - MINOR: sock_inet: implement sock_inet_get_dst()
2663 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
2664 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
2665 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
2666 - REORG: listener: move xfer_sock_list to sock.{c,h}.
2667 - MINOR: sock: add interface and namespace length to xfer_sock_list
2668 - MINOR: sock: implement sock_find_compatible_fd()
2669 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
2670 - REORG: sock: move get_old_sockets() from haproxy.c
2671 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
2672 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
2673 - BUILD: sock_unix: fix build issue with isdigit()
2674 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
2675 - MINOR: http-htx: Add an option to eval query-string when the path is replaced
2676 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
2677 - MINOR: http-htx: Handle an optional reason when replacing the response status
2678 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
2679 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
2680 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
2681 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
2682 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
2683 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
2684 - CLEANUP: http: silence a cppcheck warning in get_http_auth()
2685 - REGTEST: increase some short timeouts to make tests more reliable
2686 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
2687 - BUILD: thread: limit the libgcc_s workaround to glibc only
2688 - MINOR: protocol: do not call proto->bind_all() anymore
2689 - MINOR: protocol: do not call proto->unbind_all() anymore
2690 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
2691 - MAJOR: init: start all listeners via protocols and not via proxies anymore
2692 - BUG/MINOR: startup: haproxy -s cause 100% cpu
2693 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
2694 - BUG/MEDIUM: doc: Fix replace-path action description
2695 - MINOR: http-rules: Add set-pathq and replace-pathq actions
2696 - MINOR: http-fetch: Add pathq sample fetch
2697 - REGTEST: Add a test for request path manipulations, with and without the QS
2698 - MINOR: Commit .gitattributes
2699 - CLEANUP: Update .gitignore
2700 - BUG/MEDIUM: dns: Don't store additional records in a linked-list
2701 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
2702 - MINOR: server: Improve log message sent when server address is updated
2703 - DOC: ssl-load-extra-files only applies to certificates on bind lines
2704 - BUG/MINOR: auth: report valid crypto(3) support depending on build options
2705 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
2706 - BUILD: threads: better workaround for late loading of libgcc_s
2707 - BUILD: compiler: reserve the gcc version checks to the gcc compiler
2708 - BUILD: compiler: workaround a glibc madness around __attribute__()
2709 - BUILD: intops: on x86_64, the bswap instruction is called bswapq
2710 - BUILD: trace: always have an argument before variadic args in macros
2711 - BUILD: traces: don't pass an empty argument for missing ones
2712 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
2713 - CLEANUP: Free old_argv on deinit
2714 - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
2715 - CLEANUP: haproxy: Free per_thread_*_list in deinit()
2716 - CLEANUP: haproxy: Free post_check_list in deinit()
2717 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
2718 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
2719 - MINOR: sample: Add iif(<true>,<false>) converter
2720
Willy Tarreauf104b532020-08-14 18:54:05 +020027212020/08/14 : 2.3-dev3
2722 - SCRIPTS: git-show-backports: make -m most only show the left branch
2723 - SCRIPTS: git-show-backports: emit the shell command to backport a commit
2724 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
2725 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
2726 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
2727 - CLEANUP: dns: typo in reported error message
2728 - BUG/MAJOR: dns: disabled servers through SRV records never recover
2729 - BUG/MINOR: spoa-server: fix size_t format printing
2730 - DOC: spoa-server: fix false friends `actually`
2731 - BUG/MINOR: ssl: fix memory leak at OCSP loading
2732 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
2733 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
2734 - MINOR: arg: Add an argument type to keep a reference on opaque data
2735 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
2736 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
2737 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
2738 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
2739 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
2740 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
2741 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
2742 - MEDIUM: lua: Don't filter exported fetches and converters
2743 - MINOR: lua: Add support for userlist as fetches and converters arguments
2744 - MINOR: lua: Add support for regex as fetches and converters arguments
2745 - MINOR: arg: Use chunk_destroy() to release string arguments
2746 - BUG/MINOR: snapshots: leak of snapshots on deinit()
2747 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
2748 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
2749 - CLEANUP: fix all duplicated semicolons
2750 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
2751 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
2752 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
2753 - BUILD: makefile: don't disable -Wstringop-overflow anymore
2754 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
2755 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
2756 - BUG/MEDIUM: ssl: never generates the chain from the verify store
2757 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
2758 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
2759 - CLEANUP: ssl: remove poorly readable nested ternary
2760
Willy Tarreau3f3cc8c2020-07-31 14:48:32 +020027612020/07/31 : 2.3-dev2
2762 - DOC: ssl: req_ssl_sni needs implicit TLS
2763 - BUG/MEDIUM: arg: empty args list must be dropped
2764 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
2765 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
2766 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
2767 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
2768 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
2769 - BUG/MAJOR: dns: Make the do-resolve action thread-safe
2770 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
2771 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
2772 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
2773 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
2774 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
2775 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
2776 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
2777 - BUILD: tools: fix build with static only toolchains
2778 - DOC: Use gender neutral language
2779 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
2780 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
2781 - BUG/MAJOR: dns: don't treat Authority records as an error
2782 - CI : travis-ci : prepare for using stock OpenSSL
2783 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
2784 - MEDIUM: lua: Add support for the Lua 5.4
2785 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
2786 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
2787 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
2788 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
2789 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
2790 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
2791 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
2792 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
2793 - MINOR: connection: Preinstall the mux for non-ssl connect
2794 - MINOR: stream-int: Be sure to have a mux to do sends and receives
2795 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
2796 - SCRIPTS: announce-release: add the link to the wiki in the announce messages
2797 - CI: travis-ci: use better name for Coverity scan job
2798 - CI: travis-ci: use proper linking flags for SLZ build
2799 - BUG/MEDIUM: backend: always attach the transport before installing the mux
2800 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
2801 - MINOR: connection: avoid a useless recvfrom() on outgoing connections
2802 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
2803 - MINOR: mux-h1: do not try to receive on backend before sending a request
2804 - CLEANUP: assorted typo fixes in the code and comments
2805 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
2806
Willy Tarreaue732cbd2020-07-17 15:13:19 +020028072020/07/17 : 2.3-dev1
2808 - MINOR: config: make strict limits enabled by default
2809 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
2810 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
2811 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
2812 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
2813 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
2814 - BUG/MINOR: haproxy: Free srule->file during deinit
2815 - BUG/MINOR: haproxy: Free srule->expr during deinit
2816 - BUG/MINOR: sample: Free str.area in smp_check_const_bool
2817 - BUG/MINOR: sample: Free str.area in smp_check_const_meth
2818 - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
2819 - CLEANUP: haproxy: Free post_deinit_list in deinit()
2820 - CLEANUP: haproxy: Free server_deinit_list in deinit()
2821 - CLEANUP: haproxy: Free post_server_check_list in deinit()
2822 - CLEANUP: Add static void vars_deinit()
2823 - CLEANUP: Add static void hlua_deinit()
2824 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
2825 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
2826 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
2827 - MINOR: tcp: Support TCP keepalive parameters customization
2828 - BUILD: tcp: condition TCP keepalive settings to platforms providing them
2829 - MINOR: lists: rename some MT_LIST operations to clarify them
2830 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
2831 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
2832 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
2833 - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
2834 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
2835 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
2836 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
2837 - MINOR: connection: Set the SNI on server connections before installing the mux
2838 - MINOR: connection: Set new connection as private on reuse never
2839 - MINOR: connection: Add a wrapper to mark a connection as private
2840 - MEDIUM: connection: Add private connections synchronously in session server list
2841 - MINOR: connection: Use a dedicated function to look for a session's connection
2842 - MINOR: connection: Set the conncetion target during its initialisation
2843 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
2844 - MINOR: server: Factorize code to deal with reuse of server idle connections
2845 - MINOR: server: Factorize code to deal with connections removed from an idle list
2846 - CLEANUP: connection: remove unused field idle_time from the connection struct
2847 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
2848 - MINOR: raw_sock: Report the number of bytes emitted using the splicing
2849 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
2850 - MINOR: backend: Add sample fetches to get the server's weight
2851 - BUG/MINOR: mux-fcgi: Handle empty STDERR record
2852 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
2853 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
2854 - BUG/MINOR: backend: fix potential null deref on srv_conn
2855 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
2856 - MEDIUM: udp: adds minimal proto udp support for message listeners.
2857 - MEDIUM: log/sink: re-work and merge of build message API.
2858 - MINOR: log: adds syslog udp message handler and parsing.
2859 - MEDIUM: log: adds log forwarding section.
2860 - MINOR: log: adds counters on received syslog messages.
2861 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
2862 - BUG/MEDIUM: server: resolve state file handle leak on reload
2863 - BUG/MEDIUM: server: fix possibly uninitialized state file on close
2864 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
2865 - BUILD: config: address build warning on raspbian+rpi4
2866 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
2867 - BUILD: config: fix again bugs gcc warnings on calloc
2868
Willy Tarreau33205c22020-07-07 16:35:28 +020028692020/07/07 : 2.3-dev0
Willy Tarreau848dbdf2020-07-07 16:39:18 +02002870 - [RELEASE] Released version 2.3-dev0
2871 - MINOR: version: back to development, update status message
2872
28732020/07/07 : 2.3-dev0
Willy Tarreau33205c22020-07-07 16:35:28 +02002874 - exact copy of 2.2.0
2875
Willy Tarreau3a00c912020-07-07 16:33:14 +020028762020/07/07 : 2.2.0
2877 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
2878 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
2879 - BUILD: tools: make resolve_sym_name() return a const
2880 - CLEANUP: auth: fix useless self-include of auth-t.h
2881 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
2882 - CLEANUP: assorted typo fixes in the code and comments
2883 - WIP/MINOR: ssl: add sample fetches for keylog in frontend
2884 - DOC: fix tune.ssl.keylog sample fetches array
2885 - BUG/MINOR: ssl: check conn in keylog sample fetch
2886 - DOC: configuration: various typo fixes
2887 - MINOR: log: Remove unused case statement during the log-format string parsing
2888 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
2889 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
2890 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
2891 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
2892 - MINOR: mux-h1: Improve traces about the splicing
2893 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
2894 - BUG/MEDIUM: connection: Don't consider new private connections as available
2895 - BUG/MINOR: connection: See new connection as available only on reuse always
2896 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
2897 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
2898 - DOC: update INSTALL with new compiler versions
2899 - DOC: minor update to coding style file
2900 - MINOR: version: mention that it's an LTS release now
2901
Willy Tarreau62f11a52020-07-04 07:10:24 +020029022020/07/04 : 2.2-dev12
2903 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
2904 - MINOR: cli: make "show sess" stop at the last known session
2905 - CLEANUP: buffers: remove unused buffer_wq_lock lock
2906 - BUG/MEDIUM: buffers: always allocate from the local cache first
2907 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
2908 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
2909 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
2910 - BUG/MEDIUM: checks: Increment the server's curr_used_conns
2911 - REORG: buffer: rename buffer.c to dynbuf.c
2912 - REORG: includes: create tinfo.h for the thread_info struct
2913 - CLEANUP: pool: only include the type files from types
2914 - MINOR: pools: move the LRU cache heads to thread_info
2915 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
2916 - MINOR: stats: add 3 new output values for the per-server idle conn state
2917 - MINOR: activity: add per-thread statistics on FD takeover
2918 - BUG/MINOR: server: start cleaning idle connections from various points
2919 - MEDIUM: server: improve estimate of the need for idle connections
2920 - MINOR: stats: add the estimated need of concurrent connections per server
2921 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
2922 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
2923 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
2924 - BUG/MINOR: haproxy: don't wake already stopping threads on exit
2925 - BUG/MINOR: server: always count one idle slot for current thread
2926 - MEDIUM: server: use the two thresholds for the connection release algorithm
2927 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
2928 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
2929 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
2930 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
2931 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
2932 - MINOR: pools: increase MAX_BASE_POOLS to 64
2933 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
2934 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
2935 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
2936 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
2937 - BUG/MINOR: proxy: always initialize the trash in show servers state
2938 - MINOR: cli/proxy: add a new "show servers conn" command
2939 - MINOR: server: skip servers with no idle conns earlier
2940 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
2941 - MEDIUM: server: add a new pool-low-conn server setting
2942 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
2943 - MINOR: backend: don't always takeover from the same threads
2944 - MINOR: sched: make sched->task_list_size atomic
2945 - MEDIUM: sched: create a new TASK_KILLED task flag
2946 - MEDIUM: sched: implement task_kill() to kill a task
2947 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
2948 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
2949 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
2950 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
2951 - CLEANUP: connections: rename the toremove_lock to takeover_lock
2952 - MEDIUM: connections: Don't use a lock when moving connections to remove.
2953 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
2954 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
2955 - MINOR: config: add a new tune.idle-pool.shared global setting.
2956 - MINOR: 51d: silence a warning about null pointer dereference
2957 - MINOR: debug: add a new "debug dev memstats" command
2958 - MINOR: log-format: allow to preserve spacing in log format strings
2959 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
2960 - BUG/MAJOR: sched: make sure task_kill() always queues the task
2961 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
2962 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
2963 - BUILD: haproxy: fix build error when RLIMIT_AS is not set
2964 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
2965 - MINOR: log: add time second fraction field to rfc5424 log timestamp.
2966 - BUG/MINOR: log: missing timezone on iso dates.
2967 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
2968 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
2969 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
2970 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
2971 - BUG/MINOR: http_act: don't check capture id in backend (2)
2972 - BUILD: makefile: disable threads by default on OpenBSD
2973 - BUILD: peers: fix build warning with gcc 4.2.1
2974 - CI: cirrus-ci: exclude slow reg-tests
2975
Willy Tarreau4462af82020-06-26 22:01:04 +020029762020/06/26 : 2.2-dev11
2977 - REGTEST: Add a simple script to tests errorfile directives in proxy sections
2978 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
2979 - BUG/MINOR: spoe: correction of setting bits for analyzer
2980 - BUG/MINOR: cfgparse: Support configurations without newline at EOF
2981 - MINOR: cfgparse: Warn on truncated lines / files
2982 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
2983 - MINOR: debug: add a new DEBUG_FD build option
2984 - BUG/MINOR: tasks: make sure never to exceed max_processed
2985 - MINOR: task: add a new pointer to current tasklet queue
2986 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
2987 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
2988 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
2989 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
2990 - MINOR: ssl: free bind_conf_node in crtlist_free()
2991 - MINOR: ssl: free the crtlist and the ckch during the deinit()
2992 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
2993 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
2994 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
2995 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
2996 - MINOR: tasks: make current_queue an index instead of a pointer
2997 - MINOR: tasks: add a mask of the queues with active tasklets
2998 - MINOR: tasks: pass the queue index to run_task_from_list()
2999 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
3000 - MEDIUM: tasks: add a tune.sched.low-latency option
3001 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
3002 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
3003 - MINOR: tools: make parse_line() always terminate the args list
3004 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
3005 - MINOR: cfgparse: sanitize the output a little bit
3006 - MINOR: cli/ssl: handle trailing slashes in crt-list commands
3007 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
3008 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
3009 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
3010 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
3011 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
3012 - MINOR: spoe: Don't systematically create new applets if processing rate is low
3013 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
3014 - BUILD: fix ssl_sample.c when building against BoringSSL
3015 - CI: travis-ci: switch BoringSSL builds to ninja
3016 - CI: extend spellchecker whitelist
3017 - DOC: assorted typo fixes in the documentation
3018 - CLEANUP: assorted typo fixes in the code and comments
3019 - MINOR: http: Add support for http 413 status
3020 - REGTEST: ssl: tests the ssl_f_* sample fetches
3021 - REGTEST: ssl: add some ssl_c_* sample fetches test
3022 - DOC: ssl: update the documentation of "commit ssl cert"
3023 - BUG/MINOR: cfgparse: correctly deal with empty lines
3024 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
3025
Willy Tarreaudc0936c2020-06-19 21:43:26 +020030262020/06/19 : 2.2-dev10
3027 - BUILD: include: add sys/types before netinet/tcp.h
3028 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
3029 - BUILD: Remove nowarn for warnings that do not trigger
3030 - BUG/MEDIUM: pattern: fix thread safety of pattern matching
3031 - BUILD: Re-enable -Wimplicit-fallthrough
3032 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
3033 - BUILD: thread: add parenthesis around values of locking macros
3034 - BUILD: proto_uxst: shut up yet another gcc's absurd warning
3035 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
3036 - CI: travis-ci: use "-O1" for clang builds
3037 - MINOR: haproxy: Add void deinit_and_exit(int)
3038 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
3039 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
3040 - BUILD: compression: make gcc 10 happy with free_zlib()
3041 - BUILD: atomic: add string.h for memcpy() on ARM64
3042 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
3043 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
3044 - BUILD: haproxy: mark deinit_and_exit() as noreturn
3045 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
3046 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
3047 - MINOR: tools: add a new configurable line parse, parse_line()
3048 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
3049 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
3050 - MINOR: http: do not close connections anymore after internal responses
3051 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
3052 - BUG/MINOR: spoe: add missing key length check before checking key names
3053 - MINOR: version: put the compiler version output into version.c not haproxy.c
3054 - MINOR: compiler: always define __has_feature()
3055 - MINOR: version: report the presence of the compiler's address sanitizer
3056 - BUILD: Fix build by including haproxy/global.h
3057 - BUG/MAJOR: connection: always disable ready events once reported
3058 - CLEANUP: activity: remove unused counter fd_lock
3059 - DOC: fd: make it clear that some fields ordering must absolutely be respected
3060 - MINOR: activity: report the number of times poll() reports I/O
3061 - MINOR: activity: rename confusing poll_* fields in the output
3062 - MINOR: fd: Fix a typo in a coment.
3063 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
3064 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
3065 - MINOR: activity: group the per-loop counters at the top
3066 - MINOR: activity: rename the "stream" field to "stream_calls"
3067 - MEDIUM: fd: refine the fd_takeover() migration lock
3068 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
3069 - MINOR: fd: factorize the fd_takeover() exit path to make it safer
3070 - MINOR: peers: do not use localpeer as an array anymore
3071 - MEDIUM: peers: add the "localpeer" global option
3072 - MEDIUM: fd: add experimental support for edge-triggered polling
3073 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
3074 - MINOR: haproxy: process signals before runnable tasks
3075 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
3076 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
3077 - BUG/MINOR: cli: allow space escaping on the CLI
3078 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
3079 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
3080 - REGTEST: http-rules: test spaces in ACLs
3081 - REGTEST: http-rules: test spaces in ACLs with master CLI
3082 - BUG/MAJOR: init: properly compute the default global.maxpipes value
3083 - MEDIUM: map: make the "clear map" operation yield
3084 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
3085 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
3086 - BUG/MINOR: systemd: Wait for network to be online
3087 - DOC: configuration: Unindent non-code sentences in the protobuf example
3088 - DOC: configuration: http-check send was missing from matrix
3089
Willy Tarreau1385c882020-06-11 10:22:10 +020030902020/06/11 : 2.2-dev9
3091 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
3092 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
3093 - MINOR: checks: Remove dead code from process_chk_conn()
3094 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
3095 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
3096 - MINOR: lua: Use vars_unset_by_name_ifexist()
3097 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
3098 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
3099 - MINOR: lua: Make `set_var()` and `unset_var()` return success
3100 - MEDIUM: lua: Add `ifexist` parameter to `set_var`
3101 - MEDIUM: ring: new section ring to declare custom ring buffers.
3102 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
3103 - REGTESTS: Require the version 2.2 to execute lua/set_var
3104 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
3105 - MINOR: checks: Remove useless tests on the connection and conn-stream
3106 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
3107 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
3108 - BUG/MINOR: connection: Always get the stream when available to send PP2 line
3109 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
3110 - MINOR: pools: compute an estimate of each pool's average needed objects
3111 - MEDIUM: pools: directly free objects when pools are too much crowded
3112 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
3113 - MINOR: http-ana: Make the function http_reply_to_htx() public
3114 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
3115 - MINOR: http-rules: Use an action function to eval http-request auth rules
3116 - CLEANUP: http: Remove unused HTTP message templates
3117 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
3118 - MINOR: checks: I/O callback function only rely on the data layer wake callback
3119 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
3120 - BUG/MEDIUM: logs: fix trailing zeros on log message.
3121 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
3122 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
3123 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
3124 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
3125 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
3126 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
3127 - MINOR: ring: re-work ring attach generic API.
3128 - BUG/MINOR: error on unknown statement in ring section.
3129 - MEDIUM: ring: add server statement to forward messages from a ring
3130 - MEDIUM: ring: add new srv statement to support octet counting forward
3131 - MINOR: ssl: set ssl-min-ver in ambiguous configurations
3132 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
3133 - BUILD: sink: address build warning on 32-bit architectures
3134 - BUG/MINOR: peers: fix internal/network key type mapping.
3135 - CLEANUP: regex: remove outdated support for regex actions
3136 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
3137 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
3138 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
3139 - DOC: add a line about comments in crt-list
3140 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
3141 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
3142 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
3143 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
3144 - BUG/MINOR: init: -x can have a parameter starting with a dash
3145 - BUG/MINOR: init: -S can have a parameter starting with a dash
3146 - BUG/MEDIUM: mworker: fix the reload with an -- option
3147 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
3148 - BUG/MINOR: mworker: fix a memleak when execvp() failed
3149 - MINOR: sample: Add secure_memcmp converter
3150 - REORG: ebtree: move the C files from ebtree/ to src/
3151 - REORG: ebtree: move the include files from ebtree to include/import/
3152 - REORG: ebtree: clean up remains of the ebtree/ directory
3153 - REORG: include: create new file haproxy/api-t.h
3154 - REORG: include: create new file haproxy/api.h
3155 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
3156 - CLEANUP: include: remove common/config.h
3157 - CLEANUP: include: remove unused template.h
3158 - REORG: include: move MIN/MAX from tools.h to compat.h
3159 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
3160 - CLEANUP: include: remove unused common/tools.h
3161 - REORG: include: move the base files from common/ to haproxy/
3162 - REORG: include: move version.h to haproxy/
3163 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
3164 - REORG: include: move openssl-compat.h from common/ to haproxy/
3165 - REORG: include: move ist.h from common/ to import/
3166 - REORG: include: move the BUG_ON() code to haproxy/bug.h
3167 - REORG: include: move debug.h from common/ to haproxy/
3168 - CLEANUP: debug: drop unused function p_malloc()
3169 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
3170 - REORG: include: move istbuf.h to haproxy/
3171 - REORG: include: split mini-clist into haproxy/list and list-t.h
3172 - REORG: threads: extract atomic ops from hathreads.h
3173 - CLEANUP: threads: remove a few needless includes of hathreads.h
3174 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
3175 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
3176 - REORG: include: move time.h from common/ to haproxy/
3177 - REORG: include: move integer manipulation functions from standard.h to intops.h
3178 - CLEANUP: include: remove excessive includes of common/standard.h
3179 - REORG: include: move freq_ctr to haproxy/
3180 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
3181 - REORG: memory: move the pool type definitions to haproxy/pool-t.h
3182 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
3183 - MINOR: memory: don't let __pool_get_first() pick from the cache
3184 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
3185 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
3186 - MEDIUM: memory: make local pools independent on lockless pools
3187 - REORG: include: move common/memory.h to haproxy/pool.h
3188 - REORG: include: move common/chunk.h to haproxy/chunk.h
3189 - REORG: include: move activity to haproxy/
3190 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
3191 - REORG: include: move common/net_helper.h to haproxy/net_helper.h
3192 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
3193 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
3194 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
3195 - REORG: include: move common/ticks.h to haproxy/ticks.h
3196 - REORG: include: split common/http.h into haproxy/http{,-t}.h
3197 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
3198 - REORG: include: move common/h1.h to haproxy/h1.h
3199 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
3200 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
3201 - REORG: include: move common/h2.h to haproxy/h2.h
3202 - REORG: include: move common/fcgi.h to haproxy/
3203 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
3204 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
3205 - REORG: include: move dict.h to hparoxy/dict{,-t}.h
3206 - REORG: include: move shctx to haproxy/shctx{,-t}.h
3207 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
3208 - REORG: include: move fd.h to haproxy/fd{,-t}.h
3209 - REORG: include: move ring to haproxy/ring{,-t}.h
3210 - REORG: include: move sink.h to haproxy/sink{,-t}.h
3211 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
3212 - CLEANUP: include: remove empty raw_sock.h
3213 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
3214 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
3215 - REORG: include: move compression.h to haproxy/compression{,-t}.h
3216 - REORG: include: move h1_htx.h to haproxy/h1_htx.h
3217 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
3218 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
3219 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
3220 - REORG: include: move action.h to haproxy/action{,-t}.h
3221 - REORG: include: move arg.h to haproxy/arg{,-t}.h
3222 - REORG: include: move auth.h to haproxy/auth{,-t}.h
3223 - REORG: include: move dns.h to haproxy/dns{,-t}.h
3224 - REORG: include: move flt_http_comp.h to haproxy/
3225 - REORG: include: move counters.h to haproxy/counters-t.h
3226 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
3227 - REORG: include: move capture.h to haproxy/capture{,-t}.h
3228 - REORG: include: move frontend.h to haproxy/frontend.h
3229 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
3230 - REORG: include: move http_rules.h to haproxy/http_rules.h
3231 - CLEANUP: include: remove unused mux_pt.h
3232 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
3233 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
3234 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
3235 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
3236 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
3237 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
3238 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
3239 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
3240 - REORG: include: move listener.h to haproxy/listener{,-t}.h
3241 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
3242 - REORG: include: move map to haproxy/map{,-t}.h
3243 - REORG: include: move payload.h to haproxy/payload.h
3244 - REORG: include: move sample.h to haproxy/sample{,-t}.h
3245 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
3246 - REORG: include: move vars.h to haproxy/vars{,-t}.h
3247 - REORG: include: split global.h into haproxy/global{,-t}.h
3248 - REORG: include: move task.h to haproxy/task{,-t}.h
3249 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
3250 - REORG: include: move signal.h to haproxy/signal{,-t}.h
3251 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
3252 - REORG: include: move connection.h to haproxy/connection{,-t}.h
3253 - REORG: include: move checks.h to haproxy/check{,-t}.h
3254 - REORG: include: move http_fetch.h to haproxy/http_fetch.h
3255 - REORG: include: move peers.h to haproxy/peers{,-t}.h
3256 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
3257 - REORG: include: move session.h to haproxy/session{,-t}.h
3258 - REORG: include: move trace.h to haproxy/trace{,-t}.h
3259 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
3260 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
3261 - REORG: move applet.h to haproxy/applet{,-t}.h
3262 - REORG: include: move stats.h to haproxy/stats{,-t}.h
3263 - REORG: include: move cli.h to haproxy/cli{,-t}.h
3264 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
3265 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
3266 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
3267 - REORG: include: move channel.h to haproxy/channel{,-t}.h
3268 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
3269 - REORG: include: move filters.h to haproxy/filters{,-t}.h
3270 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
3271 - REORG: include: move log.h to haproxy/log{,-t}.h
3272 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
3273 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
3274 - REORG: include: move backend.h to haproxy/backend{,-t}.h
3275 - REORG: include: move queue.h to haproxy/queue{,-t}.h
3276 - REORG: include: move server.h to haproxy/server{,-t}.h
3277 - REORG: include: move stream.h to haproxy/stream{,-t}.h
3278 - REORG: include: move cfgparse.h to haproxy/cfgparse.h
3279 - CLEANUP: hpack: export debug functions and move inlines to .h
3280 - REORG: check: move the e-mail alerting code to mailers.c
3281 - REORG: check: move tcpchecks away from check.c
3282 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
3283 - REORG: check: extract the external checks from check.{c,h}
3284 - CLEANUP: include: don't include stddef.h directly
3285 - CLEANUP: include: don't include proxy-t.h in global-t.h
3286 - CLEANUP: include: move sample_data out of sample-t.h
3287 - REORG: include: move the error reporting functions to from log.h to errors.h
3288 - BUILD: reorder objects in the Makefile for faster builds
3289 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
3290 - CLEANUP: include: make atomic.h part of the base API
3291 - REORG: include: move MAX_THREADS to defaults.h
3292 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
3293 - CLEANUP: include: tree-wide alphabetical sort of include files
3294 - REORG: include: make list-t.h part of the base API
3295 - REORG: dgram: rename proto_udp to dgram
3296
Willy Tarreau73b943b2020-05-22 16:19:04 +020032972020/05/22 : 2.2-dev8
3298 - MINOR: checks: Improve report of unexpected errors for expect rules
3299 - MEDIUM: checks: Add matching on log-format string for expect rules
3300 - DOC: Fix req.body and co documentation to be accurate
3301 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
3302 - CLEANUP: checks: sort and rename tcpcheck_expect_type types
3303 - MINOR: checks: Use dedicated actions to send log-format strings in send rules
3304 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
3305 - MINOR: checks/sample: Remove unnecessary tests on the sample session
3306 - REGTEST: checks: Adapt SSL error message reported when connection is rejected
3307 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
3308 - MINOR: checks: Support log-format string to set the URI for HTTP send rules
3309 - MINOR: checks: Support log-format string to set the body for HTTP send rules
3310 - DOC: Be more explicit about configurable check ok/error/timeout status
3311 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
3312 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
3313 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
3314 - REGTESTS: make the http-check-send test require version 2.2
3315 - BUG/MINOR: http-ana: fix NTLM response parsing again
3316 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
3317 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
3318 - MINOR: cfgparse: Improve error message for invalid \x sequences
3319 - CI: travis-ci: enable arm64 builds again
3320 - MEDIUM: ssl: increase default-dh-param to 2048
3321 - CI: travis-ci: skip pcre2 on arm64 build
3322 - CI: travis-ci: extend the build time for SSL to 60 minutes
3323 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
3324 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
3325 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
3326 - CLEANUP: remove THREAD_LOCAL from config.h
3327 - CI: travis-ci: upgrade LibreSSL versions
3328 - DOC: assorted typo fixes in the documentation
3329 - CI: extend spellchecker whitelist
3330 - CLEANUP: assorted typo fixes in the code and comments
3331 - MAJOR: contrib: porting spoa_server to support python3
3332 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
3333 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
3334 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
3335 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
3336 - MINOR: sample: Move aes_gcm_dec implementation into sample.c
3337 - MINOR: sample: Add digest and hmac converters
3338 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
3339 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
3340 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
3341 - BUG/MINOR: pollers: remove uneeded free in global init
3342 - CLEANUP: select: enhance readability in init
3343 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
3344 - MINOR: soft-stop: let the first stopper only signal other threads
3345 - BUILD: select: only declare existing local labels to appease clang
3346 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
3347 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
3348 - DOC: retry-on can only be used with mode http
3349 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
3350 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
3351 - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
3352 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
3353 - REORG: ssl: move macros and structure definitions to ssl_sock.h
3354 - CLEANUP: ssl: remove the shsess_* macros
3355 - REORG: move the crt-list structures in their own .h
3356 - REORG: ssl: move the ckch structures to types/ssl_ckch.h
3357 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
3358 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
3359 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
3360 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
3361 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
3362 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
3363 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
3364 - REORG: ssl: move ssl configuration to cfgparse-ssl.c
3365 - MINOR: ssl: remove static keyword in some SSL utility functions
3366 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
3367 - REORG: ssl: move sample fetches to src/ssl_sample.c
3368 - REORG: ssl: move utility functions to src/ssl_utils.c
3369 - DOC: ssl: update MAINTAINERS file
3370 - CI: travis-ci: switch arm64 builds to use openssl from distro
3371 - MINOR: stats: Prepare for more accurate moving averages
3372 - MINOR: stats: Expose native cum_req metric for a server
3373 - MEDIUM: stats: Enable more accurate moving average calculation for stats
3374 - BUILD: ssl: include buffer common headers for ssl_sock_ctx
3375 - BUILD: ssl: include errno.h in ssl_crtlist.c
3376 - CLEANUP: acl: remove unused assignment
3377 - DOC/MINOR: halog: Add long help info for ic flag
3378 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
3379 - DOC: SPOE is no longer experimental
3380 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
3381 - MINOR: config: Don't dump keywords if argument is NULL
3382 - MEDIUM: checks: Make post-41 the default mode for mysql checks
3383 - BUG/MINOR: logs: prevent double line returns in some events.
3384 - MEDIUM: sink: build header in sink_write for log formats
3385 - MEDIUM: logs: buffer targets now rely on new sink_write
3386 - MEDIUM: sink: add global statement to create a new ring (sink buffer)
3387 - MEDIUM: hpack: use a pool for the hpack table
3388 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
3389 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
3390 - MINOR: applet: adopt the wait list entry from the CLI
3391 - MINOR: ring: make the applet code not depend on the CLI
3392 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
3393 - CI: travis-ci: fix libslz download URL
3394 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
3395 - CLEANUP: http_ana: Remove unused TXN flags
3396 - BUG/MINOR: http-rules: Mark http return rules as final
3397 - MINOR: http-htx: Add http_reply type based on what is used for http return rules
3398 - CLEANUP: http-htx: Rename http_error structure into http_error_msg
3399 - MINOR: http-rules: Use http_reply structure for http return rules
3400 - MINOR: http-htx: Use a dedicated function to release http_reply objects
3401 - MINOR: http-htx: Use a dedicated function to parse http reply arguments
3402 - MINOR: http-htx: Use a dedicated function to check http reply validity
3403 - MINOR: http-ana: Use a dedicated function to send a response from an http reply
3404 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
3405 - MINOR: http-htx: Store default error messages in a global http reply array
3406 - MINOR: http-htx: Store messages of an http-errors section in a http reply array
3407 - MINOR: http-htx: Store errorloc/errorfile messages in http replies
3408 - MINOR: proxy: Add references on http replies for proxy error messages
3409 - MINOR: http-htx: Use http reply from the http-errors section
3410 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
3411 - MEDIUM: http-ana: Use http replies for HTTP error messages
3412 - CLEANUP: http-htx: Remove unused storage of error messages in buffers
3413 - MINOR: htx: Add a function to copy a buffer in an HTX message
3414 - CLEANUP: channel: Remove channel_htx_copy_msg() function
3415 - MINOR: http-ana: Add a function to write an http reply in an HTX message
3416 - MINOR: http-htx/proxy: Add http-error directive using http return syntax
3417 - DOC: Fix "errorfile" description in the configuration manual
3418 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
3419 - BUILD: hpack: make sure the hpack table can still be built standalone
3420 - CONTRIB: hpack: make use of the simplified standalone HPACK API
3421 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
3422
Willy Tarreaufc0b8f32020-05-05 21:49:10 +020034232020/05/05 : 2.2-dev7
3424 - MINOR: version: Show uname output in display_version()
3425 - CI: run weekly OpenSSL "no-deprecated" builds
3426 - CLEANUP: log: fix comment of parse_logformat_string()
3427 - DOC: Improve documentation on http-request set-src
3428 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
3429 - MINOR: ssl/cli: restrain certificate path when inserting into a directory
3430 - MINOR: ssl: add ssl-skip-self-issued-ca global option
3431 - BUG/MINOR: ssl: default settings for ssl server options are not used
3432 - MINOR: config: add a global directive to set default SSL curves
3433 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
3434 - DOC: internals: update the SSL architecture schema
3435 - BUG/MINOR: tools: fix the i386 version of the div64_32 function
3436 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
3437 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
3438 - DOC: option logasap does not depend on mode
3439 - MEDIUM: memory: make pool_gc() run under thread isolation
3440 - MINOR: contrib: make the peers wireshark dissector a plugin
3441 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
3442 - BUG/MINOR: check: Update server address and port to execute an external check
3443 - MINOR: mini-clist: Add functions to iterate backward on a list
3444 - MINOR: checks: Add a way to send custom headers and payload during http chekcs
3445 - MINOR: server: respect warning and alert semantic
3446 - BUG/MINOR: checks: Respect the no-check-ssl option
3447 - BUG/MEDIUM: server/checks: Init server check during config validity check
3448 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
3449 - BUG/MINOR: checks: chained expect will not properly wait for enough data
3450 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
3451 - MINOR: checks: Use an enum to describe the tcp-check rule type
3452 - MINOR: checks: Simplify connection flag parsing in tcp-check connect
3453 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
3454 - MINOR: checks: simplify tcp expect config parser
3455 - MINOR: checks: add min-recv tcp-check expect option
3456 - MINOR: checks: add linger option to tcp connect
3457 - MINOR: checks: define a tcp expect type
3458 - MEDIUM: checks: rewrite tcp-check expect block
3459 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
3460 - MINOR: checks: add rbinary expect match type
3461 - MINOR: checks: Simplify functions to get step id and comment
3462 - MEDIUM: checks: capture groups in expect regexes
3463 - MINOR: checks: Don't use a static tcp rule list head
3464 - MEDIUM: checks: Use a non-comment rule iterator to get next rule
3465 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
3466 - MINOR: checks: Set the tcp-check rule index during parsing
3467 - MINOR: checks: define tcp-check send type
3468 - MINOR: checks: define a tcp-check connect type
3469 - MEDIUM: checks: Add implicit tcp-check connect rule
3470 - MAJOR: checks: Refactor and simplify the tcp-check loop
3471 - MEDIUM: checks: Associate a session to each tcp-check healthcheck
3472 - MINOR: checks/vars: Add a check scope for variables
3473 - MEDIUM: checks: Parse custom action rules in tcp-checks
3474 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
3475 - MINOR: checks: Add the sni option for tcp-check connect rules
3476 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
3477 - MINOR: checks: Add the alpn option for tcp-check connect rules
3478 - MINOR: ssl: Export a generic function to parse an alpn string
3479 - MINOR: checks: Add the default option for tcp-check connect rules
3480 - MINOR: checks: Add the addr option for tcp-check connect rule
3481 - MEDIUM: checks: Support expression to set the port
3482 - MEDIUM: checks: Support log-format strings for tcp-check send rules
3483 - MINOR: log: Don't depends on a stream to process samples in log-format string
3484 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
3485 - MEDIUM: checks: Add a shared list of tcp-check rules
3486 - MINOR: sample: add htonl converter
3487 - MINOR: sample: add cut_crlf converter
3488 - MINOR: sample: add ltrim converter
3489 - MINOR: sample: add rtrim converter
3490 - MINOR: checks: Use a name for the healthcheck status enum
3491 - MINOR: checks: Add option to tcp-check expect rules to customize error status
3492 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
3493 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
3494 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
3495 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
3496 - MINOR: checks: Relax the default option for tcp-check connect rules
3497 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
3498 - MINOR: checks: Export the tcpcheck_eval_ret enum
3499 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
3500 - MINOR: checks: Support custom functions to eval a tcp-check expect rules
3501 - MEDIUM: checks: Implement redis check using tcp-check rules
3502 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
3503 - MEDIUM: checks: Implement smtp check using tcp-check rules
3504 - MEDIUM: checks: Implement postgres check using tcp-check rules
3505 - MEDIUM: checks: Implement MySQL check using tcp-check rules
3506 - MEDIUM: checks: Implement LDAP check using tcp-check rules
3507 - MEDIUM: checks: Implement SPOP check using tcp-check rules
3508 - MINOR: server/checks: Move parsing of agent keywords in checks.c
3509 - MINOR: server/checks: Move parsing of server check keywords in checks.c
3510 - MEDIUM: checks: Implement agent check using tcp-check rules
3511 - REGTEST: Adapt regtests about checks to recent changes
3512 - MINOR: Produce tcp-check info message for pure tcp-check rules only
3513 - MINOR: checks: Add an option to set success status of tcp-check expect rules
3514 - MINOR: checks: Improve log message of tcp-checks on success
3515 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
3516 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
3517 - MINOR: proxy/checks: Register a keyword to parse http-check rules
3518 - MINOR: proxy/checks: Move parsing of external-check option in checks.c
3519 - MINOR: proxy/checks: Register a keyword to parse external-check rules
3520 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
3521 - MINOR: checks: Use an indirect string to represent the expect matching string
3522 - MINOR: checks: Introduce flags to configure in tcp-check expect rules
3523 - MINOR: standard: Add my_memspn and my_memcspn
3524 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
3525 - MAJOR: checks: Implement HTTP check using tcp-check rules
3526 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
3527 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
3528 - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
3529 - MINOR: checks/obj_type: Add a new object type for checks
3530 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
3531 - MINOR: checks: Use the check as origin when a session is created
3532 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
3533 - MINOR: connection: Add a function to install a mux for a health-check
3534 - MAJOR: checks: Use the best mux depending on the protocol for health checks
3535 - MEDIUM: checks: Implement default TCP check using tcp-check rules
3536 - MINOR: checks: Remove unused code about pure TCP checks
3537 - CLEANUP: checks: Reorg checks.c file to be more readable
3538 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
3539 - MINOR: ist: Add a function to retrieve the ist pointer
3540 - MINOR: checks: Use ist API as far as possible
3541 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
3542 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
3543 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
3544 - REGTEST: Add scripts to test based tcp-check health-checks
3545 - Revert "MEDIUM: checks: capture groups in expect regexes"
3546 - DOC: Add documentation about comments for tcp-check and http-check directives
3547 - DOC: Fix the tcp-check and http-check directives layout
3548 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
3549 - MINOR: checks: Support mux protocol definition for tcp and http health checks
3550 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
3551 - MINOR: checks: Support list of status codes on http-check expect rules
3552 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
3553 - REGTEST: Add a script to validate agent checks
3554 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
3555 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
3556 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
3557 - BUG/MINOR: checks/server: use_ssl member must be signed
3558 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
3559 - BUG/MEDIUM: checks: Destroy the conn-stream before the session
3560 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
3561 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
3562 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
3563 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
3564 - BUG/MINOR: checks: Remove wrong variable redeclaration
3565 - BUG/MINOR: checks: Properly handle truncated mysql server messages
3566 - CLEANUP: checks: Remove unused code when ldap server message is parsed
3567 - MINOR: checks: Make the use of the check's server more explicit on connect
3568 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
3569 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
3570 - BUG/MINOR: checks: Don't lose warning on proxy capability
3571 - MINOR: log: Add "Tu" timer
3572 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
3573 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
3574 - REGTEST: ssl: test the client certificate authentication
3575 - DOC: give a more accurate description of what check does
3576 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
3577 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
3578 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
3579 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
3580 - CLEANUP: http: add a few comments on certain functions' assumptions about streams
3581 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
3582 - MINOR: http-htx: Export functions to update message authority and host
3583 - MINOR: checks: Don't support multiple host header for http-check send rule
3584 - MINOR: checks: Skip some headers for http-check send rules
3585 - MINOR: checks: Keep the Host header and the request uri synchronized
3586 - CLEANUP: checks: Fix checks includes
3587 - DOC: Fix send rules in the http-check connect example
3588 - DOC: Add more info about request formatting in http-check send description
3589 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
3590 - REGTEST: ssl: remove curl from the "add ssl crt-list" test
3591 - REGTEST: ssl: improve the "set ssl cert" test
3592 - CLEANUP: ssl: silence a build warning when threads are disabled
3593 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
3594 - MINOR: threads: export the POSIX thread ID in panic dumps
3595 - BUG/MINOR: debug: properly use long long instead of long for the thread ID
3596 - BUG/MEDIUM: shctx: really check the lock's value while waiting
3597 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
3598 - MINOR: stream: report the list of active filters on stream crashes
3599 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
3600 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
3601 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
3602 - BUG/MEDIUM: connections: force connections cleanup on server changes
3603 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
3604 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
3605 - CLEANUP: connections: align function declaration
3606 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
3607 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
3608 - DOC: Document the log-format parameter for tcp-check send/send-binary rules
3609 - MINOR: checks: Add support of payload-based sample fetches
3610 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
3611 - MINOR: checks: Add support of server side ssl sample fetches
3612 - MINOR: checks: Add support of HTTP response sample fetches
3613 - MINOR: http-htx: Support different methods to look for header names
3614 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
3615 - BUG/MINOR: checks: Support multiple HTTP expect rules
3616 - REGTEST: checks: Fix sync condition for agent-check
3617 - MEDIUM: checks: Support matching on headers for http-check expect rules
3618 - MINOR: lua: allow changing port with set_addr
3619 - BUG/MINOR: da: Fix HTX message prefetch
3620 - BUG/MINOR: wurfl: Fix HTX message prefetch
3621 - BUG/MINOR: 51d: Fix HTX message prefetch
3622 - MINOR: ist: add istadv() function
3623 - MINOR: ist: add istissame() function
3624 - MINOR: istbuf: add ist2buf() function
3625 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
3626 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
3627 - DOC: update intro.txt for 2.2
3628 - DOC: intro: add a contacts section
3629
Willy Tarreaud0089302020-04-17 14:19:38 +020036302020/04/17 : 2.2-dev6
3631 - BUG/MINOR: ssl: memory leak when find_chain is NULL
3632 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
3633 - MINOR: ssl: rework add cert chain to CTX to be libssl independent
3634 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
3635 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
3636 - BUG/MINOR: peers: Use after free of "peers" section.
3637 - CI: github actions: add weekly h2spec test
3638 - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
3639 - MINOR: build: Fix build in mux_h1
3640 - CLEANUP: remove obsolete comments
3641 - BUG/MEDIUM: dns: improper parsing of aditional records
3642 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
3643 - MINOR: listener: add so_name sample fetch
3644 - MEDIUM: stream: support use-server rules with dynamic names
3645 - MINOR: servers: Add a counter for the number of currently used connections.
3646 - MEDIUM: connections: Revamp the way idle connections are killed
3647 - MINOR: cli: add a general purpose pointer in the CLI struct
3648 - MINOR: ssl: add a list of bind_conf in struct crtlist
3649 - REORG: ssl: move SETCERT enum to ssl_sock.h
3650 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
3651 - REORG: ssl: move some functions above crtlist_load_cert_dir()
3652 - MINOR: ssl: use crtlist_free() upon error in directory loading
3653 - MINOR: ssl: add a list of crtlist_entry in ckch_store
3654 - MINOR: ssl: store a ptr to crtlist in crtlist_entry
3655 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
3656 - MEDIUM: ssl/cli: 'add ssl crt-list' command
3657 - REGTEST: ssl/cli: test the 'add ssl crt-list' command
3658 - BUG/MINOR: ssl: entry->ckch_inst not initialized
3659 - REGTEST: ssl/cli: change test type to devel
3660 - REGTEST: make the PROXY TLV validation depend on version 2.2
3661 - CLEANUP: assorted typo fixes in the code and comments
3662 - BUG/MINOR: stats: Fix color of draining servers on stats page
3663 - DOC: internals: Fix spelling errors in filters.txt
3664 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
3665 - REGTEST: make the unique-id test depend on version 2.0
3666 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
3667 - MINOR: ssl: split the line parsing of the crt-list
3668 - MINOR: ssl/cli: support filters and options in add ssl crt-list
3669 - MINOR: ssl: add a comment above the ssl_bind_conf keywords
3670 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
3671 - REGTEST: ssl: pollute the crt-list file
3672 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
3673 - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
3674 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
3675 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
3676 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
3677 - CLEANUP: assorted typo fixes in the code and comments
3678 - DOC: management: add the new crt-list CLI commands
3679 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
3680 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
3681 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
3682 - CI: use better SSL library definition
3683 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
3684 - CI: travis-ci: upgrade openssl to 1.1.1f
3685 - MINOR: ssl: improve the errors when a crt can't be open
3686 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
3687 - CI: adopt openssl download script to download all versions
3688 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
3689 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
3690 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
3691 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
3692 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
3693 - CLEANUP: ssl: use the refcount for the SSL_CTX'
3694 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
3695 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
3696 - CLEANUP: ssl: remove a commentary in struct ckch_inst
3697 - MINOR: ssl: initialize all list in ckch_inst_new()
3698 - MINOR: ssl: free instances and SNIs with ckch_inst_free()
3699 - MINOR: ssl: replace ckchs_free() by ckch_store_free()
3700 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
3701 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
3702 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
3703 - REORG: ssl: move some free/new functions
3704 - MINOR: ssl: crtlist_entry_{new, free}
3705 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
3706 - MINOR: ssl: don't alloc ssl_conf if no option found
3707 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
3708 - BUG/MINOR: peers: Incomplete peers sections should be validated.
3709 - MINOR: init: report in "haproxy -c" whether there were warnings or not
3710 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
3711 - MINOR: init: report the compiler version in haproxy -vv
3712 - CLEANUP: assorted typo fixes in the code and comments
3713 - MINOR: init: report the haproxy version and executable path once on errors
3714 - DOC: Make how "option redispatch" works more explicit
3715 - BUILD: Makefile: add linux-musl to TARGET
3716 - CLEANUP: assorted typo fixes in the code and comments
3717 - CLEANUP: http: Fixed small typo in parse_http_return
3718 - DOC: hashing: update link to hashing functions
3719
Willy Tarreau3328f182020-03-23 09:43:45 +010037202020/03/23 : 2.2-dev5
3721 - CLEANUP: ssl: is_default is a bit in ckch_inst
3722 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
3723 - DOC: ssl: clarify security implications of TLS tickets
3724 - CLEANUP: remove support for Linux i686 vsyscalls
3725 - CLEANUP: drop support for USE_MY_ACCEPT4
3726 - CLEANUP: remove support for USE_MY_EPOLL
3727 - CLEANUP: remove support for USE_MY_SPLICE
3728 - CLEANUP: remove the now unused common/syscall.h
3729 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
3730 - BUILD: wdt: only test for SI_TKILL when compiled with thread support
3731 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
3732 - CLEANUP: ssl: separate the directory loading in a new function
3733 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
3734 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
3735 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
3736 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
3737 - BUG/MAJOR: list: fix invalid element address calculation
3738 - BUILD: stream-int: fix a few includes dependencies
3739 - MINOR: mt_lists: Appease gcc.
3740 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
3741 - MINOR: servers: Kill priv_conns.
3742 - MINOR: lists: fix indentation.
3743 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
3744 - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
3745 - BUG/MEDIUM: pools: Always update free_list in pool_gc().
3746 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
3747 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
3748 - BUG/MINOR: haproxy/threads: try to make all threads leave together
3749 - Revert "BUILD: travis-ci: enable s390x builds"
3750 - BUILD: travis-ci: enable regular s390x builds
3751 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
3752 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
3753 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
3754 - CLEANUP: connection: Add blank line after declarations in PP handling
3755 - CLEANUP: assorted typo fixes in the code and comments
3756 - CI: add spellcheck github action
3757 - DOC: correct typo in alert message about rspirep
3758 - CI: travis: switch linux builds to clang-9
3759 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
3760 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
3761 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
3762 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
3763 - CLEANUP: connection: Stop directly setting an ist's .ptr
3764 - CI: travis: revert to clang-7 for BoringSSL tests
3765 - BUILD: on ARM, must be linked to libatomic.
3766 - BUILD: makefile: fix regex syntax in ARM platform detection
3767 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
3768 - REORG: ssl: move ssl_sock_load_cert()
3769 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
3770 - MEDIUM: ssl: allow crt-list caching
3771 - MINOR: ssl: directories are loaded like crt-list
3772 - BUG/MINOR: ssl: can't open directories anymore
3773 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
3774 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
3775 - MINOR: mux_pt: Don't try to remove the connection from the idle list.
3776 - MINOR: ssl/cli: show/dump ssl crt-list
3777 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
3778 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
3779 - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
3780 - MINOR: tasks: Provide the tasklet to the callback.
3781 - BUG/MINOR: ssl: memleak of struct crtlist_entry
3782 - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
3783 - BUILD: makefile: fix expression again to detect ARM platform
3784 - CI: travis: re-enable ASAN on clang
3785 - CI: travis: proper group output redirection together with travis_wait
3786 - DOC: assorted typo fixes in the documentation
3787 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
3788 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
3789 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
3790 - MINOR: ssl/cli: 'new ssl cert' command
3791 - MINOR: ssl/cli: show certificate status in 'show ssl cert'
3792 - MEDIUM: sessions: Don't be responsible for connections anymore.
3793 - MEDIUM: servers: Split the connections into idle, safe, and available.
3794 - MINOR: fd: Implement fd_takeover().
3795 - MINOR: connections: Add a new mux method, "takeover".
3796 - MINOR: connections: Make the "list" element a struct mt_list instead of list.
3797 - MINOR: connections: Add a flag to know if we're in the safe or idle list.
3798 - MEDIUM: connections: Attempt to get idle connections from other threads.
3799 - MEDIUM: mux_h1: Implement the takeover() method.
3800 - MEDIUM: mux_h2: Implement the takeover() method.
3801 - MEDIUM: mux_fcgi: Implement the takeover() method.
3802 - MEDIUM: connections: Kill connections even if we are reusing one.
3803 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
3804 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
3805 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
3806 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
3807 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
3808 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
3809 - CI: run travis-ci builds on push only, skip pull requests
3810 - CI: temporarily disable unstable travis arm64 builds
3811 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
3812 - BUG/MINOR: connections: Make sure we free the connection on failure.
3813 - BUG/MINOR: ssl/cli: fix a potential NULL dereference
3814 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
3815 - BUG/MINOR: connections: Set idle_time before adding to idle list.
3816 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
3817 - REGTEST: increase timeouts on the seamless-reload test
3818 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
3819 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
3820
Willy Tarreau5a753bd2020-03-09 14:57:20 +010038212020/03/09 : 2.2-dev4
3822 - MEDIUM: buffer: remove the buffer_wq lock
3823 - MINOR: ssl: move find certificate chain code to its own function
3824 - MINOR: ssl: resolve issuers chain later
3825 - MINOR: ssl: resolve ocsp_issuer later
3826 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
3827 - BUG/MINOR: h2: reject again empty :path pseudo-headers
3828 - MINOR: wdt: always clear sigev_value to make valgrind happy
3829 - MINOR: epoll: always initialize all of epoll_event to please valgrind
3830 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
3831 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
3832 - BUILD: cirrus-ci: suppress OS version check when installing packages
3833 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
3834 - CLEANUP: fd: remove the FD_EV_STATUS aggregate
3835 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
3836 - MINOR: fd: merge the read and write error bits into RW error
3837 - BUG/MINOR: dns: ignore trailing dot
3838 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
3839 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
3840 - MINOR: mux-h1: Remove useless case-insensitive comparisons
3841 - MINOR: rawsock: always mark the FD not ready when we're certain it happens
3842 - MEDIUM: connection: make the subscribe() call able to wakeup if ready
3843 - MEDIUM: connection: don't stop receiving events in the FD handler
3844 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
3845 - BUG/MINOR: arg: don't reject missing optional args
3846 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
3847 - MINOR: debug: report the task handler's pointer relative to main
3848 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
3849 - MINOR: haproxy: export main to ease access from debugger
3850 - MINOR: haproxy: export run_poll_loop
3851 - MINOR: task: export run_tasks_from_list
3852 - BUILD: tools: remove obsolete and conflicting trace() from standard.c
3853 - MINOR: tools: add new function dump_addr_and_bytes()
3854 - MINOR: tools: add resolve_sym_name() to resolve function pointers
3855 - MINOR: debug: use resolve_sym_name() to dump task handlers
3856 - MINOR: cli: make "show fd" rely on resolve_sym_name()
3857 - MEDIUM: debug: add support for dumping backtraces of stuck threads
3858 - MINOR: debug: call backtrace() once upon startup
3859 - MINOR: ssl: add "ca-verify-file" directive
3860 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
3861 - BUILD: Makefile: include librt before libpthread
3862 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
3863 - MINOR: wdt: do not depend on USE_THREAD
3864 - MINOR: debug: report the number of entries in the backtrace
3865 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
3866 - MINOR: debug: use our own backtrace function on clang+x86_64
3867 - MINOR: debug: dump the whole trace if we can't spot the starting point
3868 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
3869 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
3870 - CLEANUP: contrib/spoa_example: Fix several typos
3871 - BUILD: makefile: do not modify the build options during make reg-tests
3872 - BUG/MEDIUM: connection: stop polling for sending when the event is ready
3873 - MEDIUM: stream-int: make sure to try to immediately validate the connection
3874 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
3875 - MEDIUM: connection: only call ->wake() for connect() without I/O
3876 - OPTIM: connection: disable receiving on disabled events when the run queue is too high
3877 - OPTIM: mux-h1: subscribe rather than waking up at a few other places
3878 - REGTEST: Add unique-id reg-test
3879 - MINOR: stream: Add stream_generate_unique_id function
3880 - MINOR: stream: Use stream_generate_unique_id
3881 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
3882 - MINOR: ssl/cli: support crt-list filters
3883 - MINOR: ssl: reach a ckch_store from a sni_ctx
3884 - DOC: fix incorrect indentation of http_auth_*
3885 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
3886 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
3887 - MINOR: ist: Add `IST_NULL` macro
3888 - MINOR: ist: Add `int isttest(const struct ist)`
3889 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
3890 - CLEANUP: Use `isttest()` and `istfree()`
3891 - MINOR: ist: Add `struct ist istdup(const struct ist)`
3892 - MINOR: proxy: Make `header_unique_id` a `struct ist`
3893 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
3894 - OPTIM: startup: fast unique_id allocation for acl.
3895 - DOC: configuration.txt: fix various typos
3896 - DOC: assorted typo fixes in the documentation and Makefile
3897 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
3898 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
3899 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
3900 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
3901 - MINOR: htx: Add a function to return a block at a specific offset
3902 - MINOR: htx: Use htx_find_offset() to truncate an HTX message
3903 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
3904 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
3905 - BUG/MINOR: filters: Forward everything if no data filters are called
3906 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
3907 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
3908 - BUG/MINOR: http-ana: Reset request analysers on a response side error
3909 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
3910 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
3911 - MINOR: lua: Add function to know if a channel is a response one
3912 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
3913 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
3914 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
3915 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
3916 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
3917 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
3918 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
3919 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
3920 - BUG/MINOR: http-rules: Fix a typo in the reject action function
3921 - MINOR: cache/filters: Initialize the cache filter when stream is created
3922 - MINOR: compression/filters: Initialize the comp filter when stream is created
3923 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
3924 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
3925 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
3926 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
3927 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
3928 - BUILD: ssl: include mini-clist.h
3929 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
3930 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
3931 - BUILD: listener: types/listener.h must not include standard.h
3932 - BUG/MEDIUM: random: initialize the random pool a bit better
3933 - BUG/MEDIUM: random: implement per-thread and per-process random sequences
3934 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
3935 - BUILD: cirrus-ci: get rid of unstable freebsd images
3936 - MINOR: tools: add 64-bit rotate operators
3937 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
3938 - MINOR: backend: use a single call to ha_random32() for the random LB algo
3939 - BUG/MINOR: checks/threads: use ha_random() and not rand()
3940 - MINOR: sample: make all bits random on the rand() sample fetch
3941 - MINOR: tools: add a generic function to generate UUIDs
3942 - DOC: fix typo about no-tls-tickets
3943 - DOC: improve description of no-tls-tickets
3944 - DOC: assorted typo fixes in the documentation
3945 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
3946
Willy Tarreau32bf97f2020-02-25 18:14:02 +010039472020/02/25 : 2.2-dev3
3948 - SCRIPTS: announce-release: place the send command in the mail's header
3949 - SCRIPTS: announce-release: allow the user to force to overwrite old files
3950 - SCRIPTS: backport: fix the master branch detection
3951 - BUG/MINOR: http-act: Set stream error flag before returning an error
3952 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
3953 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
3954 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
3955 - DOC: schematic of the SSL certificates architecture
3956 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
3957 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
3958 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
3959 - BUILD: cirrus-ci: workaround "pkg install" bug
3960 - BUILD: cirrus-ci: add ERR=1 to freebsd builds
3961 - BUG/MINOR: connection: correctly retry I/O on signals
3962 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
3963 - BUILD: http_act: cast file sizes when reporting file size error
3964 - BUG/MEDIUM: listener: only consider running threads when resuming listeners
3965 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
3966 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
3967 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
3968 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
3969 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
3970 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
3971 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
3972 - SCRIPTS: make announce-release executable again
3973 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
3974 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
3975 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
3976 - CLEANUP: ssl: remove unused functions in openssl-compat.h
3977 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
3978 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
3979 - MINOR: chunk: implement chunk_strncpy() to copy partial strings
3980 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
3981 - MEDIUM: arg: make make_arg_list() stop after its own arguments
3982 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
3983 - MEDIUM: arg: make make_arg_list() support quotes in arguments
3984 - MINOR: sample: make sample_parse_expr() able to return an end pointer
3985 - MEDIUM: log-format: make the LF parser aware of sample expressions' end
3986 - BUG/MINOR: arg: report an error if an argument is larger than bufsize
3987 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
3988 - BUILD: enable ERR=1 in github cygwin builds
3989 - BUG/MINOR: arg: fix again incorrect argument length check
3990 - MINOR: sample: regsub now supports backreferences
3991 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
3992 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
3993 - MINOR: filters: Forward data only if the last filter forwards something
3994 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
3995 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
3996 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
3997 - BUG/MINOR: sample: exit regsub() in case of trash allocation error
3998 - MINOR: ssl: add "issuers-chain-path" directive.
3999 - REGTESTS: use "command -v" instead of "which"
4000 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
4001 - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
4002 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
4003 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
4004 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
4005 - MINOR: checks: do not call conn_xprt_stop_send() anymore
4006 - CLEANUP: epoll: place the struct epoll_event in the stack
4007 - MEDIUM: connection: remove the intermediary polling state from the connection
4008 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
4009 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
4010 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
4011 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
4012 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
4013 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
4014 - MINOR: ist: add an iststop() function
4015 - BUG/MINOR: http: http-request replace-path duplicates the query string
4016 - CLEANUP: sample: use iststop instead of a for loop
4017 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
4018 - MINOR: compiler: move CPU capabilities definition from config.h and complete them
4019 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
4020 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
4021 - BUILD: fix recent build failure on unaligned archs
4022 - MINOR: ssl: load the key from a dedicated file
4023 - BUG/MINOR: ssl: load .key in a directory only after PEM
4024 - MINOR: compiler: drop special cases of likely/unlikely for older compilers
4025 - CLEANUP: conn: Do not pass a pointer to likely
4026 - CLEANUP: net_helper: Do not negate the result of unlikely
4027 - BUILD: remove obsolete support for -mregparm / USE_REGPARM
4028 - CLEANUP: cfgparse: Fix type of second calloc() parameter
4029 - BUILD: ssl: only pass unsigned chars to isspace()
4030 - BUILD: general: always pass unsigned chars to is* functions
4031 - BUG/MINOR: sample: fix the json converter's endian-sensitivity
4032 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
4033 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
4034 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
4035 - CLEANUP: stick-tables: use read_u32() to display a node's key
4036 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
4037 - MINOR: pattern: fix all remaining strict aliasing issues
4038 - CLEANUP: lua: fix aliasing issues in the address matching code
4039 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
4040 - BUILD: makefile: re-enable strict aliasing
4041 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
4042 - MINOR: compiler: add new alignment macros
4043 - BUILD: ebtree: improve architecture-specific alignment
4044 - MINOR: config: mark global.debug as deprecated
4045 - BUILD: travis-ci: enable s390x builds
4046 - MINOR: ssl/cli: 'show ssl cert' displays the chain
4047 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
4048 - MINOR: ssl/cli: reorder 'show ssl cert' output
4049 - CLEANUP: ssl: move issuer_chain tree and definition
4050 - DOC: proxy-protocol: clarify IPv6 address representation in the spec
4051
Willy Tarreau4c47d912020-02-07 04:12:19 +010040522020/02/07 : 2.2-dev2
4053 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
4054 - MEDIUM: cli: Allow multiple filter entries for "show table"
4055 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
4056 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
4057 - BUILD: stick-table: fix build errors introduced by last stick-table change
4058 - BUG/MINOR: cli: Missing arg offset for filter data values.
4059 - MEDIUM: streams: Always create a conn_stream in connect_server().
4060 - MEDIUM: connections: Get ride of the xprt_done callback.
4061 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
4062 - BUILD: CI: move cygwin builds to Github Actions
4063 - MINOR: cli: Report location of errors or any extra data for "show table"
4064 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
4065 - CLEANUP: backend: remove useless test for inexistent connection
4066 - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
4067 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
4068 - BUG/MINOR: ssl: increment issuer refcount if in chain
4069 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
4070 - BUG/MINOR: ssl: typo in previous patch
4071 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
4072 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
4073 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
4074 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
4075 - MINOR: stream-int: always report received shutdowns
4076 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
4077 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
4078 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
4079 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
4080 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
4081 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
4082 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
4083 - BUG/MINOR: stktable: report the current proxy name in error messages
4084 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
4085 - MINOR: lua: Add hlua_prepend_path function
4086 - MINOR: lua: Add lua-prepend-path configuration option
4087 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
4088 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
4089 - BUG/MINOR: http-ana: Increment the backend counters on the backend
4090 - BUG/MINOR: stream: Be sure to have a listener to increment its counters
4091 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
4092 - REGTESTS: make the set_ssl_cert test require version 2.2
4093 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
4094 - MINOR: ssl: Remove dead code.
4095 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
4096 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
4097 - MEDIUM: streams: Don't close the connection in back_handle_st_con().
4098 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
4099 - BUILD: CI: disable slow regtests on Travis
4100 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
4101 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
4102 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
4103 - BUG/MINOR: dns: allow 63 char in hostname
4104 - MINOR: proxy: clarify number of connections log when stopping
4105 - DOC: word converter ignores delimiters at the start or end of input string
4106 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
4107 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
4108 - MEDIUM: pipe/thread: reduce the locking overhead
4109 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
4110 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
4111 - MINOR: tasks: move the list walking code to its own function
4112 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
4113 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
4114 - OPTIM: task: refine task classes default CPU bandwidth ratios
4115 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
4116 - MINOR: task: permanently flag tasklets waking themselves up
4117 - MINOR: task: make sched->current also reflect tasklets
4118 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
4119 - OPTIM: task: readjust CPU bandwidth distribution since last update
4120 - MINOR: task: don't set TASK_RUNNING on tasklets
4121 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
4122 - MINOR: memory: Only init the pool spinlock once.
4123 - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
4124 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
4125 - MINOR: ssl: ssl-load-extra-files configure loading of files
4126 - SCRIPTS: add a new "backport" script to simplify long series of backports
4127 - BUG/MINOR: ssl: we may only ignore the first 64 errors
4128 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
4129 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
4130 - CLEANUP: hpack: remove a redundant test in the decoder
4131 - CLEANUP: peers: Remove unused static function `free_dcache`
4132 - CLEANUP: peers: Remove unused static function `free_dcache_tx`
4133 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
4134 - CONTRIB: debug: add the possibility to decode the value as certain types only
4135 - CONTRIB: debug: support reporting multiple values at once
4136 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
4137 - MINOR: global: Set default tune.maxrewrite value during global structure init
4138 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
4139 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
4140 - MINOR: htx: Add a function to append an HTX message to another one
4141 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
4142 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
4143 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
4144 - MINOR: dns: Add function to release memory allocated for a do-resolve rule
4145 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
4146 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
4147 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
4148 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
4149 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
4150 - MINOR: http-ana: Add a function for forward internal responses
4151 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
4152 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
4153 - MEDIUM: http-rules: Add the return action to HTTP rules
4154 - MEDIUM: http-rules: Support extra headers for HTTP return actions
4155 - CLEANUP: lua: Remove consistency check for sample fetches and actions
4156 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
4157 - MINOR: lua: Get the action return code on the stack when an action finishes
4158 - MINOR: lua: Create the global 'act' object to register all action return codes
4159 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
4160 - MEDIUM: lua: Add ability for actions to intercept HTTP messages
4161 - REGTESTS: Add reg tests for the HTTP return action
4162 - REGTESTS: Add a reg test for http-after-response rulesets
4163 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
4164 - MINOR: acl: Warn when an ACL is named 'or'
4165 - CONTRIB: debug: also support reading values from stdin
4166 - SCRIPTS: backport: use short revs and resolve the initial commit
4167 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
4168
Willy Tarreau71f95fa2020-01-22 10:34:58 +010041692020/01/22 : 2.2-dev1
4170 - DOC: this is development again
4171 - MINOR: version: this is development again, update the status
4172 - SCRIPTS: update create-release to fix the changelog on new branches
4173 - CLEANUP: ssl: Clean up error handling
4174 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
4175 - BUG/MINOR: h1: Don't test the host header during response parsing
4176 - BUILD/MINOR: trace: fix use of long type in a few printf format strings
4177 - DOC: Clarify behavior of server maxconn in HTTP mode
4178 - MINOR: ssl: deduplicate ca-file
4179 - MINOR: ssl: compute ca-list from deduplicate ca-file
4180 - MINOR: ssl: deduplicate crl-file
4181 - CLEANUP: dns: resolution can never be null
4182 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
4183 - DOC: ssl/cli: set/commit/abort ssl cert
4184 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
4185 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
4186 - BUG/MINOR: stats: Fix HTML output for the frontends heading
4187 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
4188 - DOC: clarify matching strings on binary fetches
4189 - DOC: Fix ordered list in summary
4190 - DOC: move the "group" keyword at the right place
4191 - MEDIUM: init: prevent process and thread creation at runtime
4192 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
4193 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
4194 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
4195 - BUG/MINOR: ssl/cli: don't overwrite the filters variable
4196 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
4197 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
4198 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
4199 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
4200 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
4201 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
4202 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
4203 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
4204 - MEDIUM: init: set NO_NEW_PRIVS by default when supported
4205 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
4206 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
4207 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
4208 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
4209 - BUG/MINOR: listener: also clear the error flag on a paused listener
4210 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
4211 - MINOR: listener: make the wait paths cleaner and more reliable
4212 - MINOR: listener: split dequeue_all_listener() in two
4213 - REORG: listener: move the global listener queue code to listener.c
4214 - DOC: document the listener state transitions
4215 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
4216 - BUG/MAJOR: dns: add minimalist error processing on the Rx path
4217 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
4218 - DOC: listeners: add a few missing transitions
4219 - BUG/MINOR: tasks: only requeue a task if it was already in the queue
4220 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
4221 - DOC: proxies: HAProxy only supports 3 connection modes
4222 - DOC: remove references to the outdated architecture.txt
4223 - BUG/MINOR: log: fix minor resource leaks on logformat error path
4224 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
4225 - BUG/MINOR: listener: do not immediately resume on transient error
4226 - BUG/MINOR: server: make "agent-addr" work on default-server line
4227 - BUG/MINOR: listener: fix off-by-one in state name check
4228 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
4229 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
4230 - MINOR: http-htx: Add some htx sample fetches for debugging purpose
4231 - REGTEST: Add an HTX reg-test to check an edge case
4232 - DOC: clarify the fact that replace-uri works on a full URI
4233 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
4234 - BUG/MINOR: sample: always check converters' arguments
4235 - MINOR: sample: Validate the number of bits for the sha2 converter
4236 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
4237 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
4238 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
4239 - MINOR: debug: support logging to various sinks
4240 - MINOR: http: add a new "replace-path" action
4241 - REGTEST: ssl: test the "set ssl cert" CLI command
4242 - REGTEST: run-regtests: implement #REQUIRE_BINARIES
4243 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
4244 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
4245 - BUG/MEDIUM: ssl: Revamp the way early data are handled.
4246 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
4247 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
4248 - REGTEST: make the "set ssl cert" require version 2.1
4249 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
4250 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
4251 - BUG/MINOR: state-file: do not store duplicates in the global tree
4252 - BUG/MINOR: state-file: do not leak memory on parse errors
4253 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
4254 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
4255 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
4256 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
4257 - BUILD: travis-ci: reenable address sanitizer for clang builds
4258 - BUG/MINOR: checks: refine which errno values are really errors.
4259 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
4260 - CLEANUP: connection: conn->xprt is never NULL
4261 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
4262 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
4263 - REORG: connection: move tcp_connect_probe() to conn_fd_check()
4264 - MINOR: connection: check for connection validation earlier
4265 - MINOR: connection: remove the double test on xprt_done_cb()
4266 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
4267 - MINOR: poller: do not call the IO handler if the FD is not active
4268 - OPTIM: epoll: always poll for recv if neither active nor ready
4269 - OPTIM: polling: do not create update entries for FD removal
4270 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
4271 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
4272 - BUILD: CI: modernize cirrus-ci
4273 - MINOR: config: disable busy polling on old processes
4274 - MINOR: ssl: Remove unused variable "need_out".
4275 - BUG/MINOR: h1: Report the right error position when a header value is invalid
4276 - BUG/MINOR: proxy: Fix input data copy when an error is captured
4277 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
4278 - BUG/MINOR: channel: inject output data at the end of output
4279 - BUG/MEDIUM: session: do not report a failure when rejecting a session
4280 - MEDIUM: dns: implement synchronous send
4281 - MINOR: raw_sock: make sure to disable polling once everything is sent
4282 - MINOR: http: Add 410 to http-request deny
4283 - MINOR: http: Add 404 to http-request deny
4284 - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
4285 - BUILD: cirrus-ci: choose proper openssl package name
4286 - BUG/MAJOR: listener: do not schedule a task-less proxy
4287 - CLEANUP: server: remove unused err section in server_finalize_init
4288 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
4289 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
4290 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
4291 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
4292 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
4293 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
4294 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
4295 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
4296 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
4297 - REGTEST: mcli/mcli_start_progs: start 2 programs
4298 - BUG/MEDIUM: mworker: remain in mworker mode during reload
4299 - DOC: clarify crt-base usage
4300 - CLEANUP: compression: remove unused deinit_comp_ctx section
4301 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
4302 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
4303 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
4304 - BUG/MAJOR: hashes: fix the signedness of the hash inputs
4305 - REGTEST: add sample_fetches/hashes.vtc to validate hashes
4306 - BUG/MEDIUM: cli: _getsocks must send the peers sockets
4307 - CLEANUP: cli: deduplicate the code in _getsocks
4308 - BUG/MINOR: stream: don't mistake match rules for store-request rules
4309 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
4310 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
4311 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
4312 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
4313 - MEDIUM: connection: get rid of CO_FL_CURR_* flags
4314 - BUILD: pattern: include errno.h
4315 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
4316 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
4317 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
4318 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
4319 - REORG: stream/backend: move backend-specific stuff to backend.c
4320 - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
4321 - MEDIUM: connection: merge the send_wait and recv_wait entries
4322 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
4323 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
4324 - MEDIUM: mux-h1: merge recv_wait and send_wait
4325 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
4326 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
4327 - MINOR: connection: make the last arg of subscribe() a struct wait_event*
4328 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
4329 - DOC: Fix copy and paste mistake in http-response replace-value doc
4330 - BUG/MINOR: cache: Fix leak of cache name in error path
4331 - BUG/MINOR: dns: Make dns_query_id_seed unsigned
4332 - BUG/MINOR: 51d: Fix bug when HTX is enabled
4333 - MINOR: http-htx: Move htx sample fetches in the scope "internal"
4334 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
4335 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
4336 - DOC: Add a section to document the internal sample fetches
4337 - MINOR: mux-h1: Inherit send flags from the upper layer
4338 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
4339 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
4340 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
4341 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
4342 - MEDIUM: http-rules: Register an action keyword for all http rules
4343 - MINOR: tcp-rules: Always set from which ruleset a rule comes from
4344 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
4345 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
4346 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
4347 - MINOR: counters: Add a counter to report internal processing errors
4348 - MEDIUM: http-ana: Properly handle internal processing errors
4349 - MINOR: http-rules: Add a rule result to report internal error
4350 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
4351 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
4352 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
4353 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
4354 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
4355 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
4356 - MINOR: counters: Remove failed_secu counter and use denied_resp instead
4357 - MINOR: counters: Review conditions to increment counters from analysers
4358 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
4359 - MINOR: http-rules: Handle all message rewrites the same way
4360 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
4361 - MEDIUM: http-rules: Enable the strict rewriting mode by default
4362 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
4363 - MINOR: actions: Add a function pointer to release args used by actions
4364 - MINOR: actions: Regroup some info about HTTP rules in the same struct
4365 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
4366 - MINOR: actions: Rename the act_flag enum into act_opt
4367 - MINOR: actions: Add flags to configure the action behaviour
4368 - MINOR: actions: Use an integer to set the action type
4369 - MINOR: http-rules: Use a specific action type for some custom HTTP actions
4370 - MINOR: http-rules: Make replace-header and replace-value custom actions
4371 - MINOR: http-rules: Make set-header and add-header custom actions
4372 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
4373 - MINOR: http-rules: Group all processing of early-hint rule in its case clause
4374 - MEDIUM: http-rules: Make early-hint custom actions
4375 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
4376 - MINOR: tcp-rules: Make tcp-request capture a custom action
4377 - MINOR: http-rules: Add release functions for existing HTTP actions
4378 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
4379 - MINOR: tcp-rules: Add release functions for existing TCP actions
4380 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
4381 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
4382 - MINOR: http-htx: Add functions to create HTX redirect message
4383 - MINOR: config: Use dedicated function to parse proxy's errorfiles
4384 - MINOR: config: Use dedicated function to parse proxy's errorloc
4385 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
4386 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
4387 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
4388 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
4389 - MINOR: http-rules: Update txn flags and status when a deny rule is executed
4390 - MINOR: http-rules: Support an optional status on deny rules for http reponses
4391 - MINOR: http-rules: Use same function to parse request and response deny actions
4392 - MINOR: http-ana: Add an error message in the txn and send it when defined
4393 - MEDIUM: http-rules: Support an optional error message in http deny rules
4394 - REGTEST: Add a strict rewriting mode reg test
4395 - REGEST: Add reg tests about error files
4396 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
4397 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
4398 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
4399 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
4400 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
4401 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
4402 - BUILD: CI: introduce ARM64 builds
4403 - BUILD: ssl: more elegant anti-replay feature presence check
4404 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
4405 - MEDIUM: dns: use Additional records from SRV responses
4406 - CLEANUP: Consistently `unsigned int` for bitfields
4407 - CLEANUP: pattern: remove the pat_time definition
4408 - BUG/MINOR: http_act: don't check capture id in backend
4409 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
4410
Willy Tarreau2e077f82019-11-25 20:36:16 +010044112019/11/25 : 2.2-dev0
4412 - exact copy of 2.1.0
4413
Willy Tarreaue54b43a2019-11-25 19:47:40 +010044142019/11/25 : 2.1.0
4415 - BUG/MINOR: init: fix set-dumpable when using uid/gid
4416 - MINOR: init: avoid code duplication while setting identify
4417 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
4418 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
4419 - MINOR: peers: Alway show the table info for disconnected peers.
4420 - MINOR: peers: Add TX/RX heartbeat counters.
4421 - MINOR: peers: Add debugging information to "show peers".
4422 - BUG/MINOR: peers: Wrong null "server_name" data field handling.
4423 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
4424 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
4425 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
4426 - BUILD/MINOR: ssl: fix compiler warning about useless statement
4427 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
4428 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
4429 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
4430 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
4431 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
4432 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
4433 - DOC: Update http-buffer-request description to remove the part about chunks
4434 - BUG/MINOR: stream-int: Fix si_cs_recv() return value
4435 - DOC: internal: document the init calls
4436 - MEDIUM: dns: Add resolve-opts "ignore-weight"
4437 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
4438 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
4439 - MINOR: ssl/cli: display warning during 'commit ssl cert'
4440 - MINOR: version: report the version status in "haproxy -v"
4441 - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
4442 - DOC: Add documentation about the use-service action
4443 - MINOR: ssl: fix possible null dereference in error handling
4444 - BUG/MINOR: ssl: fix curve setup with LibreSSL
4445 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
4446 - CLEANUP: ssl: check if a transaction exists once before setting it
4447 - BUG/MINOR: cli: fix out of bounds in -S parser
4448 - MINOR: ist: add ist_find_ctl()
4449 - BUG/MAJOR: h2: reject header values containing invalid chars
4450 - BUG/MAJOR: h2: make header field name filtering stronger
4451 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
4452 - MINOR: h2: add a function to report H2 error codes as strings
4453 - MINOR: mux-h2/trace: report the connection and/or stream error code
4454 - SCRIPTS: create-release: show the correct origin name in suggested commands
4455 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
4456 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
4457 - BUILD: reorder the objects in the makefile
4458 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
4459 - MINOR: version: indicate that this version is stable
4460
Willy Tarreau84681322019-11-15 18:49:37 +010044612019/11/15 : 2.1-dev5
4462 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
4463 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
4464 - BUG/MINOR: ssl/cli: fix an error when a file is not found
4465 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
4466 - DOC: fix date and http_date keywords syntax
4467 - MINOR: peers: Add "log" directive to "peers" section.
4468 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
4469 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
4470 - MINOR: flt_trace: Rename macros to print trace messages
4471 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
4472 - MEDIUM: stream/trace: Register a new trace source with its events
4473 - MINOR: doc: http-reuse connection pool fix
4474 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
4475 - MINOR: http-ana: Remove the unused function http_reset_txn()
4476 - BUG/MINOR: action: do-resolve now use cached response
4477 - BUG: dns: timeout resolve not applied for valid resolutions
4478 - DOC: management: fix typo on "cache_lookups" stats output
4479 - BUG/MINOR: stream: init variables when the list is empty
4480 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
4481 - BUG/MINOR: queue/threads: make the queue unlinking atomic
4482 - BUG/MEDIUM: Make sure we leave the session list in session_free().
4483 - CLEANUP: session: slightly simplify idle connection cleanup logic
4484 - MINOR: memory: also poison the area on freeing
4485 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
4486 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
4487 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
4488 - BUILD: contrib/da: remove an "unused" warning
4489 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
4490 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
4491 - MINOR: freq_ctr: Make the sliding window sums thread-safe
4492 - MINOR: stream: Remove the lock on the proxy to update time stats
4493 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
4494 - MINOR: stats: Report max times in addition of the averages for sessions
4495 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
4496 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
4497 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
4498 - DOC: Add missing stats fields in the management manual
4499 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
4500 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
4501 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
4502 - MINOR: sink: Set the default max length for a message to BUFSIZE
4503 - MINOR: ring: make the parse function automatically set the handler/release
4504 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
4505 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
4506
Willy Tarreau1753cb52019-11-03 15:43:10 +010045072019/11/03 : 2.1-dev4
4508 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
4509 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
4510 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
4511 - DOC: remove obsolete section about header manipulation
4512 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
4513 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
4514 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
4515 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
4516 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
4517 - BUG/MINOR: spoe: fix off-by-one length in UUID format string
4518 - BUILD/MINOR: ssl: shut up a build warning about format truncation
4519 - BUILD: do not disable -Wformat-truncation anymore
4520 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
4521 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
4522 - MINOR: mux: Add a new method to get informations about a mux.
4523 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
4524 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
4525 - MINOR: doc: fix busy-polling performance reference
4526 - MINOR: config: allow no set-dumpable config option
4527 - MINOR: init: always fail when setrlimit fails
4528 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
4529 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
4530 - REGTEST: vtest can now enable mcli with its own flag
4531 - BUG/MINOR: config: Update cookie domain warn to RFC6265
4532 - MINOR: sample: add us/ms support to date/http_date
4533 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
4534 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
4535 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
4536 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
4537 - BUG/MINOR: stats: properly check the path and not the whole URI
4538 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
4539 - BUG/MINOR: ssl: ckch->chain must be initialized
4540 - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
4541 - MINOR: ssl: BoringSSL ocsp_response does not need issuer
4542 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
4543 - MINOR: backend: Add srv_name sample fetche
4544 - DOC: Add GitHub issue config.yml
4545
Willy Tarreauc70df532019-10-25 15:48:53 +020045462019/10/25 : 2.1-dev3
4547 - MINOR: mux-h2/trace: missing conn pointer in demux full message
4548 - MINOR: mux-h2: add a per-connection list of blocked streams
4549 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
4550 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
4551 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
4552 - BUG/MINOR: peers: crash on reload without local peer.
4553 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
4554 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
4555 - MINOR: htx: Adapt htx_dump() to be used from traces
4556 - MINOR: mux-h1/trace: register a new trace source with its events
4557 - MINOR: proxy: Store http-send-name-header in lower case
4558 - MINOR: http: Remove headers matching the name of http-send-name-header option
4559 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
4560 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
4561 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
4562 - MINOR: fcgi: Add function to get the string representation of a record type
4563 - MINOR: mux-fcgi/trace: Register a new trace source with its events
4564 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
4565 - DOC: clarify some points around http-send-name-header's behavior
4566 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
4567 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
4568 - DOC: fix typo in Prometheus exporter doc
4569 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
4570 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
4571 - MINOR: http: Add a function to get the authority into a URI
4572 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
4573 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
4574 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
4575 - MEDIUM: h2: make the request parser rebuild a complete URI
4576 - MINOR: h2: report in the HTX flags when the request has an authority
4577 - MEDIUM: mux-h2: do not map Host to :authority on output
4578 - MEDIUM: h2: use the normalized URI encoding for absolute form requests
4579 - MINOR: stats: mention in the help message support for "json" and "typed"
4580 - MINOR: stats: get rid of the ST_CONVDONE flag
4581 - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
4582 - MINOR: stats: always merge the uri_auth flags into the appctx flags
4583 - MINOR: stats: set the appctx flags when initializing the applet only
4584 - MINOR: stats: get rid of the STAT_SHOWADMIN flag
4585 - MINOR: stats: make stats_dump_fields_json() directly take flags
4586 - MINOR: stats: uniformize the calling convention of the dump functions
4587 - MINOR: stats: support the "desc" output format modifier for info and stat
4588 - MINOR: stats: prepare to add a description with each stat/info field
4589 - MINOR: stats: make "show stat" and "show info"
4590 - MINOR: stats: fill all the descriptions for "show info" and "show stat"
4591 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
4592 - BUILD: stats: fix missing '=' sign in array declaration
4593 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
4594 - MINOR: list: add new macro MT_LIST_BEHEAD
4595 - MEDIUM: task: Split the tasklet list into two lists.
4596 - MINOR: h2: Document traps to be avoided on multithread.
4597 - MINOR: lists: Try to use local variables instead of macro arguments.
4598 - MINOR: lists: Fix alignement of \ when relevant.
4599 - MINOR: mux-h2: also support emitting CONTINUATION on trailers
4600 - MINOR: ssl: crt-list do ckchn_lookup
4601 - REORG: ssl: rename ckch_node to ckch_store
4602 - REORG: ssl: move structures to ssl_sock.h
4603 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
4604 - MINOR: ssl: initialize explicitly the sni_ctx trees
4605 - BUG/MINOR: ssl: abort on sni allocation failure
4606 - BUG/MINOR: ssl: free the sni_keytype nodes
4607 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
4608 - MEDIUM: ssl: introduce the ckch instance structure
4609 - MEDIUM: ssl: split ssl_sock_add_cert_sni()
4610 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
4611 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
4612 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
4613 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
4614 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
4615 - MINOR: ssl: load the sctl in/from the ckch
4616 - MINOR: ssl: load the ocsp in/from the ckch
4617 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
4618 - BUG/MINOR: ssl: fix build without SSL
4619 - BUG/MINOR: ssl: fix build without multi-cert bundles
4620 - BUILD: ssl: wrong #ifdef for SSL engines code
4621 - BUG/MINOR: ssl: fix OCSP build with BoringSSL
4622 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
4623 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
4624 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
4625 - MINOR: mux-h1: Xfer as much payload data as possible during output processing
4626 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
4627 - BUG/MINOR: mux-h1: Capture ignored parsing errors
4628 - MINOR: h1: Reject requests with different occurrences of the header host
4629 - MINOR: h1: Reject requests if the authority does not match the header host
4630 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
4631 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
4632 - BUG/MINOR: WURFL: fix send_log() function arguments
4633 - BUG/MINOR: ssl: fix error messages for OCSP loading
4634 - BUG/MINOR: ssl: can't load ocsp files
4635 - MINOR: version: make the version strings variables, not constants
4636 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
4637 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
4638 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
4639 - BUILD: travis-ci: limit build to branches "master" and "next"
4640 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
4641 - BUILD/SMALL: threads: enable threads on osx
4642 - BUILD/MEDIUM: threads: enable cpu_affinity on osx
4643 - MINOR: istbuf: add b_fromist() to make a buffer from an ist
4644 - BUG/MINOR: cache: also cache absolute URIs
4645 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
4646 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
4647 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
4648 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
4649 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
4650 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
4651 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
4652 - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
4653 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
4654 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
4655 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
4656 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
4657 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
4658 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
4659 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
4660 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
4661 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
4662 - CLEANUP: bind: handle warning label on bind keywords parsing.
4663 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
4664 - BUG/MINOR: mworker/cli: reload fail with inherited FD
4665 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
4666 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
4667 - BUG/MINOR: cache: alloc shctx after check config
4668 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
4669 - BUG/MINOR: server: check return value of fopen() in apply_server_state()
4670 - REGTESTS: make seamless-reload depend on 1.9 and above
4671 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
4672 - BUG/MINOR: dns: allow srv record weight set to 0
4673 - BUG/MINOR: ssl: fix memcpy overlap without consequences.
4674 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
4675 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
4676 - BUG/MINOR: mux-h2: do not emit logs on backend connections
4677 - CLEANUP: ssl: remove old TODO commentary
4678 - CLEANUP: ssl: fix SNI/CKCH lock labels
4679 - MINOR: ssl: OCSP functions can load from file or buffer
4680 - MINOR: ssl: load sctl from buf OR from a file
4681 - MINOR: ssl: load issuer from file or from buffer
4682 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
4683 - BUG/MINOR: ssl/cli: fix looking up for a bundle
4684 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
4685 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
4686 - MINOR: ssl: copy a ckch from src to dst
4687 - MINOR: ssl: new functions duplicate and free a ckch_store
4688 - MINOR: ssl/cli: assignate a new ckch_store
4689 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
4690 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
4691 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
4692 - BUG/MINOR: ssl: fix build with openssl < 1.1.0
4693 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
4694 - MINOR: tcp: avoid confusion in time parsing init
4695 - MINOR: debug: add a new "debug dev stream" command
4696 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
4697 - REORG: move CLI access level definitions to cli.h
4698 - MINOR: cli: add an expert mode to hide dangerous commands
4699 - MINOR: debug: make most debug CLI commands accessible in expert mode
4700 - MINOR: stats/debug: maintain a counter of debug commands issued
4701 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
4702
Willy Tarreaucb8f03f2019-10-01 18:13:09 +020047032019/10/01 : 2.1-dev2
4704 - DOC: management: document reuse and connect counters in the CSV format
4705 - DOC: management: document cache_hits and cache_lookups in the CSV format
4706 - BUG/MINOR: dns: remove irrelevant dependency on a client connection
4707 - MINOR: applet: make appctx use their own pool
4708 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
4709 - BUG/MEDIUM: http/htx: unbreak option http_proxy
4710 - BUG/MINOR: backend: do not try to install a mux when the connection failed
4711 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
4712 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
4713 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
4714 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
4715 - BUG/MINOR: hlua: Make the function txn:done() HTX aware
4716 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
4717 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
4718 - MINOR: proto_htx: Add the function htx_return_srv_error()
4719 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
4720 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
4721 - DOC: htx: Update comments in HTX files
4722 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
4723 - MINOR: htx: Deduce the number of used blocks from tail and head values
4724 - MINOR: htx: Use an array of char to store HTX blocks
4725 - MINOR: htx: Slightly update htx_dump() to report better messages
4726 - DOC: htx: Add internal documentation about the HTX
4727 - MAJOR: http: Deprecate and ignore the option "http-use-htx"
4728 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
4729 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
4730 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
4731 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
4732 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
4733 - MINOR: config: Remove tests on the option 'http-use-htx'
4734 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
4735 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
4736 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
4737 - MINOR: cache: Remove tests on the option 'http-use-htx'
4738 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
4739 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
4740 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
4741 - MEDIUM: backend: Remove code relying on the HTTP legacy mode
4742 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
4743 - MINOR: http_act: Remove code relying on the legacy HTTP mode
4744 - MEDIUM: cache: Remove code relying on the legacy HTTP mode
4745 - MEDIUM: compression: Remove code relying on the legacy HTTP mode
4746 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
4747 - MINOR: stats: Remove code relying on the legacy HTTP mode
4748 - MAJOR: filters: Remove code relying on the legacy HTTP mode
4749 - MINOR: stream: Remove code relying on the legacy HTTP mode
4750 - MAJOR: http: Remove the HTTP legacy code
4751 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
4752 - MINOR: proto_http: Remove unused http txn flags
4753 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
4754 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
4755 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
4756 - CLEANUP: proto_http: Remove unecessary includes and comments
4757 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
4758 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
4759 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
4760 - MINOR: proxy: Remove support of the option 'http-tunnel'
4761 - DOC: config: Update as a result of the legacy HTTP removal
4762 - MEDIUM: config: Remove parsing of req* and rsp* directives
4763 - MINOR: proxy: Remove the unused list of block rules
4764 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
4765 - DOC: config: Remove unsupported req* and rsp* keywords
4766 - MINOR: global: Preset tune.max_http_hdr to its default value
4767 - MINOR: http: Don't store raw HTTP errors in chunks anymore
4768 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
4769 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
4770 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
4771 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
4772 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
4773 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
4774 - MINOR: connection: add conn_get_src() and conn_get_dst()
4775 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
4776 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
4777 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
4778 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
4779 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
4780 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
4781 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
4782 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
4783 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
4784 - MINOR: http: check the source address via conn_get_src() in sample fetch functions
4785 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
4786 - MINOR: connection: add new src and dst fields
4787 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
4788 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
4789 - MINOR: lua: switch to conn->dst for a connection's target address
4790 - MINOR: peers: use conn->dst for the peer's target address
4791 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
4792 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
4793 - MINOR: proxy: switch to conn->src in error snapshots
4794 - MINOR: session: use conn->src instead of conn->addr.from
4795 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
4796 - MINOR: unix: use conn->dst for the target address in ->connect()
4797 - MINOR: sockpair: use conn->dst for the target address in ->connect()
4798 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
4799 - MINOR: checks: replace conn->addr.to with conn->dst
4800 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
4801 - MINOR: http: convert conn->addr.from to conn->src in sample fetches
4802 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
4803 - MINOR: connection: create a new pool for struct sockaddr_storage
4804 - MEDIUM: connection: make sure all address producers allocate their address
4805 - MAJOR: connection: remove the addr field
4806 - MINOR: connection: don't use clear_addr() anymore, just release the address
4807 - MINOR: stream: add a new target_addr entry in the stream structure
4808 - MAJOR: stream: store the target address into s->target_addr
4809 - MINOR: peers: now remove the remote connection setup code
4810 - MEDIUM: lua: do not allocate the remote connection anymore
4811 - MEDIUM: backend: always release any existing prior connection in connect_server()
4812 - MEDIUM: backend: remove impossible cases from connect_server()
4813 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
4814 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
4815 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
4816 - BUG/MINOR: http_htx: Support empty errorfiles
4817 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
4818 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
4819 - BUG/MINOR: proxy: always lock stop_proxy()
4820 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
4821 - BUILD: threads: add the definition of PROTO_LOCK
4822 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
4823 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
4824 - BUG/MINOR: log: make sure writev() is not interrupted on a file output
4825 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
4826 - MEDIUM: h1: Don't try to subscribe if we managed to read data.
4827 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
4828 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
4829 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
4830 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
4831 - MINOR: hlua: Don't set request analyzers on response channel for lua actions
4832 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
4833 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
4834 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
4835 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
4836 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
4837 - MEDIUM: ssl: split the loading of the certificates
4838 - MEDIUM: ssl: lookup and store in a ckch_node tree
4839 - MEDIUM: ssl: load DH param in struct cert_key_and_chain
4840 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
4841 - MINOR: ssl: use STACK_OF for chain certs
4842 - MINOR: ssl: add extra chain compatibility
4843 - MINOR: ssl: check private key consistency in loading
4844 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
4845 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
4846 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
4847 - MAJOR: fd: Get rid of the fd cache.
4848 - MEDIUM: pollers: Remember the state for read and write for each threads.
4849 - MEDIUM: mux-h2: don't try to read more than needed
4850 - BUG/BUILD: ssl: fix build with openssl < 1.0.2
4851 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
4852 - BUG/MINOR: debug: fix a small race in the thread dumping code
4853 - MINOR: wdt: also consider that waiting in the thread dumper is normal
4854 - REGTESTS: checks: make 4be_1srv_health_checks more reliable
4855 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
4856 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
4857 - BUG/MINOR: ssl: fix ressource leaks on error
4858 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
4859 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
4860 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
4861 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
4862 - BUG/MINOR: stream-int: also update analysers timeouts on activity
4863 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
4864 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
4865 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
4866 - DOC: Add 'Question.md' issue template, discouraging asking questions
4867 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
4868 - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
4869 - BUILD: travis-ci: enable daily Coverity scan
4870 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
4871 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
4872 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
4873 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
4874 - BUG/MINOR: mux-h2: always send stream window update before connection's
4875 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
4876 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
4877 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
4878 - CLEANUP: mux-h2: move the demuxed frame check code in its own function
4879 - MINOR: cache: add method to cache hash
4880 - MINOR: cache: allow caching of OPTIONS request
4881 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
4882 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
4883 - BUG/MINOR: pools: don't mark the thread harmless if already isolated
4884 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
4885 - CLEANUP: buffer: replace b_drop() with b_free()
4886 - CLEANUP: task: move the cpu_time field to the task-only part
4887 - MINOR: cli: add two new states to print messages on the CLI
4888 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
4889 - CLEANUP: cli: replace all occurrences of manual handling of return messages
4890 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
4891 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
4892 - BUG/MINOR: lua: fix setting netfilter mark
4893 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
4894 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
4895 - BUG/MINOR: stats: Wait the body before processing POST requests
4896 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
4897 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
4898 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
4899 - MINOR: debug: indicate the applet name when the task is task_run_applet()
4900 - MINOR: tools: add append_prefixed_str()
4901 - MINOR: lua: export applet and task handlers
4902 - MEDIUM: debug: make the thread dump code show Lua backtraces
4903 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
4904 - MINOR: list: add LIST_SPLICE() to merge one list into another
4905 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
4906 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
4907 - MINOR: sink: create definitions a minimal code for event sinks
4908 - MINOR: sink: add a support for file descriptors
4909 - MINOR: trace: start to create a new trace subsystem
4910 - MINOR: trace: add allocation of buffer-sized trace buffers
4911 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
4912 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
4913 - MINOR: trace/cli: add "show trace" to report trace state and statistics
4914 - MINOR: trace: implement a very basic trace() function
4915 - MINOR: trace: add the file name and line number in the prefix
4916 - MINOR: trace: make trace() now also take a level in argument
4917 - MINOR: trace: implement a call to a decode function
4918 - MINOR: trace: add per-level macros to produce traces
4919 - MINOR: trace: add a definition of typed arguments to trace()
4920 - MINOR: trace: make sure to always stop the locking when stopping or pausing
4921 - MINOR: trace: add the possibility to lock on some arguments
4922 - MINOR: trace: parse the "lock" argument to trace
4923 - MINOR: trace: retrieve useful pointers and enforce lock-on
4924 - DOC: management: document the "trace" and "show trace" commands
4925 - BUILD: trace: make the lockon_ptr const to silence a warning without threads
4926 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
4927 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
4928 - DOC: fixed typo in management.txt
4929 - BUG/MINOR: mworker: disable SIGPROF on re-exec
4930 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
4931 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
4932 - MINOR: backend: Add srv_queue converter
4933 - MINOR: sink: set the fd-type sinks to non-blocking
4934 - MINOR: tools: add a function varint_bytes() to report the size of a varint
4935 - MINOR: buffer: add functions to read/write varints from/to buffers
4936 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
4937 - MINOR: sink: now call the generic fd write function
4938 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
4939 - MINOR: ring: add a ring_write() function
4940 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
4941 - MINOR: sink: add support for ring buffers
4942 - MINOR: sink: implement "show events" to show supported sinks and dump the rings
4943 - MINOR: sink: now report the number of dropped events on output
4944 - MINOR: trace: support a default callback for the source
4945 - MINOR: trace: extend the source location to 13 chars
4946 - MINOR: trace: show thread number and source name in the trace
4947 - MINOR: trace: change the TRACE() calling convention to put the args and cb last
4948 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
4949 - MINOR: tools: add a generic struct "name_desc" for name-description pairs
4950 - MINOR: trace: replace struct trace_lockon_args with struct name_desc
4951 - MINOR: trace: change the "payload" level to "data" and move it
4952 - MINOR: trace: prepend the function name for developer level traces
4953 - MINOR: trace: also report the trace level in the output
4954 - MINOR: trace: change the detail_level to per-source verbosity
4955 - MINOR: mux-h2/trace: register a new trace source with its events
4956 - MINOR: mux-h2/trace: add the default decoding callback
4957 - MEDIUM: mux-h2/trace: add lots of traces all over the code
4958 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
4959 - MINOR: mux-h2/trace: add a new verbosity level "clean"
4960 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
4961 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
4962 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
4963 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
4964 - CLEANUP: mux-h2/trace: lower-case event names
4965 - MINOR: trace: extend default event names to 12 chars
4966 - BUG/MINOR: ring: fix the way watchers are counted
4967 - MINOR: cli: extend the CLI context with a list and two offsets
4968 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
4969 - MEDIUM: ring: implement a wait mode for watchers
4970 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
4971 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
4972 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
4973 - CLEANUP: fd: remove leftovers of the fdcache
4974 - MINOR: fd: add a new "initialized" bit in the fdtab struct
4975 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
4976 - MEDIUM: log: use the new generic fd_write_frag_line() function
4977 - MINOR: log: add a target type instead of hacking the address family
4978 - MEDIUM: log: add support for logging to a ring buffer
4979 - MINOR: send-proxy-v2: sends authority TLV according to TLV received
4980 - MINOR: build: add linux-glibc-legacy build TARGET
4981 - BUG/MEDIUM: peers: local peer socket not bound.
4982 - BUILD: connection: silence gcc warning with extra parentheses
4983 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
4984 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
4985 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
4986 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
4987 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
4988 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
4989 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
4990 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
4991 - MEDIUM: fd: remove the FD_EV_POLLED status bit
4992 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
4993 - MINOR: fd: make updt_fd_polling() a normal function
4994 - CONTRIB: debug: add new program "poll" to test poll() events
4995 - BUG/MINOR: checks: stop polling for write when we have nothing left to send
4996 - BUG/MINOR: checks: start sending the request right after connect()
4997 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
4998 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
4999 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
5000 - BUILD: CI: add basic CentOS 6 cirrus build
5001 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
5002 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
5003 - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
5004 - MEDIUM: fd: mark the FD as ready when it's inserted
5005 - MINOR: fd: add two new calls fd_cond_{recv,send}()
5006 - MEDIUM: connection: enable reading only once the connection is confirmed
5007 - MINOR: fd: add two flags ERR and SHUT to describe FD states
5008 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
5009 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
5010 - MINOR: stats: report the number of idle connections for each server
5011 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
5012 - BUILD/MINOR: auth: enabling for osx
5013 - BUG/MINOR: listener: Fix a possible null pointer dereference
5014 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
5015 - MINOR: stats: Add JSON export from the stats page
5016 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
5017 - MINOR: sample: Add UUID-fetch
5018 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
5019 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
5020 - BUG/MINOR: backend: Fix a possible null pointer dereference
5021 - BUG/MINOR: Missing stat_field_names (since f21d17bb)
5022 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
5023 - BUILD: CI: temporarily disable ASAN
5024 - MINOR: htx: Add a flag on HTX message to report processing errors
5025 - MINOR: mux-h1: Report a processing error during output processing
5026 - MINOR: http-ana: Handle HTX errors first during message analysis
5027 - MINOR: http-ana: Remove err_state field from http_msg
5028 - MINOR: config: Support per-proxy and per-server deinit functions callbacks
5029 - MINOR: config: Support per-proxy and per-server post-check functions callbacks
5030 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
5031 - MINOR: istbuf: Add the function b_isteqi()
5032 - MINOR: log: Provide a function to emit a log for an application
5033 - MINOR: http: Add function to parse value of the header Status
5034 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
5035 - MINOR: h1-htx: Use the same function to copy message payload in all cases
5036 - MINOR: muxes/htx: Ignore pseudo header during message formatting
5037 - MINOR: fcgi: Add code related to FCGI protocol
5038 - MEDIUM: fcgi-app: Add FCGI application and filter
5039 - MEDIUM: mux-fcgi: Add the FCGI multiplexer
5040 - MINOR: doc: Add documentation about the FastCGI support
5041 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
5042 - BUILD: CI: install golang-1.13 when building BoringSSL
5043 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
5044 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
5045 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
5046 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
5047 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
5048 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
5049 - MEDIUM: list: Separate "locked" list from regular list.
5050 - MINOR: mt_lists: Add new macroes.
5051 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
5052 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
5053 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
5054 - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
5055 - TESTS: Add a stress-test for mt_lists.
5056 - BUILD: travis-ci: add PCRE2, SLZ build
5057 - BUG/MINOR: build: fix event ports (Solaris)
5058 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
5059 - OPTIM: listeners: use tasklets for the multi-queue rings
5060 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
5061 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
5062 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
5063 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
5064 - CLEANUP: task: remove impossible test
5065 - CLEANUP: task: cache the task_per_thread pointer
5066 - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
5067 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
5068 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
5069 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
5070 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
5071 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
5072 - MINOR: h2/trace: report the frame type when known
5073 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
5074 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
5075 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
5076 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
5077 - MINOR: sink: change ring buffer "buf0"'s format to "timed"
5078 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
5079 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
5080 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
5081 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
5082 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
5083 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
5084 - BUG/MEDIUM: spoe: Use a different engine-id per process
5085 - MINOR: spoe: Improve generation of the engine-id
5086 - MINOR: spoe: Support the async mode with several threads
5087 - MINOR: http: Add server name header from HTTP multiplexers
5088 - CLEANUP: http-ana: Remove the unused function http_send_name_header()
5089 - MINOR: stats: Add the support of float fields in stats
5090 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
5091 - DOC: Fix documentation about the cli command to get resolver stats
5092 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
5093 - BUG/MINOR: stats: Add a missing break in a switch statement
5094 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
5095 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
5096 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
5097 - CLEANUP: proxy: Remove `proxy_tbl_by_name`
5098 - BUILD: ssl: fix a warning when built with openssl < 1.0.2
5099 - DOC: replace utf-8 quotes by ascii ones
5100 - BUG/MEDIUM: fd: HUP is an error only when write is active
5101 - BUG/MINOR: action: do-resolve does not yield on requests with body
5102 - Revert "MINOR: cache: allow caching of OPTIONS request"
5103
Willy Tarreaudb514072019-07-16 19:15:28 +020051042019/07/16 : 2.1-dev1
5105 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
5106 - DOC: this is a development branch again.
5107 - MEDIUM: Make 'block' directive fatal
5108 - MEDIUM: Make 'redispatch' directive fatal
5109 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
5110 - MEDIUM: Remove 'option independant-streams'
5111 - MINOR: sample: Add sha2([<bits>]) converter
5112 - MEDIUM: server: server-state global file stored in a tree
5113 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
5114 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
5115 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
5116 - MINOR: htx: Add the function htx_change_blk_value_len()
5117 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
5118 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
5119 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
5120 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
5121 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
5122 - BUILD: mworker: silence two printf format warnings around getpid()
5123 - BUILD: makefile: use :space: instead of digits to count commits
5124 - BUILD: makefile: adjust the sed expression of "make help" for solaris
5125 - BUILD: makefile: do not rely on shell substitutions to determine git version
5126 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
5127 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
5128 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
5129 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
5130 - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
5131 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
5132 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
5133 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
5134 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
5135 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
5136 - BUG/MINOR: log: Detect missing sampling ranges in config
5137 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
5138 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
5139 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
5140 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
5141 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
5142 - BUG/MINOR: mworker/cli: don't output a \n before the response
5143 - BUG/MEDIUM: checks: unblock signals in external checks
5144 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
5145 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
5146 - BUG/MEDIUM: connections: Always call shutdown, with no linger.
5147 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
5148 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
5149 - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
5150 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
5151 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
5152 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
5153 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
5154 - BUG/MEDIUM: servers: Authorize tfo in default-server.
5155 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
5156 - MINOR: server: Add "no-tfo" option.
5157 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
5158 - MINOR: action: Add the return code ACT_RET_DONE for actions
5159 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
5160 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
5161 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
5162 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
5163 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
5164 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
5165 - DOC: contrib: spoa_server Add some hints for building spoa_server
5166 - DOC: Fix typo in intro.txt
5167 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
5168 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
5169 - MINOR: pools: release the pool's lock during the malloc/free calls
5170 - MINOR: pools: always pre-initialize allocated memory outside of the lock
5171 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
5172 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
5173 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
5174 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
5175 - BUG/MEDIUM: da: cast the chunk to string.
5176 - DOC: Fix typos and grammer in configuration.txt
5177 - CLEANUP: proto_tcp: Remove useless header inclusions.
5178 - BUG/MEDIUM: servers: Fix a race condition with idle connections.
5179 - MINOR: task: introduce work lists
5180 - BUG/MAJOR: listener: fix thread safety in resume_listener()
5181 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
5182 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
5183 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
5184 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
5185 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
5186 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
5187 - MEDIUM: mworker-prog: Add user/group options to program section
5188 - REGTESTS: checks: tcp-check connect to multiple ports
5189 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
5190
Willy Tarreau9dc6b972019-06-16 21:49:47 +020051912019/06/16 : 2.1-dev0
5192 - exact copy of 2.0.0
5193
Willy Tarreauba236302019-06-16 20:00:26 +020051942019/06/16 : 2.0.0
5195 - MINOR: fd: Don't use atomic operations when it's not needed.
5196 - DOC: mworker-prog: documentation for the program section
5197 - MINOR: http: add a new "http-request replace-uri" action
5198 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
5199 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
5200 - MINOR: mworker: change formatting in uptime field of "show proc"
5201 - MINOR: mworker: add the HAProxy version in "show proc"
5202 - MINOR: doc: Remove -Ds option in man page
5203 - MINOR: doc: add master-worker in the man page
5204 - MINOR: doc: mention HAPROXY_LOCALPEER in the man
5205 - BUILD: Silence gcc warning about unused return value
5206 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
5207 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
5208 - MINOR: doc: update the manpage and usage message about -S
5209 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
5210 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
5211 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
5212 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
5213 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
5214 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
5215 - BUG/MINOR: http: Use the global value to limit the number of parsed headers
5216 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
5217 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
5218 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
5219 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
5220 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
5221 - MINOR: h2: Set flags about the request's scheme on the start-line
5222 - MINOR: mux-h1: Set flags about the request's scheme on the start-line
5223 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
5224 - MEDIUM: server: server-state only rely on server name
5225 - CLEANUP: connection: rename the wait_event.task field to .tasklet
5226 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
5227 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
5228 - DOC: add some environment variables in section 2.3
5229 - BUILD: makefile: clarify the "help" output and list options
5230 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
5231 - BUG: tasks: fix bug introduced by latest scheduler cleanup
5232 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
5233 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
5234 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
5235 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
5236 - BUILD: makefile: further clarify the "help" output and list targets
5237 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
5238 - BUILD: travis-ci: switch to linux-glibc instead of linux2628
5239 - DOC: update few references to the linux* targets and change them to linux-glibc
5240 - BUILD: makefile: detect and reject recently removed linux targets
5241 - BUILD: makefile: enable linux namespaces by default on linux
5242 - BUILD: makefile: enable TFO on linux platforms
5243 - BUILD: makefile: enable getaddrinfo on the linux-glibc target
5244 - DOC: small updates to the CONTRIBUTING file
5245 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
5246 - CLEANUP: removed obsolete examples an move a few to better places
5247 - DOC: Fix typos in CONTRIBUTING
5248 - DOC: update the outdated ROADMAP file
5249 - DOC: create a BRANCHES file to explain the life cycle
5250 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
5251 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
5252 - BUILD: makefile: make the obsolete target detection compatible with make-3.80
5253 - BUILD: tools: work around an internal compiler bug in gcc-3.4
5254 - BUILD: pattern: work around an internal compiler bug in gcc-3.4
5255 - BUILD: makefile: enable USE_RT on Solaris
5256 - BUILD: makefile: do not use echo -n
5257 - DOC: mention a few common build errors in the INSTALL file
5258
Willy Tarreauca3551f2019-06-11 19:28:00 +020052592019/06/11 : 2.0-dev7
5260 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
5261 - MINOR: tools: add new bitmap manipulation functions
5262 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
5263 - MINOR: chunks: Make sure trash_size is only set once.
5264 - Revert "MINOR: chunks: Make sure trash_size is only set once."
5265 - MINOR: threads: serialize threads initialization
5266 - MINOR peers: data structure simplifications for server names dictionary cache.
5267 - DOC: peers: Update for dictionary cache entries for peers protocol.
5268 - MINOR: dict: Store the length of the dictionary entries.
5269 - MINOR: peers: A bit of optimization when encoding cached server names.
5270 - MINOR: peers: Optimization for dictionary cache lookup.
5271 - MEDIUM: tools: improve time format error detection
5272 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
5273 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
5274 - MINOR: threads: avoid clearing harmless twice in thread_release()
5275 - MEDIUM: threads: add thread_sync_release() to synchronize steps
5276 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
5277 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
5278 - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
5279 - MEDIUM: init/threads: don't use spinlocks during the init phase
5280 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
5281 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
5282 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
5283 - MAJOR: htx: Rework how free rooms are tracked in an HTX message
5284 - MINOR: htx: Add the function htx_move_blk_before()
5285 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
5286 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
5287 - MINOR: http: turn default error files to HTTP/1.1
5288 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
5289 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
5290 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
5291 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
5292 - MINOR: contrib/spoa_server: Add random IP score
5293 - DOC/MINOR: contrib/spoa_server: Fix typo in README
5294
Willy Tarreaub57f1092019-06-07 06:12:59 +020052952019/06/07 : 2.0-dev6
5296 - BUG/MEDIUM: connection: fix multiple handshake polling issues
5297 - MINOR: connection: also stop receiving after a SOCKS4 response
5298 - MINOR: mux-h1: don't try to recv() before the connection is ready
5299 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
5300 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
5301 - CLEANUP: connection: remove the now unused CS_FL_REOS flag
5302 - CONTRIB: debug: add 4 missing connection/conn_stream flags
5303 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
5304 - MINOR: server: increase the default pool-purge-delay to 5 seconds
5305 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
5306 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
5307 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
5308 - BUILD: task: fix a build warning when threads are disabled
5309 - CLEANUP: peers: Remove tabs characters.
5310 - CLEANUP: peers: Replace hard-coded values by macros.
5311 - BUG/MINOR: peers: Wrong stick-table update message building.
5312 - MINOR: dict: Add dictionary new data structure.
5313 - MINOR: peers: Add a LRU cache implementation for dictionaries.
5314 - MINOR: stick-table: Add "server_name" new data type.
5315 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
5316 - MINOR: proxy: Add a "server by name" tree to proxy.
5317 - MINOR: server: Add a dictionary for server names.
5318 - MINOR: stream: Stickiness server lookup by name.
5319 - MINOR: peers: Make peers protocol support new "server_name" data type.
5320 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
5321 - REGTEST: Add a basic server by name stickiness reg test.
5322 - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
5323 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
5324 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
5325 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
5326 - BUILD: travis-ci improvements
5327 - MINOR: SSL: add client/server random sample fetches
5328 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
5329 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
5330 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
5331 - MEDIUM: mux-h1: refactor output processing
5332 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
5333 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
5334 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
5335 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
5336 - MEDIUM: htx: Add the parsing of trailers of chunked messages
5337 - MINOR: htx: Don't use end-of-data blocks anymore
5338 - BUG/MINOR: mux-h1: Don't send more data than expected
5339 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
5340 - BUG/MINOR: peers: Wrong "server_name" decoding.
5341 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
5342 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
5343 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
5344 - MEDIUM: ssl: Handle subscribe by itself.
5345 - MINOR: ssl: Make ssl_sock_handshake() static.
5346 - MINOR: connections: Add a new xprt method, remove_xprt.
5347 - MINOR: connections: Add a new xprt method, add_xprt().
5348 - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
5349 - MEDIUM: connections: Remove CONN_FL_SOCK*
5350 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
5351 - BUG/MINOR: peers: Wrong server name parsing.
5352 - MINOR: server: really increase the pool-purge-delay default to 5 seconds
5353 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
5354 - MINOR: stream-int: use bit fields to match multiple stream-int states at once
5355 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
5356 - MEDIUM: stream-int: introduce a new state SI_ST_RDY
5357 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
5358 - MEDIUM: stream-int: make idle-conns switch to ST_RDY
5359 - MEDIUM: stream: re-arrange the connection setup status reporting
5360 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
5361 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
5362 - MEDIUM: stream: rearrange the events to remove the loop
5363 - MEDIUM: stream: only loop on flags relevant to the analysers
5364 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
5365 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
5366 - BUILD: peers: fix a build warning about an incorrect intiialization
5367 - BUG/MINOR: time: make sure only one thread sets global_now at boot
5368 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
5369
Willy Tarreauabc874e2019-06-02 12:06:08 +020053702019/06/02 : 2.0-dev5
5371 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
5372 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
5373 - BUILD: watchdog: condition it to USE_RT
5374 - MINOR: raw_sock: report global traffic statistics
5375 - MINOR: stats: report the global output bit rate in human readable form
5376 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
5377 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
5378 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
5379 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
5380 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
5381 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
5382 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
5383 - DOC: fix typos
5384 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
5385 - OPTIM: freq-ctr: don't take the date lock for most updates
5386 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
5387 - CLEANUP: debug: remove the TRACE() macro
5388 - MINOR: buffer: introduce b_make() to make a buffer from its parameters
5389 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
5390 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
5391 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
5392 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
5393 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
5394 - CLEANUP: mux-h2: consistently use a local variable for the mbuf
5395 - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
5396 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
5397 - BUILD: connections: shut up gcc about impossible out-of-bounds warning
5398 - BUILD: ssl: fix latest LibreSSL reg-test error
5399 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
5400 - MINOR: cli/activity: add 3 general purpose counters in development mode
5401 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
5402 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
5403 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
5404 - MEDIUM: config: now alert when two servers have the same name
5405 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
5406 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
5407 - MINOR: htx: Store the head position instead of the wrap one
5408 - MINOR: htx: Store start-line block's position instead of address of its payload
5409 - MINOR: htx: Add functions to get the first block of an HTX message
5410 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
5411 - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
5412 - CLEANUP: htx: Remove unused function htx_get_stline()
5413 - MINOR: http/htx: Use sl_pos directly to replace the start-line
5414 - MEDIUM: http/htx: Perform analysis relatively to the first block
5415 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
5416 - MINOR: htx: Add function htx_get_max_blksz()
5417 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
5418 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
5419 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
5420 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
5421 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
5422 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
5423 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
5424 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
5425 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
5426 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
5427 - MEDIUM: htx: 1xx messages are now part of the final reponses
5428 - MINOR: channel/htx: Add function to forward headers of an HTX message
5429 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
5430 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
5431 - MEDIUM: htx: Store the first block position instead of the start-line one
5432 - MINOR: stats/htx: don't use the first block position but the head one
5433 - MINOR: channel/htx: Add functions to forward a part or all HTX payload
5434 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
5435 - MEDIUM: filters/htx: Filter body relatively to the first block
5436 - MINOR: htx: Optimize htx_drain() when all data are drained
5437 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
5438 - MINOR: htx: remove the unused function htx_find_blk()
5439 - MINOR: htx: Remove support of pseudo headers because it is unused
5440 - BUG/MEDIUM: http: fix "http-request reject" when not final
5441 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
5442 - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
5443 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
5444 - MINOR: htx: make htx_add_data() return the transmitted byte count
5445 - MEDIUM: htx: make htx_add_data() never defragment the buffer
5446 - MINOR: activity: write totals on the "show activity" output
5447 - MINOR: activity: report totals and average separately
5448 - MEDIUM: poller: separate the wait time from the wake events
5449 - MINOR: activity: report the number of failed pool/buffer allocations
5450 - MEDIUM: buffers: relax the buffer lock a little bit
5451 - MINOR: task: turn the WQ lock to an RW_LOCK
5452 - MEDIUM: task: don't grab the WR lock just to check the WQ
5453 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
5454 - MEDIUM: sessions: Introduce session flags.
5455 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
5456 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
5457 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
5458 - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
5459 - MEDIUM: tasks: Get rid of active_tasks_mask.
5460 - MEDIUM: connection: Upstream SOCKS4 proxy support
5461 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
5462 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
5463
Willy Tarreau56740692019-05-22 20:48:33 +020054642019/05/22 : 2.0-dev4
5465 - BUILD: enable freebsd builds on cirrus-ci
5466 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
5467 - MEDIUM: Make 'option forceclose' actually warn
5468 - MEDIUM: Make 'resolution_pool_size' directive fatal
5469 - DOC: management: place "show activity" at the right place
5470 - MINOR: cli/activity: show the dumping thread ID starting at 1
5471 - MINOR: task: export global_task_mask
5472 - MINOR: cli/debug: add a thread dump function
5473 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
5474 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
5475 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
5476 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
5477 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
5478 - BUG/MINOR: debug: don't check the call date on tasklets
5479 - MINOR: thread: implement ha_thread_relax()
5480 - MINOR: task: put barriers after each write to curr_task
5481 - MINOR: task: always reset curr_task when freeing a task or tasklet
5482 - MINOR: stream: detach the stream from its own task on stream_free()
5483 - MEDIUM: debug/threads: implement an advanced thread dump system
5484 - REGTEST: extend the check duration on tls_health_checks and mark it slow
5485 - DOC: fix "successful" typo
5486 - MINOR: init: setenv HAPROXY_CFGFILES
5487 - MINOR: threads/init: synchronize the threads startup
5488 - MEDIUM: init/mworker: make the pipe register function a regular initcall
5489 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
5490 - CLEANUP: threads: remove the now unused START_LOCK label
5491 - MINOR: init/threads: make the global threads an array of structs
5492 - MINOR: threads: add each thread's clockid into the global thread_info
5493 - CLEANUP: stream: remove an obsolete debugging test
5494 - MINOR: tools: add dump_hex()
5495 - MINOR: debug: implement ha_panic()
5496 - MINOR: debug/cli: add some debugging commands for developers
5497 - MINOR: tools: provide a may_access() function and make dump_hex() use it
5498 - MINOR: debug: make ha_panic() report threads starting at 1
5499 - REORG: compat: move some integer limit definitions from standard.h to compat.h
5500 - REORG: threads: move the struct thread_info from global.h to hathreads.h
5501 - MINOR: compat: make sure to always define clockid_t
5502 - MINOR: threads: always place the clockid in the struct thread_info
5503 - MINOR: threads: add a thread-local thread_info pointer "ti"
5504 - MINOR: time: move the cpu, mono, and idle time to thread_info
5505 - MINOR: time: add a function to retrieve another thread's cputime
5506 - MINOR: debug: report each thread's cpu usage in "show thread"
5507 - BUILD: threads: only assign the clock_id when supported
5508 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
5509 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
5510 - MAJOR: polling: add event ports support (Solaris)
5511 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
5512 - CLEANUP: time: refine the test on _POSIX_TIMERS
5513 - MINOR: compat: define a new empty type empty_t for non-implemented fields
5514 - CLEANUP: time: switch clockid_t to empty_t when not available
5515 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
5516 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
5517 - MINOR: debug: switch to SIGURG for thread dumps
5518 - CLEANUP: threads: really move thread_info to hathreads.c
5519 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
5520 - CLEANUP: debug: always report harmless/want_rdv even without threads
5521 - MINOR: threads: implement ha_tkill() and ha_tkillall()
5522 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
5523 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
5524 - MINOR: debug: dump streams when an applet, iocb or stream is known
5525 - MINOR: threads: add a "stuck" flag to the thread_info struct
5526 - MINOR: threads: add a timer_t per thread in thread_info
5527 - MAJOR: watchdog: implement a thread lockup detection mechanism
5528 - MINOR: stream: remove the cpu time detection from process_stream()
5529 - MINOR: connection: report the mux names in "haproxy -vv"
5530 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
5531 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
5532 - MINOR: WURFL: call header_retireve_callback() in dummy library
5533 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
5534 - MINOR: WURFL: shows log messages during module initialization
5535 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
5536 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
5537 - MEDIUM: WURFL: HTX awareness.
5538 - MINOR: WURFL: module version bump to 2.0
5539 - MINOR: WURFL: do not emit warnings when not configured
5540 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
5541 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
5542 - BUILD: travis: add sanitizers to travis-ci builds
5543 - BUILD: time: remove the test on _POSIX_C_SOURCE
5544 - CLEANUP: build: rename some build macros to use the USE_* ones
5545 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
5546 - BUG/MEDIUM: dns: make the port numbers unsigned
5547 - MEDIUM: config: deprecate the antique req* and rsp* commands
5548
Willy Tarreaua257a9b2019-05-15 16:51:48 +020055492019/05/15 : 2.0-dev3
5550 - BUG/MINOR: peers: Really close the sessions with no heartbeat.
5551 - CLEANUP: peers: remove useless annoying tabulations.
5552 - CLEANUP: peers: replace timeout constants by macros.
5553 - REGTEST: Enable again reg tests with HEAD HTTP method usage.
5554 - DOC: The option httplog is no longer valid in a backend.
5555 - DOC: peers: Peers protocol documentation update.
5556 - REGTEST: remove unexpected "nbthread" statement from Lua test cases
5557 - BUILD: Makefile: remove 11-years old workarounds for deprecated options
5558 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
5559 - BUILD: Makefile: remove outdated support for dlmalloc
5560 - BUILD: Makefile: consider a variable's origin and not its value for the options list
5561 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
5562 - BUILD: Makefile: shorten default settings declaration
5563 - BUILD: Makefile: clean up the target declarations
5564 - BUILD: report the whole feature set with their status in haproxy -vv
5565 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
5566 - REGTEST: script: make the script use the new features list
5567 - REGTEST: script: remove platform-specific assigments of OPTIONS
5568 - BUG/MINOR: peers: Missing initializations after peer session shutdown.
5569 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
5570 - BUILD/MINOR: listener: Silent a few signedness warnings.
5571 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
5572 - BUG/MEDIUM: mworker: don't free the wrong child when not found
5573 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
5574 - BUG/MAJOR: checks: segfault during tcpcheck_main
5575 - BUILD: makefile: work around an old bug in GNU make-3.80
5576 - BUILD: makefile: work around another bug in make 3.80
5577 - BUILD: http: properly mark some struct as extern
5578 - BUILD: chunk: properly declare pool_head_trash as extern
5579 - BUILD: cache: avoid a build warning with some compilers/linkers
5580 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
5581 - MINOR: tools: add an unsetenv() implementation
5582 - BUILD: re-implement an initcall variant without using executable sections
5583 - BUILD: use inttypes.h instead of stdint.h
5584 - BUILD: connection: fix naming of ip_v field
5585 - BUILD: makefile: fix build of IPv6 header on aix51
5586 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
5587 - BUILD: define unsetenv on AIX 5.1
5588 - BUILD: Makefile: disable shared cache on AIX 5.1
5589 - MINOR: ssl: Add aes_gcm_dec converter
5590 - REORG: mworker: move serializing functions to mworker.c
5591 - REORG: mworker: move signals functions to mworker.c
5592 - REORG: mworker: move IPC functions to mworker.c
5593 - REORG: mworker: move signal handlers and related functions
5594 - REORG: mworker: move mworker_cleanlisteners to mworker.c
5595 - MINOR: mworker: calloc mworker_proc structures
5596 - MINOR: mworker: don't use children variable anymore
5597 - MINOR: cli: export cli_parse_default() definition in cli.h
5598 - REORG: mworker/cli: move CLI functions to mworker.c
5599 - MEDIUM: mworker-prog: implement program for master-worker
5600 - MINOR: mworker/cli: show programs in 'show proc'
5601 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
5602 - MINOR: cli: start addresses by a prefix in 'show cli sockets'
5603 - MINOR: cli: export HAPROXY_CLI environment variable
5604 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
5605 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
5606 - REGTEST: http-capture/h00000: Relax a regex matching the log message
5607 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
5608 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
5609 - REGTEST: log/b00000: Be sure the client always hits its timeout
5610 - REGTEST: lua/b00003: Relax the regex matching the log message
5611 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
5612 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
5613 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
5614 - BUG/MEDIUM: htx: fix random premature abort of data transfers
5615 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
5616 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
5617 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
5618 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
5619 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
5620 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
5621 - MINOR: skip get_gmtime where tm is unused
5622 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
5623 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
5624 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
5625 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
5626 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
5627 - BUG/MINOR: listener: renice the accept ring processing task
5628 - MINOR: cli/listener: report the number of accepts on "show activity"
5629 - MINOR: cli/activity: report the accept queue sizes in "show activity"
5630 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
5631 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
5632 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
5633 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
5634 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
5635 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
5636 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
5637 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
5638 - MINOR: mux-h1: Simplify handling of 1xx responses
5639 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
5640 - MEDIUM: h1: Add an option to sanitize connection headers during parsing
5641 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
5642 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
5643 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
5644 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
5645 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
5646 - MINOR: stream: Set a flag when the stream uses the HTX
5647 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
5648 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
5649 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
5650 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
5651 - MEDIUM: muxes: Add an optional input buffer during mux initialization
5652 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
5653 - MEDIUM: muxes: Be prepared to don't own connection during the release
5654 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
5655 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
5656 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
5657 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
5658 - MAJOR: htx: Enable the HTX mode by default for all proxies
5659 - REGTEST: Use HTX by default and add '--no-htx' option to disable it
5660 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
5661 - CLEANUP: task: do not export rq_next anymore
5662 - MEDIUM: tasks: improve fairness between the local and global queues
5663 - MEDIUM: tasks: only base the nice offset on the run queue depth
5664 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
5665 - BUG/MEDIUM: map: Fix memory leak in the map converter
5666 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
5667 - BUILD: task/thread: fix single-threaded build of task.c
5668 - BUILD: cli/threads: fix build in single-threaded mode
5669 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
5670 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
5671 - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
5672 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
5673 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
5674 - BUILD: address a few cases of "static <type> inline foo()"
5675 - BUILD: do not specify "const" on functions returning structs or scalars
5676 - BUILD: htx: fix a used uninitialized warning on is_cookie2
5677 - MINOR: peers: Add a new command to the CLI for peers.
5678 - DOC: update for "show peers" CLI command.
5679 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
5680 - MEDIUM: mworker: store the leaving state of a process
5681 - MEDIUM: mworker-prog: implements 'option start-on-reload'
5682 - CLEANUP: mworker: remove the type field in mworker_proc
5683 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
5684 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
5685 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
5686 - MINOR: init: add a "set-dumpable" global directive to enable core dumps
5687 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
5688 - BUG/MINOR: mworker: mworker_kill should apply on every children
5689 - BUG/MINOR: mworker: don't exit with an ambiguous value
5690 - BUG/MINOR: mworker: ensure that we still quits with SIGINT
5691 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
5692 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
5693 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
5694 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
5695 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
5696 - MINOR: mux-h1: Handle read0 during TCP splicing
5697 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
5698 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
5699 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
5700 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
5701 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
5702 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
5703 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
5704 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
5705 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
5706 - BUG/MEDIUM: applets: Don't use task_in_rq().
5707 - BUG/MAJOR: task: make sure never to delete a queued task
5708 - MINOR: task/thread: factor out a wake-up condition
5709 - CLEANUP: task: remain consistent when using the task's handler
5710 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
5711 - MEDIUM: tasks: Don't account a destroyed task as a runned task.
5712 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
5713 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
5714 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
5715 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
5716 - BUG/MINOR: mworker: disable busy polling in the master process
5717 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
5718 - MEDIUM: ssl: Give ssl_sock its own context.
5719 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
5720 - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
5721 - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
5722 - MEDIUM: ssl: provide our own BIO.
5723 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
5724 - MINOR: peers: adds counters on show peers about tasks calls.
5725 - MEDIUM: enable travis-ci builds
5726 - MINOR: fd: Add a counter of used fds.
5727 - MEDIUM: connections: Add a way to control the number of idling connections.
5728 - BUG/MEDIUM: maps: only try to parse the default value when it's present
5729 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
5730 - REGTEST: Missing REQUIRE_VERSION declarations.
5731 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
5732 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
5733 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
5734 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
5735 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
5736 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
5737 - MINOR: gcc: Fix a silly gcc warning in connect_server()
5738 - MINOR: ssl/cli: async fd io-handlers printable on show fd
5739 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
5740 - BUILD: add USE_WURFL to the list of known build options
5741 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
5742 - BUILD: wurfl: build fix for 1.9/2.0 code base
5743 - CLEANUP: wurfl: removed deprecated methods
5744 - DOC: wurfl: added point of contact in MAINTAINERS file
5745 - MINOR: wurfl: enabled multithreading mode
5746 - MINOR: contrib: dummy wurfl library
5747 - MINOR: dns: dns_requester structures are now in a memory pool
5748 - MINOR: dns: move callback affection in dns_link_resolution()
5749 - MINOR: obj_type: new object type for struct stream
5750 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
5751 - MINOR: log: Extract some code to send syslog messages.
5752 - REGTEST: replace LEVEL option by a more human readable one.
5753 - REGTEST: rename the reg test files.
5754 - REGTEST: adapt some reg tests after renaming.
5755 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
5756 - BUG/MAJOR: stream: Missing DNS context initializations.
5757 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
5758 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
5759 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
5760 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
5761 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
5762 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
5763 - CLEANUP: task: report calls as unsigned in show sess
5764 - MINOR: tasks/activity: report the context switch and task wakeup rates
5765 - MINOR: stream: measure and report a stream's call rate in "show sess"
5766 - MINOR: applet: measure and report an appctx's call rate in "show sess"
5767 - BUILD: extend Travis CI config to support more platforms
5768 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
5769 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
5770 - REGTEST: exclude OSX and generic targets from abns_socket.vtc
5771 - BUILD: travis: remove the "allow_failures" entry
5772 - BUG/MINOR: activity: always initialize the profiling variable
5773 - MINOR: activity: make the profiling status per thread and not global
5774 - MINOR: activity: enable automatic profiling turn on/off
5775 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
5776 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
5777 - MINOR: connection: make the debugging helper functions safer
5778 - MINOR: stream/debug: make a stream dump and crash function
5779 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
5780 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
5781 - MEDIUM: streams: measure processing time and abort when detecting bugs
5782 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
5783 - MEDIUM: da: HTX mode support.
5784 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
5785 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
5786 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
5787 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
5788 - DOC: contrib/modsecurity: Typos and fix the reject example
5789 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
5790 - MINOR: log: Add "sample" new keyword to "log" lines.
5791 - MINOR: log: Enable the log sampling and load-balancing feature.
5792 - DOC: log: Document the sampling and load-balancing logging feature.
5793 - REGTEST: Add a new reg test for log load-balancing feature.
5794 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
5795 - REGTEST: Make this reg test be Linux specific.
5796 - CLEANUP: task: move the task_per_thread definition to task.h
5797 - MINOR: activity: report context switch counts instead of rates
5798 - MINOR: threads: Implement HA_ATOMIC_LOAD().
5799 - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
5800 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
5801 - MINOR: config: Test validity of tune.maxaccept during the config parsing
5802 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
5803 - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
5804 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
5805 - BUG/MINOR: haproxy: fix rule->file memory leak
5806 - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
5807 - BUG/MINOR: checks: free memory allocated for tasklets
5808 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
5809 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
5810 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
5811 - MINOR: threads: flatten the per-thread cpu-map
5812 - MINOR: init/threads: remove the useless tids[] array
5813 - MINOR: init/threads: make the threads array global
5814 - BUG/MEDIUM: ssl: Use the early_data API the right way.
5815 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
5816 - MEDIUM: streams: Add the ability to retry a request on L7 failure.
5817 - MEDIUM: streams: Add a way to replay failed 0rtt requests.
5818 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
5819 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
5820 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
5821 - BUG/MINOR: logs/threads: properly split the log area upon startup
5822 - BUILD: extend travis-ci matrix
5823 - CLEANUP: Remove appsession documentation
5824 - DOC: Fix typo in keyword matrix
5825 - BUILD: remove "build_libressl" duplicate declaration
5826 - BUILD: travis-ci: get back to osx without openssl support
5827 - BUILD: enable several LibreSSL hacks, including
5828 - BUILD: temporarily mark LibreSSL builds as allowed to fail
5829 - BUILD: travis: TMPDIR replacement.
5830 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
5831 - MINOR: doc: Document allow-0rtt on the server line.
5832 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
5833 - MEDIUM: proto: Change the prototype of the connect() method.
5834 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
5835 - MINOR: config: Extract the code of "stick-table" line parsing.
5836 - BUILD/MINOR: stick-table: Compilation fix.
5837 - MEDIUM: stick-table: Stop handling stick-tables as proxies.
5838 - MINOR: stick-tables: Add peers process binding computing.
5839 - MINOR: stick-table: Add prefixes to stick-table names.
5840 - MINOR: peers: Do not emit global stick-table names.
5841 - DOC: Update for "table" lines in "peers" section.
5842 - REGTEST: Add reg tests for "table" lines in "peers" sections.
5843 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
5844 - REGTEST: make the tls_health_checks test much faster
5845 - REGTEST: make the "table in peers" test require v2.0
5846 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
5847 - BUG/MEDIUM: h2/htx: always fail on too large trailers
5848 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
5849 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
5850 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
5851 - REGTEST: Flag some slow reg tests.
5852 - REGTEST: Reg tests file renaming.
5853 - REGTEST: Wrong renaming for one reg test.
5854 - REGTEST: Wrong assumption in IP:port logging test.
5855 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
5856 - MINOR: systemd: Use the variables from /etc/default/haproxy
5857 - MINOR: systemd: Make use of master socket in systemd unit
5858 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
5859 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
5860 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
5861 - CLEANUP: task: remove unneeded tests before task_destroy()
5862 - MINOR: mworker: support a configurable maximum number of reloads
5863 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
5864 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
5865 - BUG/MINOR: mux-h1: Fix the parsing of trailers
5866 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
5867 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
5868 - MINOR: htx: Don't try to append a trailer block with the previous one
5869 - MINOR: htx: Remove support for unused OOB HTX blocks
5870 - BUILD: travis-ci bugfixes and improvements
5871 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
5872 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
5873 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
5874 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
5875 - BUILD: ssl: make libressl use its own version numbers
5876 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
5877 - MINOR: ssl: enable aes_gcm_dec on LibreSSL
5878 - BUILD: ssl: fix libressl build again after aes-gcm-enc
5879 - REORG: ssl: move openssl-compat from proto to common
5880 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
5881 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
5882 - CLEANUP: ssl: make inclusion of openssl headers safe
5883 - BUILD: add BoringSSL to travis-ci build matrix
5884 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
5885 - BUG/MINOR: stream: Attach the read side on the response as soon as possible
5886 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
5887 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
5888 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
5889 - MEDIUM: streams: Add a new http action, disable-l7-retry.
5890 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
5891 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
5892 - BUILD: travis-ci: make TMPDIR global variable in travis-ci
5893 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
5894 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
5895 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
5896 - BUILD: threads: fix again the __ha_cas_dw() definition
5897 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
5898 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
5899 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
5900 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
5901 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
5902 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
5903 - BUG/MINOR: vars: Fix memory leak in vars_check_arg
5904 - BUG/MAJOR: ssl: segfault upon an heartbeat request
5905 - MINOR: spoa-server: Clone the v1.7 spoa-example project
5906 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
5907 - MINOR: spoa-server: Externalise debug functions
5908 - MINOR: spoe-server: rename "worker" functions
5909 - MINOR: spoa-server: Replace the thread init system by processes
5910 - MINOR: spoa-server: With debug mode, start only one process
5911 - MINOR: spoa-server: Allow registering external processes
5912 - MINOR: spoa-server: Allow registering message processors
5913 - MINOR: spoa-server: Load files
5914 - MINOR: spoa-server: Prepare responses
5915 - MINOR: spoa-server: Execute registered callbacks
5916 - MINOR: spoa-server: Add Lua processing
5917 - MINOR: spoa-server: Add python
5918 - MINOR/DOC: spoe-server: Add documentation
5919 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
5920 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
5921 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
5922 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
5923 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
5924 - CLEANUP: connection: remove the handle field from the wait_event struct
5925 - BUG/MINOR: log: Wrong log format initialization.
5926 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
5927 - BUG/MINOR: mworker: use after free when the PID not assigned
5928 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
5929 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
5930 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
5931 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
5932 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
5933 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
5934 - MINOR: mux-h2: add macros to check multiple stream states at once
5935 - MINOR: mux-h2: stop relying on CS_FL_REOS
5936 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
5937 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
5938 - MINOR: debug: add a new BUG_ON macro
5939 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5940 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5941 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
5942 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
5943
Willy Tarreau6e893b92019-03-26 05:40:51 +010059442019/03/26 : 2.0-dev2
5945 - CLEANUP: http: Remove unreachable code in parse_http_req_capture
5946 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
5947 - MINOR: lists: Implement locked variations.
5948 - MEDIUM: servers: Used a locked list for idle_orphan_conns.
5949 - MEDIUM: servers: Reorganize the way idle connections are cleaned.
5950 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
5951 - MINOR: cfgparse: Add a cast to make gcc happier.
5952 - BUG/MEDIUM: standard: Wrong reallocation size.
5953 - BUG/MINOR: listener: keep accept rate counters accurate under saturation
5954 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
5955 - MAJOR: config: disable support for nbproc and nbthread in parallel
5956 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
5957 - MAJOR: listener: do not hold the listener lock in listener_accept()
5958 - MINOR: listener: maintain a per-thread count of the number of connections on a listener
5959 - MINOR: tools: implement functions to look up the nth bit set in a mask
5960 - MINOR: listener: pre-compute some thread counts per bind_conf
5961 - MINOR: listener: implement multi-queue accept for threads
5962 - MAJOR: listener: use the multi-queue for multi-thread listeners
5963 - MINOR: activity: add accept queue counters for pushed and overflows
5964 - MINOR: config: add global tune.listener.multi-queue setting
5965 - MAJOR: threads: enable one thread per CPU by default
5966 - DOC: update management.txt to reflect that threads are used by default
5967 - BUG/MINOR: config: don't over-count the global maxsock value
5968 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
5969 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
5970 - BUG/MEDIUM: list: add missing store barriers when updating elements and head
5971 - MINOR: list: make the delete and pop operations idempotent
5972 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
5973 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
5974 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
5975 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
5976 - MINOR: listener: introduce listener_backlog() to report the backlog value
5977 - MINOR: listener: do not needlessly set l->maxconn
5978 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
5979 - MEDIUM: config: don't enforce a low frontend maxconn value anymore
5980 - MINOR: peers: Add a message for heartbeat.
5981 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
5982 - BUG/MINOR: init: never lower rlim_fd_max
5983 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
5984 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
5985 - MINOR: init: make the maxpipe computation more accurate
5986 - MINOR: init: move some maxsock updates earlier
5987 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
5988 - REGTEST: fix a spurious "nbthread 4" in the connection test
5989 - DOC: update the text related to the global maxconn value
5990 - BUG/MAJOR: mux-h2: fix race condition between close on both ends
5991 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
5992 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
5993 - MINOR: htx: unconditionally handle parsing errors in requests or responses
5994 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
5995 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
5996 - MINOR: sample: Code factorization "ungrpc" converter.
5997 - MINOR: sample: Rework gRPC converter code.
5998 - CLEANUP: wurfl: remove dead, broken and unmaintained code
5999 - MINOR: config: relax the range checks on cpu-map
6000 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
6001 - MINOR: sample: Extract some protocol buffers specific code.
6002 - DOC: Remove tabs and fixed punctuation.
6003 - MINOR: sample: Add a protocol buffers specific converter.
6004 - REGTEST: Peers reg tests.
6005 - REGTEST: Enable reg tests with HEAD HTTP method usage.
6006 - MINOR: lists: add a LIST_DEL_INIT() macro
6007 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
6008 - MINOR: listener: improve incoming traffic distribution
6009 - MINOR: tools: implement my_flsl()
6010 - MEDIUM: listener: change the LB algorithm again to use two round robins instead
6011 - CLEANUP: listener: remove old thread bit mapping
6012 - MINOR: listener: move thr_idx from the bind_conf to the listener
6013 - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
6014 - BUG/MAJOR: config: Wrong maxconn adjustment.
6015 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
6016 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
6017 - MINOR: fd: Remove debugging code.
6018 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
6019 - MINOR: threads: Implement __ha_barrier_atomic*.
6020 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
6021 - MINOR: threads: Add macros to do atomic operation with no memory barrier.
6022 - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
6023 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
6024 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
6025 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
6026 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
6027 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
6028 - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
6029 - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
6030 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
6031 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
6032 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
6033 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
6034 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
6035 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
6036 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
6037 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
6038 - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
6039 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
6040 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
6041 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
6042 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
6043 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
6044 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
6045 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
6046 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
6047 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
6048 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
6049 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
6050 - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
6051 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
6052 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
6053 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
6054 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
6055 - BUG/MEDIUM: listener: make sure we don't pick stopped threads
6056 - MEDIUM: list: Remove useless barriers.
6057 - MEDIUM: list: Use _HA_ATOMIC_*
6058 - MEDIUM: connections: Use _HA_ATOMIC_*
6059 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
6060 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
6061 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
6062 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
6063 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
6064 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
6065 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
6066 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
6067 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
6068 - MINOR: stats: Move stuff about the stats status codes in stats files
6069 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
6070 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
6071 - BUILD: listener: shut up a build warning when threads are disabled
6072 - BUILD: Makefile: allow the reg-tests target to be verbose
6073 - BUILD: Makefile: resolve LEVEL before calling run-regtests
6074 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
6075 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
6076 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
6077 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
6078 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
6079 - MINOR: muxes: Report the Last read with a dedicated flag
6080 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
6081 - BUILD: tools: fix a build warning on some 32-bit archs
6082 - MINOR: init: report the list of optionally available services
6083 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
6084 - BUG/MINOR: cache: Fully consume large requests in the cache applet
6085 - BUG/MINOR: stats: Fully consume large requests in the stats applet
6086 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
6087 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
6088 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
6089 - MINOR: stats/cache: Handle the header Expect when applets are registered
6090 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
6091 - CLEANUP: cache: don't export http_cache_applet anymore
6092 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
6093 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
6094 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
6095 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
6096 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
6097 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
6098 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
6099 - CLEANUP: mux-h2: add some comments to help understand the code
6100 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
6101 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
6102 - BUG/MEDIUM: h2: Try to be fair when sending data.
6103 - BUG/MINOR: proto-http: Don't forward request body anymore on error
6104 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
6105 - MINOR: connection: and new flag to mark end of input (EOI)
6106 - MINOR: channel: Report EOI on the input channel if it was reached in the mux
6107 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
6108 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
6109 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
6110 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
6111 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
6112 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
6113 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
6114 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
6115 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
6116 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
6117 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
6118 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
6119 - CONTRIB: debug: report the CS and CF's EOI flags
6120 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
6121
Willy Tarreau6c1b6672019-02-26 16:43:49 +010061222019/02/26 : 2.0-dev1
6123 - MINOR: mux-h2: only increase the connection window with the first update
6124 - REGTESTS: remove the expected window updates from H2 handshakes
6125 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
6126 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
6127 - MEDIUM: mux-h2: remove padlen during headers phase
6128 - MINOR: h2: add a bit-based frame type representation
6129 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
6130 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
6131 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
6132 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
6133 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
6134 - MINOR: buffers: add a new b_move() function
6135 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
6136 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
6137 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
6138 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
6139 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
6140 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
6141 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
6142 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
6143 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
6144 - BUG/MAJOR: servers: Correctly use LIST_ELEM().
6145 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
6146 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
6147 - MEDIUM: servers: Be smarter when switching connections.
6148 - MEDIUM: sessions: Keep track of which connections are idle.
6149 - MINOR: payload: add sample fetch for TLS ALPN
6150 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
6151 - MINOR: channel: Add the function channel_add_input
6152 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
6153 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
6154 - BUG/MAJOR: htx: Return the good block address after a defrag
6155 - MINOR: lb: allow redispatch when using consistent hash
6156 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
6157 - BUG/MEDIUM: mux-h2: always restart reading if data are available
6158 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
6159 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
6160 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
6161 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
6162 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
6163 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
6164 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
6165 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
6166 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
6167 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
6168 - MINOR: mux-h2: add a new dummy stream : h2_error_stream
6169 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
6170 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
6171 - MINOR: mux-h2: remove a misleading and impossible test
6172 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
6173 - MINOR: mux-h2: check for too many streams only for idle streams
6174 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
6175 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
6176 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
6177 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
6178 - MINOR: htx: add a new function to add a block without filling it
6179 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
6180 - MEDIUM: mux-h2: pass trailers to HTX
6181 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
6182 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
6183 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
6184 - MINOR: h1: make the H1 headers block parser able to parse headers only
6185 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
6186 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
6187 - MINOR: stream: Add the subscription events of SIs in "show sess all" command
6188 - MINOR: mux-h1: Add the subscription events in "show fd" command
6189 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
6190 - BUG/MINOR: cache/htx: Be sure to count partial trailers
6191 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
6192 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
6193 - MINOR: connections: Remove a stall comment.
6194 - BUG/MEDIUM: cli: make "show sess" really thread-safe
6195 - BUILD: add a new file "version.c" to carry version updates
6196 - MINOR: stream/htx: add the HTX flags output in "show sess all"
6197 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
6198 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
6199 - BUG/MINOR: lua: bad args are returned for Lua actions
6200 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
6201 - MINOR: htx: Add an helper function to get the max space usable for a block
6202 - MINOR: channel/htx: Add HTX version for some helper functions
6203 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
6204 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
6205 - DOC: regtest: make it clearer what the purpose of the "broken" series is
6206 - REGTEST: mailers: add new test for 'mailers' section
6207 - REGTEST: Add a reg test for health-checks over SSL/TLS.
6208 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
6209 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
6210 - BUG/MINOR: compression: Disable it if another one is already in progress
6211 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
6212 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
6213 - REGTEST: Add some informatoin to test results.
6214 - MINOR: htx: Add a function to truncate all blocks after a specific offset
6215 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
6216 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
6217 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
6218 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
6219 - DOC: http-request cache-use / http-response cache-store expects cache name
6220 - REGTEST: "capture (request|response)" regtest.
6221 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
6222 - REGTEST: filters: add compression test
6223 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
6224 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
6225 - DOC: Be a bit more explicit about allow-0rtt security implications.
6226 - MINOR: mux-h1: make the mux_h1_ops struct static
6227 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
6228 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
6229 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
6230 - REGTESTS: test case for map_regm commit 271022150d
6231 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
6232 - REGTESTS: Basic tests for using maps to redirect requests / select backend
6233 - DOC: REGTESTS README varnishtest -Dno-htx= define.
6234 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
6235 - MINOR: checks: Store the proxy in checks.
6236 - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
6237 - REGTEST: Switch to vtest.
6238 - REGTEST: Adapt reg test doc files to vtest.
6239 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
6240 - BUG/MINOR: base64: dec func ignores padding for output size checking
6241 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
6242 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
6243 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
6244 - BUG/MINOR: backend: balance uri specific options were lost across defaults
6245 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
6246 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
6247 - MINOR: backend: make headers and RDP cookie also use arg_str/len
6248 - MINOR: backend: add new fields in lbprm to store more LB options
6249 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
6250 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
6251 - MINOR: backend: move hash_balance_factor out of chash
6252 - MEDIUM: backend: move all LB algo parameters into an union
6253 - MINOR: backend: make the random algorithm support a number of draws
6254 - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
6255 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
6256 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
6257 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
6258 - DOC: add a missing space in the documentation for bc_http_major
6259 - REGTEST: checks basic stats webpage functionality
6260 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
6261 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
6262 - DOC: add github issue templates
6263 - MINOR: cfgparse: Extract some code to be re-used.
6264 - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
6265 - CLEANUP: cfgparse: Code reindentation.
6266 - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
6267 - MINOR: cfgparse: Rework peers frontend init.
6268 - MINOR: cfgparse: Simplication.
6269 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
6270 - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
6271 - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
6272 - DOC: peers: SSL/TLS documentation for "peers"
6273 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
6274 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
6275 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
6276 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
6277 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
6278 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
6279 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
6280 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
6281 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
6282 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
6283 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
6284 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
6285 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
6286 - MINOR: h2: declare new sets of frame types
6287 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
6288 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
6289 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
6290 - BUG/MINOR: hpack: return a compression error on invalid table size updates
6291 - MINOR: server: make sure pool-max-conn is >= -1
6292 - BUG/MINOR: stream: take care of synchronous errors when trying to send
6293 - CLEANUP: server: fix indentation mess on idle connections
6294 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
6295 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
6296 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
6297 - MINOR: server: add a max-reuse parameter
6298 - MINOR: mux-h2: always consider a server's max-reuse parameter
6299 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
6300 - MINOR: stream: don't wait before retrying after a failed connection reuse
6301 - MEDIUM: h2: always parse and deduplicate the content-length header
6302 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
6303 - CLEANUP: h2: Remove debug printf in mux_h2.c
6304 - MINOR: cfgparse: make the process/thread parser support a maximum value
6305 - MINOR: threads: make MAX_THREADS configurable at build time
6306 - DOC: nbthread is no longer experimental.
6307 - BUG/MINOR: listener: always fill the source address for accepted socketpairs
6308 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
6309 - BUG/MINOR: spoe: corrected fragmentation string size
6310 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
6311 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
6312 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
6313 - SCRIPTS: add the issue tracker URL to the announce script
6314 - MINOR: peers: Extract some code to be reused.
6315 - CLEANUP: peers: Indentation fixes.
6316 - MINOR: peers: send code factorization.
6317 - MINOR: peers: Add new functions to send code and reduce the I/O handler.
6318 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
6319 - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
6320 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
6321 - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
6322 - CLEANUP: peers: Be more generic.
6323 - MINOR: peers: move error handling to reduce the size of the I/O handler.
6324 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
6325 - MINOR: peers: move send code to reduce the size of the I/O handler.
6326 - CLEANUP: peers: Remove useless statements.
6327 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
6328 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
6329 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
6330 - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
6331 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
6332 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
6333 - CLEANUP: mux-h2: remove two useless but misleading assignments
6334 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
6335 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
6336 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
6337 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
6338 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
6339 - BUG/MEDIUM: peers: Handle mux creation failure.
6340 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
6341 - BUG/MEDIUM: compression: Rewrite strong ETags
6342 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
6343 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
6344 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
6345 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
6346 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
6347 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
6348 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
6349 - MINOR: h2: add a generic frame checker
6350 - MEDIUM: mux-h2: check the frame validity before considering the stream state
6351 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
6352 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
6353 - DOC: compression: Update the reasons for disabled compression
6354 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
6355 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
6356 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
6357 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
6358 - BUG/MEDIUM: peers: Peer addresses parsing broken.
6359 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
6360 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
6361 - BUG/MINOR: stream: don't close the front connection when facing a backend error
6362 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
6363 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
6364 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
6365 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
6366 - BUG/MINOR: server: fix logic flaw in idle connection list management
6367 - MINOR: mux-h2: max-concurrent-streams should be unsigned
6368 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
6369 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
6370 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
6371 - MINOR: xref: Add missing barriers.
6372 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
6373 - MINOR: debug: Add an option that causes random allocation failures.
6374 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
6375 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
6376 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
6377 - BUG/MINOR: backend: check srv_conn before dereferencing it
6378 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
6379 - BUG/MEDIUM: mux-h2: always set :authority on request output
6380 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
6381 - BUG/MINOR: threads: fix the process range of thread masks
6382 - BUG/MINOR: config: fix bind line thread mask validation
6383 - CLEANUP: threads: fix misleading comment about all_threads_mask
6384 - CLEANUP: threads: use nbits to calculate the thread mask
6385 - OPTIM: listener: optimize cache-line packing for struct listener
6386 - MINOR: tools: improve the popcount() operation
6387 - MINOR: config: keep an all_proc_mask like we have all_threads_mask
6388 - MINOR: global: add proc_mask() and thread_mask()
6389 - MINOR: config: simplify bind_proc processing using proc_mask()
6390 - MINOR: threads: make use of thread_mask() to simplify some thread calculations
6391 - BUG/MINOR: compression: properly report compression stats in HTX mode
6392 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
6393 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
6394 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
6395 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
6396 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
6397 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
6398 - DOC: ssl: Stop documenting ciphers example to use
6399 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
6400 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
6401 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
6402 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
6403 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
6404 - MINOR: config: make MAX_PROCS configurable at build time
6405 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
6406 - BUG/MINOR: config: Reinforce validity check when a process number is parsed
6407 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
6408 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
6409 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
6410 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
6411 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
6412 - BUG/MAJOR: stream: avoid double free on unique_id
6413 - BUILD/MINOR: stream: avoid a build warning with threads disabled
6414 - BUILD/MINOR: tools: fix build warning in the date conversion functions
6415 - BUILD/MINOR: peers: remove an impossible null test in intencode()
6416 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
6417 - BUG/MEDIUM: peers: Missing peer initializations.
6418 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
6419 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
6420 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
6421 - BUILD/MEDIUM: initcall: Fix build on MacOS.
6422 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
6423 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
6424 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
6425 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
6426 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
6427 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
6428 - MINOR: mux-h2: Set HTX extra value when possible
6429 - BUG/MEDIUM: htx: count the amount of copied data towards the final count
6430 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
6431 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
6432 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
6433 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
6434 - MINOR: fd: add a new my_closefrom() function to close all FDs
6435 - MINOR: checks: use my_closefrom() to close all FDs
6436 - MINOR: fd: implement an optimised my_closefrom() function
6437 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
6438 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
6439 - BUG/MAJOR: listener: Make sure the listener exist before using it.
6440 - MINOR: fd: Use closefrom() as my_closefrom() if supported.
6441 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
6442 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
6443 - MINOR: htx: Add function to drain data from an HTX message
6444 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
6445 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
6446 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
6447 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
6448 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
6449 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
6450 - BUG/MEDIUM: h2: advertise to servers that we don't support push
6451 - MINOR: standard: Add a function to parse uints (dotted notation).
6452 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
6453 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
6454 - MINOR: sample: Add two sample converters for protocol buffers.
6455 - DOC: sample: Add gRPC related documentation.
6456
Willy Tarreaufba74ea2018-12-22 11:19:45 +010064572018/12/22 : 2.0-dev0
6458 - BUG/MAJOR: connections: Close the connection before freeing it.
6459 - REGTEST: Require the option LUA to run lua tests
6460 - REGTEST: script: Process script arguments before everything else
6461 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
6462 - REGTEST: script: Add the option --clean to remove previous log direcotries
6463 - REGTEST: script: Add the option --debug to show logs on standard ouput
6464 - REGTEST: script: Add the option --keep-logs to keep all log directories
6465 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
6466 - REGTEST: script: Print only errors in the results report
6467 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
6468 - REGTEST: Make reg-tests target support argument.
6469 - REGTEST: Fix a typo about barrier type.
6470 - REGTEST: Be less Linux specific with a syslog regex.
6471 - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
6472 - REGTEST: Exclude freebsd target for some reg tests.
6473 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
6474 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
6475 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
6476 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
6477 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
6478 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
6479 - MEDIUM: mux_h1: Implement h1_show_fd.
6480 - REGTEST: script: Add support of alternatives in requited options list
6481 - REGTEST: Add a basic test for the compression
6482 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
6483 - REGTEST: A basic test for "http-buffer-request"
6484 - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
6485 - MINOR: ssl: Add ssl_sock_set_alpn().
6486 - MEDIUM: checks: Add check-alpn.
6487 - wip
6488
Willy Tarreau82230502018-12-19 19:13:17 +010064892018/12/19 : 1.9.0
6490 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
6491 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
6492 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
6493 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
6494 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
6495 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
6496 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
6497 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
6498 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
6499 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
6500 - MINOR: cli/stream: add the conn_stream in "show sess" output
6501 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
6502 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
6503 - MINOR: objtype: report a few missing types in names and base pointers
6504 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
6505 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
6506 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
6507 - BUG/MINOR: mux-h1: report the correct frontend in error captures
6508 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
6509 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
6510 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
6511 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
6512 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
6513 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
6514 - MINOR: compression: Remove the thread_local variable buf_output
6515 - CLEANUP: connection: rename subscription events values and event field
6516 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
6517 - MINOR: connection: remove an unwelcome dependency on struct stream
6518 - CLEANUP: stream-int: consistently call the si/stream_int functions
6519 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
6520 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
6521 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
6522 - MEDIUM: stream-int: always consider all CS errors on the send side
6523 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
6524 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
6525 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
6526 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
6527 - MINOR: connection: add cs_set_error() to set the error bits
6528 - CLEANUP: mux-h2: make use of cs_set_error()
6529 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
6530 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
6531 - MINOR: cli/show_fd: report that a connection is back or not
6532 - SCRIPTS: add the slack channel URL to the announce script
6533 - CLEANUP: remove my name and address from the copyright banner
6534 - DOC: mention in the readme that 1.9 is a stable version now
6535
Willy Tarreau2a7d6502018-12-16 22:35:06 +010065362018/12/16 : 1.9-dev11
6537 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
6538 - REGTEST/MINOR: remove double body specification for server txresp
6539 - BUG/MEDIUM: connections: Remove error flags when retrying.
6540 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
6541 - REGTEST/MINOR: remove health-check that can make the test fail
6542 - DOC: clarify that check-sni needs an argument.
6543 - DOC: refer to check-sni in the documentation of sni
6544 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
6545 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
6546 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
6547 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
6548 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
6549 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
6550 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
6551 - CLEANUP: hpack: no need to include chunk.h, only include buf.h
6552 - MINOR: hpack: simplify the len to bytes conversion
6553 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
6554 - MINOR: hpack: optimize header encoding for short names
6555 - CONTRIB: hpack: add a compressed stream generator for the encoder
6556 - MEDIUM: hpack: make it possible to encode any static header name
6557 - MINOR: hpack: move the length computation and encoding functions to .h
6558 - MINOR: hpack: provide a function to encode a short indexed header
6559 - MINOR: hpack: provide a function to encode a long indexed header
6560 - MINOR: hpack: provide new functions to encode the ":status" header
6561 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
6562 - MINOR: hpack: provide a function to encode an HTTP method
6563 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
6564 - MINOR: hpack: provide a function to encode an HTTP scheme
6565 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
6566 - MINOR: hpack: provide a function to encode an HTTP path
6567 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
6568 - REGTEST: add the HTTP rules test involving HTX processing
6569 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
6570 - MEDIUM: cli: rework the CLI proxy parser
6571 - MINOR: cli: parse prompt command in the CLI proxy
6572 - MINOR: cli: implements 'quit' in the CLI proxy
6573 - BUG/MINOR: cli: wait for payload data even without prompt
6574 - MEDIUM: cli: handle payload in CLI proxy
6575 - MINOR: cli: use pcli_flags for prompt activation
6576 - MINOR: compression: Rename the function check_legacy_http_comp_flt()
6577 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
6578 - MINOR: cache: Register the cache as a data filter only if response is cacheable
6579 - MEDIUM: cache/htx: Add the HTX support into the cache
6580 - MINOR: cache: Improve and simplify the cache configuration check
6581 - MINOR: filters: Export the name of known filters
6582 - MEDIUM: cache/compression: Add a way to safely combined compression and cache
6583 - MEDIUM: cache: Require an explicit filter declaration if other filters are used
6584 - REORG: htx: merge types+proto into common/htx.h
6585 - REORG: http: create http_msg.c to place there some legacy HTTP parts
6586 - REORG: h1: move legacy http functions to http_msg.c
6587 - REORG: h1: move the h1_state definition to proto_http
6588 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
6589 - REORG: h1: merge types+proto into common/h1.h
6590 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
6591 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
6592 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
6593 - BUG/MINOR: mux-h2: refrain from muxing during the preface
6594 - BUG/MINOR: mux-h2: advertise a larger connection window size
6595 - DOC: master CLI documentation in management.txt
6596 - MINOR: mux-h2: avoid copying large blocks into full buffers
6597 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
6598 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
6599 - MINOR: cli: change 'show proc' output of old processes
6600 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
6601 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
6602 - BUG: dns: Prevent out-of-bounds read in dns_read_name()
6603 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
6604 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
6605 - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
6606 - REGTEST: the cache regtest requires haproxy 1.9
6607 - MEDIUM: cli: store CLI level in the appctx
6608 - MEDIUM: cli: show and change CLI permissions
6609 - CLEANUP: cli: use dedicated define instead of appctx ones
6610 - MEDIUM: cli: handle CLI level from the master CLI
6611 - BUG/MEDIUM: cli: handle correctly prefix and payload
6612 - BUILD: Makefile: Implements the help target
6613 - REGTESTS: adjust the http-rules regtest to support window updates
6614 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
6615 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
6616 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
6617 - MEDIUM: mux: Add an optional "reset" method.
6618 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
6619 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
6620 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
6621 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
6622 - MEDIUM: htx: Try to take a connection over if it has no owner.
6623 - REGTEST: Reg testing improvements.
6624 - REGTEST: Add a first test for health-checks.
6625 - REGTEST: Reg test for "check" health-check option.
6626 - REGTEST: level 1 health-check test 2.
6627 - REGTEST: Add miscellaneous reg tests for health-checks.
6628 - REGTEST: add a few HTTP messaging tests
6629 - MINOR: lb: make the leastconn algorithm more accurate
6630 - REGTEST: fix missing space in checks/s00001
6631 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
6632 - BUG/MEDIUM: cache: fix random crash on filter parser's error path
6633 - MINOR: connection: realign empty buffers in muxes, not transport layers
6634 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
6635 - MINOR: backend: count the number of connect and reuse per server and per backend
6636 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
6637 - MINOR: tools: increase the number of ITOA strings to 16
6638 - MINOR: cache: report the number of cache lookups and cache hits
6639 - MEDIUM: tasks: check the global task mask instead of the thread number
6640 - MINOR: mworker: set all_threads_mask and pid_bit to 1
6641 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
6642 - BUG/MINOR: stats: Parse post data for HTX streams
6643 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
6644 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
6645 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
6646 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
6647 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
6648 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
6649 - MINOR: lua: Remove useless check on the messages state in HTTP functions
6650 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
6651 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
6652 - MINOR: mworker/cli: indicate in the master prompt when a reload failed
6653 - MINOR: cli: implements 'reload' on master CLI
6654 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
6655 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
6656 - BUG/MAJOR: backend: only update server's counters when the server exists
6657 - MINOR: tools: preset the port of fd-based "sockets" to zero
6658 - BUG/MINOR: log: fix logging to both FD and IP
6659 - REGTEST: Add a reg test for HTTP cookies.
6660 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
6661 - BUILD: thread: properly report multi-thread support
6662 - BUG/MINOR: logs: leave startup-logs global and not per-thread
6663 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
6664 - BUG/MAJOR: compression/cache: Make it really works with these both filters
6665 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
6666 - MEDIUM: proxy: Set http-reuse safe as default.
6667 - MEDIUM: servers: Add a command to limit the number of idling connections.
6668 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
6669 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
6670 - MEDIUM: mux: provide the session to the init() and attach() method.
6671 - MEDIUM: sessions: Don't keep an infinite number of idling connections.
6672 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
6673 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
6674 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
6675 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
6676 - MINOR: pools: Cast to volatile int * instead of int *.
6677 - MINOR: debug: make the ABORT_NOW macro use a volatile int
6678 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
6679 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
6680 - DOC: clarify the agent-check status line syntax
6681 - BUG/MAJOR: hpack: fix length check for short names encoding
6682 - DOC: split the README into README + INSTALL
6683
Willy Tarreau72e92272018-12-08 16:20:55 +010066842018/12/08 : 1.9-dev10
6685 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
6686 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
6687 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
6688 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
6689 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
6690 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
6691 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
6692 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
6693 - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
6694 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
6695 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
6696 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
6697 - BUG/MINOR: proto_htx: Truncate the request when an error is detected
6698 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
6699 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
6700 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
6701 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
6702 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
6703 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
6704 - BUG/MEDIUM: h1: Correctly report used data with no len.
6705 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
6706 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
6707 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
6708 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
6709 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
6710 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
6711 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
6712 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
6713 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
6714 - MEDIUM: htx: Rework conversion from a buffer to an htx structure
6715 - MEDIUM: channel/htx: Add functions for forward HTX data
6716 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
6717 - CLEANUP: htx: Fix indentation here and there in HTX files
6718 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
6719 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
6720 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
6721 - MINOR: mux-h1: Drain obuf if the output is closed after sending data
6722 - BUG/MEDIUM: mworker: stop every tasks in the master
6723 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
6724 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
6725 - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
6726 - MINOR: stream-int: add a new blocking condition on the remote connection
6727 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
6728 - BUG/MEDIUM: lua: block on remote connection establishment
6729 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
6730 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
6731 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
6732 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
6733 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
6734 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
6735 - REGTEST: Move LUA reg test 4 to level 1.
6736 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
6737 - MEDIUM: ist: always turn header names to lower case
6738 - MINOR: h2: don't turn HTX header names to lower case anymore
6739 - MEDIUM: ist: use local conversion arrays to case conversion
6740 - MINOR: htx: switch to case sensitive search of lower case header names
6741 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
6742 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
6743 - REGTEST: fix the Lua test file name in test lua/h00002 :-)
6744 - REGTEST: add a basic test for HTTP rules manipulating headers
6745 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
6746 - MINOR: sample: add bc_http_major
6747 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
6748 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
6749 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
6750 - MINOR: compiler: add a new macro ALREADY_CHECKED()
6751 - BUILD: h2: mark the start line already checked to avoid warnings
6752 - BUG/MINOR: mux-h1: Remove the connection header when it is useless
6753
Willy Tarreauda7e3be2018-12-02 19:31:37 +010067542018/12/02 : 1.9-dev9
6755 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
6756 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
6757 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
6758 - MINOR: compression: always create the compression pool
6759 - BUG/MEDIUM: mworker: fix FD leak upon reload
6760 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
6761 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
6762 - MINOR: initcall: introduce a way to register init functions to call at boot
6763 - MINOR: init: process all initcalls in order at boot time
6764 - MEDIUM: init: convert all trivial registration calls to initcalls
6765 - MINOR: thread: provide a set of lock initialisers
6766 - MINOR: threads: add new macros to declare self-initializing locks
6767 - MEDIUM: init: use self-initializing spinlocks and rwlocks
6768 - MINOR: initcall: apply initcall to all register_build_opts() calls
6769 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
6770 - MINOR: initcall: use initcalls for section parsers
6771 - MINOR: memory: add a callback function to create a pool
6772 - MEDIUM: init: use initcall for all fixed size pool creations
6773 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
6774 - MEDIUM: initcall: use initcalls for a few initialization functions
6775 - MEDIUM: memory: make the pool cache an array and not a thread_local
6776 - MINOR: ssl: free ctx when libssl doesn't support NPN
6777 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
6778 - MINOR: h2: make struct h2_ops static
6779 - BUG/MEDIUM: mworker: avoid leak of client socket
6780 - REORG: mworker: declare master variable in global.h
6781 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
6782 - CLEANUP: http: Fix typo in init_http's comment
6783 - BUILD: Makefile: Disable -Wcast-function-type if it exists.
6784 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
6785 - REGTEST/MINOR: script: add run-regtests.sh script
6786 - REGTEST: Add a basic test for the cache.
6787 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
6788 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
6789 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
6790 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
6791 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
6792 - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
6793 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
6794 - REGTEST: Fix several issues.
6795 - REGTEST: lua: check socket functionality from a lua-task
6796 - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
6797 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
6798 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
6799 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
6800 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
6801 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
6802 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
6803 - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
6804 - MAJOR: sessions: Store multiple outgoing connections in the session.
6805 - MEDIUM: session: Steal owner-less connections on end of transaction.
6806 - MEDIUM: server: Be smarter about deciding to reuse the last server.
6807 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
6808 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
6809 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
6810 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
6811 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
6812 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
6813 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
6814 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
6815 - BUG/MINOR: connection: report mux modes when HTX is supported
6816 - MINOR: htx: add a function to cut the beginning of a DATA block
6817 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
6818 - MINOR: mux-h1: Implement get_cs_info() callback
6819 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
6820 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
6821 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
6822 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
6823 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
6824 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
6825 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
6826 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
6827 - MINOR: htx: Add function to add an HTX block just before another one
6828 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
6829 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
6830 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
6831 - MEDIUM: htx: Change htx_sl to be a struct instead of an union
6832 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
6833 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
6834 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
6835 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
6836 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
6837 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
6838 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
6839 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
6840 - MINOR: proto_htx: Send valid HTX message to send 30x responses
6841 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
6842 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
6843 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
6844 - MINOR: mux-h1: Capture bad H1 messages
6845 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
6846 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
6847 - MINOR: flt_trace: Adapt to be compatible with the HTX representation
6848 - MEDIUM: compression: Adapt to be compatible with the HTX representation
6849 - MINOR: h2: implement H2->HTX request header frame transcoding
6850 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
6851 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
6852 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
6853 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
6854 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
6855 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
6856 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
6857 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
6858 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
6859 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
6860 - MINOR: listener: the mux_proto entry in the bind_conf is const
6861 - MINOR: connection: create conn_get_best_mux_entry()
6862 - MINOR: server: the mux_proto entry in the server is const
6863 - MINOR: config: make sure to associate the proper mux to bind and servers
6864 - MINOR: hpack: add ":path" to the list of common header fields
6865 - MINOR: h2: add new functions to produce an HTX message from an H2 response
6866 - MINOR: mux-h2: mention that the mux is compatible with both sides
6867 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
6868 - MEDIUM: mux-h2: start to create the outgoing mux
6869 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
6870 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
6871 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
6872 - MEDIUM: mux-h2: Implement h2_attach().
6873 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
6874 - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
6875 - MINOR: connection: Fix a comment.
6876 - MINOR: mux: add a "max_streams" method.
6877 - MEDIUM: servers: Add a way to keep idle connections alive.
6878 - CLEANUP: fix typos in the htx subsystem
6879 - CLEANUP: Fix typo in the chunk headers file
6880 - CLEANUP: Fix typos in the h1 subsystem
6881 - CLEANUP: Fix typos in the h2 subsystem
6882 - CLEANUP: Fix a typo in the mini-clist header
6883 - CLEANUP: Fix a typo in the proto_htx subsystem
6884 - CLEANUP: Fix typos in the proto_tcp subsystem
6885 - CLEANUP: Fix a typo in the signal subsystem
6886 - CLEANUP: Fix a typo in the session subsystem
6887 - CLEANUP: Fix a typo in the queue subsystem
6888 - CLEANUP: Fix typos in the shctx subsystem
6889 - CLEANUP: Fix typos in the socket pair protocol subsystem
6890 - CLEANUP: Fix typos in the map management functions
6891 - CLEANUP: Fix typo in the fwrr subsystem
6892 - CLEANUP: Fix typos in the cli subsystem
6893 - CLEANUP: Fix typo in the 51d subsystem
6894 - CLEANUP: Fix a typo in the base64 subsystem
6895 - CLEANUP: Fix a typo in the connection subsystem
6896 - CLEANUP: Fix a typo in the protocol header file
6897 - CLEANUP: Fix a typo in the checks header file
6898 - CLEANUP: Fix typos in the file descriptor subsystem
6899 - CLEANUP: Fix a typo in the listener subsystem
6900 - BUG/MINOR: lb-map: fix unprotected update to server's score
6901 - BUILD: threads: fix minor build warnings when threads are disabled
6902
Willy Tarreau0b936ad2018-11-25 09:16:46 +010069032018/11/25 : 1.9-dev8
6904 - REORG: config: extract the global section parser into cfgparse-global
6905 - REORG: config: extract the proxy parser into cfgparse-listen.c
6906 - BUILD: update the list of supported targets and compilers in makefile and readme
6907 - BUILD: reorder the objects in the makefile
6908 - BUILD: Makefile: make "V=1" show some of the commands that are executed
6909 - BUILD: Makefile: add the quiet mode to a few more targets
6910 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
6911 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
6912 - MINOR: cli: format `show proc` to be more readable
6913 - MINOR: cli: displays uptime in `show proc`
6914 - MINOR: cli: show master information in 'show proc'
6915 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
6916 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
6917 - BUG/MINOR: mux-h1: Enable keep-alive on server side
6918 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
6919 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
6920 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
6921 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
6922 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
6923 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
6924 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
6925 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
6926 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
6927 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
6928 - MEDIUM: mworker: wait mode use standard init code path
6929 - MINOR: log: introduce ha_notice()
6930 - MINOR: mworker: use ha_notice to announce a new worker
6931 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
6932 - MINOR: cli: add mworker_accept_wrapper to 'show fd'
6933 - MEDIUM: signal: signal_unregister() removes every handlers
6934 - BUG/MEDIUM: mworker: unregister the signals of main()
6935 - MINOR: cli: add a few missing includes in proto/cli.h
6936 - REORG: time/activity: move activity measurements to activity.{c,h}
6937 - MINOR: activity: report the average loop time in "show activity"
6938 - MINOR: activity: add configuration and CLI support for "profiling.tasks"
6939 - MEDIUM: tasks: collect per-task CPU time and latency
6940 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
6941 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
6942 - BUG/MINOR: cli: Fix memory leak
6943 - BUG/MINOR: mworker: fix FD leak and memory leak in error path
6944 - MINOR: poller: move the call of tv_update_date() back to the pollers
6945 - MINOR: polling: add an option to support busy polling
6946 - MINOR: server: Add "alpn" and "npn" keywords.
6947 - MEDIUM: connection: Don't bother reactivating polling after connection retry.
6948 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
6949 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
6950 - MINOR: servers: Free [idle|safe|priv]_conns on exit.
6951 - REGTEST: add the option to test only a specific set of files
6952 - REGTEST: add a test for connections to a "dispatch" address
6953 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
6954 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
6955 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
6956 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
6957 - MEDIUM: servers: Store the connection in the SI until we have a mux.
6958 - BUG/MEDIUM: h2: wake the processing task up after demuxing
6959 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
6960
Willy Tarreau5c0e41b2018-11-18 22:33:00 +010069612018/11/18 : 1.9-dev7
6962 - BUILD: cache: fix a build warning regarding too large an integer for the age
6963 - CLEANUP: fix typos in the comments of the Makefile
6964 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
6965 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
6966 - CLEANUP: fix typos in comments for contrib/spoa_example
6967 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
6968 - DOC: Fix typos in README and CONTRIBUTING
6969 - MINOR: log: slightly improve error message syntax on log failure
6970 - DOC: logs: the format directive was missing from the second log part
6971 - MINOR: log: report the number of dropped logs in the stats
6972 - MEDIUM: log: add support for logging to existing file descriptors
6973 - MEDIUM: log: support a new "short" format
6974 - MEDIUM: log: add a new "raw" format
6975 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
6976 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
6977 - MINOR: namespaces: don't build namespace.c if disabled
6978 - BUILD/MEDIUM: threads/affinity: DragonFly build fix
6979 - MINOR: http: Add new "early-hint" http-request action.
6980 - MINOR: http: Make new "early-hint" http-request action really be parsed.
6981 - MINOR: http: Implement "early-hint" http request rules.
6982 - MINOR: doc: Add information about "early-hint" http-request action.
6983 - DOC: early-hints: fix truncated line.
6984 - MINOR: mworker: only close std{in,out,err} in daemon mode
6985 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
6986 - BUG/MEDIUM: Make sure stksess is properly aligned.
6987 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
6988 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
6989 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
6990 - CONTRIB: debug: fix build related to conn_stream flags change
6991 - REGTEST: fix scripts 1 and 3 to accept development version
6992 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
6993 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
6994 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
6995 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
6996 - MEDIUM: jobs: support unstoppable jobs for soft stop
6997 - MEDIUM: listeners: support unstoppable listener
6998 - MEDIUM: cli: worker socketpair is unstoppable
6999 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
7000 - MINOR: stream: move the conn_stream specific calls to the stream-int
7001 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
7002 - CLEANUP: h2: minimum documentation for recent API changes
7003 - MINOR: mux: implement a get_first_cs() method
7004 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
7005 - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
7006 - MINOR: stream-int: expand the flags to 32-bit
7007 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
7008 - MINOR: stream-int: introduce new SI_FL_RXBLK flags
7009 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
7010 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
7011 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
7012 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
7013 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
7014 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
7015 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
7016 - MINOR: stream-int: automatically mark applets as ready if they block on the channel
7017 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
7018 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
7019 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
7020 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
7021 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
7022 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
7023 - MEDIUM: connections: Wait until the connection is established to try to recv.
7024 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
7025 - MINOR: mux: Add a new "avail_streams" method.
7026 - MINOR: mux: Add a destroy() method.
7027 - MINOR: sessions: Start to store the outgoing connection in sessions.
7028 - MAJOR: connections: Detach connections from streams.
7029 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
7030 - MINOR: htx: Add proto_htx.c file
7031 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
7032 - MINOR: http: Add standalone functions to parse a start-line or a header
7033 - MINOR: http: Call http_send_name_header with the stream instead of the txn
7034 - MINOR: conn_stream: Add a flag to notify the SI some data were received
7035 - MINOR: http: Add macros to check if a stream uses the HTX representation
7036 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
7037 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
7038 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
7039 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
7040 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
7041 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
7042 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
7043 - MINOR: proto_htx: Add some functions to handle HTX messages
7044 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
7045 - MINOR: http_htx: Add functions to replace part of the start-line
7046 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
7047 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
7048 - MINOR: proto_htx: Add the internal function htx_del_hdr_value
7049 - MINOR: proto_htx: Add the internal function htx_fmt_res_line
7050 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
7051 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
7052 - MINOR: proto_htx: Add function to build and send HTTP 103 responses
7053 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
7054 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
7055 - MINOR: proto_htx: Add functions to manage cookies on HTX messages
7056 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
7057 - MINOR: proto_htx: Add functions htx_send_name_header
7058 - MINOR: proto_htx: Add functions htx_perform_server_redirect
7059 - MINOR: proto_htx: Add functions to handle the stats applet
7060 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
7061 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
7062 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
7063 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
7064 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
7065 - MINOR: http_fetch: Add smp_prefetch_htx
7066 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
7067 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
7068 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
7069 - MINOR: stream: Don't reset sov value with HTX messages
7070 - MEDIUM: mux-h1: Handle errors and timeouts in the stream
7071 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
7072 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
7073 - CLEANUP: Fix some typos in the haproxy subsystem
7074 - CLEANUP: Fix typos in the dns subsystem
7075 - CLEANUP: Fix typos in the pattern subsystem
7076 - CLEANUP: fix 2 typos in the xxhash subsystem
7077 - CLEANUP: fix a few typos in the comments of the server subsystem
7078 - CLEANUP: fix a misspell in tests/filltab25.c
7079 - CLEANUP: fix a typo found in the stream subsystem
7080 - CLEANUP: fix typos in comments in ebtree
7081 - CLEANUP: fix typos in reg-tests
7082 - CLEANUP: fix typos in the comments of the vars subsystem
7083 - CLEANUP: fix typos in the hlua_fcn subsystem
7084 - CLEANUP: fix typos in the proto_http subsystem
7085 - CLEANUP: fix typos in the proxy subsystem
7086 - CLEANUP: fix typos in the ssl_sock subsystem
7087 - DOC: Fix typos in different subsections of the documentation
7088 - DOC: fix a few typos in the documentation
7089 - MINOR: Fix an error message thrown when we run out of memory
7090 - MINOR: Fix typos in error messages in the proxy subsystem
7091 - MINOR: fix typos in the examples files
7092 - CLEANUP: Fix a typo in the stats subsystem
7093 - CLEANUP: Fix typos in the acl subsystem
7094 - CLEANUP: Fix typos in the cache subsystem
7095 - CLEANUP: Fix typos in the cfgparse subsystem
7096 - CLEANUP: Fix typos in the filters subsystem
7097 - CLEANUP: Fix typos in the http subsystem
7098 - CLEANUP: Fix typos in the log subsystem
7099 - CLEANUP: Fix typos in the peers subsystem
7100 - CLEANUP: Fix typos in the regex subsystem
7101 - CLEANUP: Fix typos in the sample subsystem
7102 - CLEANUP: Fix typos in the spoe subsystem
7103 - CLEANUP: Fix typos in the standard subsystem
7104 - CLEANUP: Fix typos in the stick_table subsystem
7105 - CLEANUP: Fix typos in the task subsystem
7106 - MINOR: Fix typo in error message in the standard subsystem
7107 - CLEANUP: fix typos in the comments of hlua
7108 - MINOR: Fix typo in the error 500 output of hlua
7109 - MINOR: Fix a typo in a warning message in the spoe subsystem
7110
Willy Tarreau96079492018-11-11 10:43:39 +010071112018/11/11 : 1.9-dev6
7112 - BUG/MEDIUM: tools: fix direction of my_ffsl()
7113 - BUG/MINOR: cli: forward the whole command on master CLI
7114 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
7115 - MINOR: compat: automatically detect support for crypt_r()
7116 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
7117 - DOC: split the http-request actions in their own section
7118 - DOC: split the http-response actions in their own section
7119 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
7120 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
7121 - MINOR: stats: report the number of active jobs and listeners in "show info"
7122 - MINOR: stats: report the number of active peers in "show info"
7123 - MINOR: stats: report the number of currently connected peers
7124 - MINOR: cli: show the number of reload in 'show proc'
7125 - MINOR: cli: can't connect to the target CLI
7126 - MEDIUM: mworker: does not create the CLI proxy when no listener
7127 - MINOR: mworker: displays more information when leaving
7128 - MEDIUM: mworker: exit with the incriminated exit code
7129 - MINOR: mworker: displays a message when a worker is forked
7130 - MEDIUM: mworker: leave when the master die
7131 - CLEANUP: stream-int: retro-document si_cs_io_cb()
7132 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
7133 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
7134 - BUG/MEDIUM: cli: crash when trying to access a worker
7135 - DOC: restore note about "independant" typo
7136 - MEDIUM: stream: implement stream_buf_available()
7137 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
7138 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
7139 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
7140 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
7141 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
7142 - MINOR: stream-int: make it clear that si_ops cannot be null
7143 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
7144 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
7145 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
7146 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
7147 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
7148 - MINOR: stream-int: replace si_update() with si_update_both()
7149 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
7150 - CLEANUP: stream-int: remove the now unused si->update() function
7151 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
7152 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
7153 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
7154
Willy Tarreaubddf2922018-10-28 20:39:31 +010071552018/10/28 : 1.9-dev5
7156 - BUILD: Makefile: add the new ERR variable to force -Werror
7157 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
7158 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
7159 - CLEANUP: http: Remove the unused function http_find_header
7160 - MINOR: h1: Export some functions parsing the value of some HTTP headers
7161 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
7162 - MINOR: proxy: add a new option "http-use-htx"
7163 - BUG/MEDIUM: pools: fix the minimum allocation size
7164 - MINOR: shctx: Shared objects block by block allocation.
7165 - MINOR: cache: Larger HTTP objects caching.
7166 - MINOR: shctx: Add a maximum object size parameter.
7167 - MINOR: cache: Add "max-object-size" option.
7168 - DOC: Update about the cache support for big objects.
7169 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
7170 - BUG/MINOR: cache: Wrong usage of shctx_init().
7171 - BUG/MINOR: ssl: Wrong usage of shctx_init().
7172 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
7173 - MINOR: shctx: Change max. object size type to unsigned int.
7174 - DOC: cache: Missing information about "total-max-size" and "max-object-size"
7175 - CLEANUP: tools: fix misleading comment above function LIM2A
7176 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
7177 - BUG/MINOR: only mark connections private if NTLM is detected
7178 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
7179 - MINOR: stream: don't prune variables if the list is empty
7180 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
7181 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
7182 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
7183 - MEDIUM: stream: don't try to send first in process_stream()
7184 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
7185 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
7186 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
7187 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
7188 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
7189 - MINOR: mworker: number of reload in the life of a worker
7190 - MEDIUM: mworker: each worker socketpair is a CLI listener
7191 - REORG: mworker: move struct mworker_proc to global.h
7192 - MINOR: server: export new_server() function
7193 - MEDIUM: mworker: move proc_list gen before proxies startup
7194 - MEDIUM: mworker: add proc_list in global.h
7195 - MEDIUM: mworker: proxy for the master CLI
7196 - MEDIUM: mworker: create CLI listeners from argv[]
7197 - MEDIUM: cli: disable some keywords in the master
7198 - MEDIUM: mworker: find the server ptr using a CLI prefix
7199 - MEDIUM: cli: 'show proc' displays processus
7200 - MEDIUM: cli: implement 'mode cli' proxy analyzers
7201 - MINOR: cli: displays sockpair@ in "show cli sockets"
7202 - MEDIUM: cli: enable "show cli sockets" for the master
7203 - MINOR: cli: put @master @<relative pid> @!<pid> in the help
7204 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
7205 - MEDIUM: mworker: stop the master proxy in the workers
7206 - MEDIUM: channel: reorder the channel analyzers for the cli
7207 - MEDIUM: cli: write a prompt for the CLI proxy of the master
7208 - MINOR: cli: helper to write an response message and close
7209 - MINOR: cache: Add "Age" header.
7210 - REGTEST: make the IP+port logging test more reliable
7211 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
7212 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
7213 - BUG/MINOR: backend: assign the wait list after the error check
7214
Willy Tarreau01fbe742018-10-21 20:28:30 +020072152018/10/21 : 1.9-dev4
7216 - BUILD: Allow configuration of pcre-config path
7217 - DOC: clarify force-private-cache is an option
7218 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
7219 - REORG: http: move the code to different files
7220 - REORG: http: move HTTP rules parsing to http_rules.c
7221 - CLEANUP: http: remove some leftovers from recent cleanups
7222 - BUILD: Makefile: add a "make opts" target to simply show the build options
7223 - BUILD: Makefile: speed up compiler options detection
7224 - BUG/MINOR: backend: check that the mux installed properly
7225 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
7226 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
7227 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
7228 - MINOR: ssl: cleanup old openssl API call
7229 - MINOR: ssl: generate-certificates for BoringSSL
7230 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
7231 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
7232 - CLEANUP: haproxy: Remove unused variable
7233 - CLEANUP: h1: Fix debug warnings for h1 headers
7234 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
7235 - MEDIUM: task: perform a single tree lookup per run queue batch
7236 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
7237 - BUG/MINOR: threads: move declaration of capabilities to config.h
7238 - OPTIM: tools: optimize my_ffsl() for x86_64
7239 - BUG/MINOR: h2: null-deref
7240 - BUG/MINOR: checks: queues null-deref
7241 - MINOR: connections: Introduce an unsubscribe method.
7242 - MEDIUM: connections: Change struct wait_list to wait_event.
7243 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
7244 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
7245 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
7246 - MINOR: http: Move comment about some HTTP macros in the right header file
7247 - MINOR: stats: Add missing include
7248 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
7249 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
7250 - MEDIUM: http: Ignore http-tunnel option on backend
7251 - MINOR: http: Use same flag for httpclose and forceclose options
7252 - MINOR: h1: Add EOH marker during headers parsing
7253 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
7254 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
7255 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
7256 - MINOR: log: make sess_log() support sess=NULL
7257 - MINOR: chunk: add chunk_cpy() and chunk_cat()
7258 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
7259 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
7260 - MINOR: h2: don't try to send data before preface
7261 - MINOR: h2: unify the mux init function
7262 - MINOR: h2: retrieve the front proxy from the caller instead of the session
7263 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
7264 - MINOR: h2: add a new flag to quickly distinguish front vs back connection
7265 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
7266 - BUG/MEDIUM: stream: don't crash on out-of-memory
7267 - BUILD: compiler: add a new statement "__unreachable()"
7268 - BUILD: lua: silence some compiler warnings about potential null derefs
7269 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
7270 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
7271 - BUILD: stick-table: make sure not to fail on task_new() during initialization
7272 - BUILD: peers: check allocation error during peers_init_sync()
7273 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
7274 - MINOR: config: use atleast2() instead of my_popcountl() where relevant
7275 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
7276 - MAJOR: tasks: create per-thread wait queues
7277 - OPTIM: tasks: group all tree roots per cache line
7278 - DOC: Fix a few typos
7279 - MINOR: pools: allocate most memory pools from an array
7280 - MINOR: pools: split pool_free() in the lockfree variant
7281 - MEDIUM: pools: implement a thread-local cache for pool entries
7282 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
7283 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
7284 - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
7285 - MINOR: lua: all functions calling lua_yieldk() may return
7286 - BUILD: lua: silence some compiler warnings after WILL_LJMP
7287 - BUILD: Makefile: silence an option conflict warning with clang
7288 - MINOR: server: Use memcpy() instead of strncpy().
7289 - CLEANUP: state-file: make the path concatenation code a bit more consistent
7290 - MINOR: build: Disable -Wstringop-overflow.
7291 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
7292 - MINOR: peers: use defines instead of enums to appease clang.
7293 - DOC: fix reference to map files in MAINTAINERS
7294 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
7295 - MINOR: poller: move time and date computation out of the pollers
7296 - BUILD: memory: fix pointer declaration for atomic CAS
7297 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
7298 - MINOR: time: add now_mono_time() and now_cpu_time()
7299 - MEDIUM: time: measure the time stolen by other threads
7300 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7301 - BUILD: compiler: rename __unreachable() to my_unreachable()
7302 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
7303 - BUILD: memory: fix free_list pointer declaration again for atomic CAS
7304 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
7305 - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
7306 - BUG/MEDIUM: stream: Make sure polling is right on retry.
7307 - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
7308 - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
7309 - MINOR: streams: Call tasklet_free() after si_release_endpoint().
7310 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
7311 - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
7312 - MINOR: ebtree: save 8 bytes in struct eb32sc_node
7313
Willy Tarreau27010f02018-09-29 20:17:33 +020073142018/09/29 : 1.9-dev3
7315 - BUG/MINOR: h1: don't consider the status for each header
7316 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
7317 - MINOR: h1: parse the Connection header field
7318 - DOC: Fix typos in lua documentation
7319 - MINOR: h1: Add H1_MF_XFER_LEN flag
7320 - MINOR: http: add http_hdr_del() to remove a header from a list
7321 - MINOR: h1: add headers to the list after controls, not before
7322 - MEDIUM: h1: better handle transfer-encoding vs content-length
7323 - MEDIUM: h1: deduplicate the content-length header
7324 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
7325 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
7326 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
7327 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
7328 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
7329 - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
7330 - MINOR: stream-int: make si_appctx() never fail
7331 - BUILD: ssl_sock: remove build warnings on potential null-derefs
7332 - BUILD: stats: remove build warnings on potential null-derefs
7333 - BUILD: stream: address null-deref build warnings at -Wextra
7334 - BUILD: http: address a couple of null-deref warnings at -Wextra
7335 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
7336 - BUILD: dns: fix null-deref build warning at -Wextra
7337 - BUILD: checks: silence a null-deref build warning at -Wextra
7338 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
7339 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
7340 - BUILD: sockpair: silence a build warning at -Wextra
7341 - BUILD: build with -Wextra and sort out certain warnings
7342 - BUG/CRITICAL: hpack: fix improper sign check on the header index value
7343 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
7344 - DOC: Update configuration doc about the maximum number of stick counters.
7345 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
7346 - MINOR: h2/stream_interface: Reintroduce te wake() method.
7347 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
7348 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
7349 - MEDIUM: lua: Add stick table support for Lua.
7350
Willy Tarreau253006d2018-09-12 18:59:48 +020073512018/09/12 : 1.9-dev2
7352 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
7353 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
7354 - BUG/MEDIUM: servers: check the queues once enabling a server
7355 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
7356 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
7357 - CLEANUP: backend: Move mux install to call it at only one place
7358 - MINOR: conn_stream: add an tx buffer to the conn_stream
7359 - MINOR: conn_stream: add cs_send() as a default snd_buf() function
7360 - MINOR: backend: Try to find the best mux for outgoing connections
7361 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
7362 - MINOR: mux: Add info about the supported side in alpn_mux_list structure
7363 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
7364 - MINOR: mux: Print the list of existing mux protocols during HA startup
7365 - MEDIUM: checks: use the new rendez-vous point to spread check result
7366 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
7367 - MINOR: threads: remove the previous synchronization point
7368 - MAJOR: server: make server state changes synchronous again
7369 - CLEANUP: server: remove the update list and the update lock
7370 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
7371 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
7372 - MINOR: mux: Change get_mux_proto to get an ist as parameter
7373 - MINOR: mux: Improve the message with the list of existing mux protocols
7374 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
7375 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
7376 - MEDIUM: mux: Use the mux protocol specified on bind/server lines
7377 - BUG/MEDIUM: connection/mux: take care of serverless proxies
7378 - MINOR: queue: make sure the pendconn is released before logging
7379 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
7380 - MINOR: queue: store the queue index in the stream when enqueuing
7381 - MINOR: queue: replace the linked list with a tree
7382 - MEDIUM: add set-priority-class and set-priority-offset
7383 - MEDIUM: queue: adjust position based on priority-class and priority-offset
7384 - DOC: update the roadmap about priority queues
7385 - BUG/MINOR: ssl: empty connections reported as errors.
7386 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
7387 - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
7388 - MINOR: connections: Get rid of txbuf.
7389 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
7390 - MINOR: connections/mux: Add the wait reason(s) to wait_list.
7391 - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
7392 - MINOR: stream_interface: Give stream_interface its own wait_list.
7393 - MINOR: mux_h2: Don't use h2_send() as a callback.
7394 - MINOR: checks: Add event_srv_chk_io().
7395 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
7396 - BUG/MEDIUM: sessions: Don't use t->state.
7397 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
7398 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
7399 - BUG/MINOR: map: fix map_regm with backref
7400 - DOC: dns: explain set server ... fqdn requires resolver
7401 - DOC: add documentation for prio_class and prio_offset sample fetches.
7402 - DOC: ssl: Use consistent naming for TLS protocols
7403 - DOC: update the layering design notes
7404 - MINOR: tasks: Don't special-case when nbthreads == 1
7405 - MINOR: fd cache: And the thread_mask with all_threads_mask.
7406 - BUG/MEDIUM: lua: socket timeouts are not applied
7407 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
7408 - BUG/MEDIUM: server: update our local state before propagating changes
7409 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
7410 - DOC: server/threads: document which functions need to be called with/without locks
7411 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
7412 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
7413 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
7414 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
7415 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
7416 - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
7417 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
7418 - BUG/MEDIUM: connection: don't forget to always delete the list's head
7419 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
7420 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
7421 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
7422 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
7423 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
7424 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
7425 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
7426 - BUG/MEDIUM: connection: don't store recv() result into trash.data
7427 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
7428 - MINOR: chunk: remove impossible tests on negative chunk->data
7429 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
7430 - DOC: Fix spelling error in configuration doc
7431 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
7432 - REGTEST/MINOR: Add a new class of regression testing files.
7433 - BUG/MEDIUM: unix: provide a ->drain() function
7434 - MINOR: connection: make conn_sock_drain() work for all socket families
7435 - BUG/MINOR: lua: Bad HTTP client request duration.
7436 - REGEST/MINOR: Add reg testing files.
7437 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
7438 - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
7439 - BUG/MEDIUM: lua: reset lua transaction between http requests
7440 - MINOR: add be_conn_free sample fetch
7441 - MINOR: Add srv_conn_free sample fetch
7442 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
7443 - MINOR: checks: Call wake_srv_chk() when we can finally send data.
7444 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
7445 - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
7446 - REGTEST/MINOR: Add a reg testing file for 3e60b11.
7447 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
7448 - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
7449 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
7450 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
7451 - MINOR: tools: make date2str_log() take some consts
7452 - MINOR: thread: implement HA_ATOMIC_XADD()
7453 - BUG/MINOR: stream: use atomic increments for the request counter
7454 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
7455 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
7456 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
7457 - MINOR: log: move the log code to sess_build_logline() to add extra arguments
7458 - MINOR: log: make the backend fall back to the frontend when there's no stream
7459 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
7460 - MINOR: log: don't unconditionally pick log info from s->logs
7461 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
7462 - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
7463 - MINOR: log: do not dereference a null stream to access captures
7464 - MINOR: log: be sure not to dereference a null stream for a target
7465 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
7466 - MINOR: log: use NULL for the unique_id if there is no stream
7467 - MINOR: log: keep a copy of s->flags early to avoid a dereference
7468 - MINOR: log: use zero as the request counter if there is no stream
7469 - MEDIUM: log: make sess_build_logline() support being called with no stream
7470 - MINOR: log: provide a function to emit a log for a session
7471 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
7472 - BUG/MINOR: h1: fix buffer shift after realignment
7473 - MINOR: connection: make the initialization more consistent
7474 - MINOR: connection: add new function conn_get_proxy()
7475 - MINOR: connection: add new function conn_is_back()
7476 - MINOR: log: One const should be enough.
7477 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
7478 - BUG/MINOR: http/threads: atomically increment the error snapshot ID
7479 - MINOR: snapshot: restart on the event ID and not the stream ID
7480 - MINOR: snapshot: split the error snapshots into common and proto-specific parts
7481 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
7482 - MEDIUM: snapshot: implement a show() callback and use it for HTTP
7483 - MINOR: proxy: add a new generic proxy_capture_error()
7484 - MINOR: http: make the HTTP error capture rely on the generic proxy code
7485 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
7486 - REORG: cli: move the "show errors" handler from http to proxy
7487 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
7488 - MEDIUM: snapshots: dynamically allocate the snapshots
7489 - MEDIUM: snapshot: merge the captured data after the descriptor
7490 - MEDIUM: mworker: remove register/unregister signal functions
7491 - MEDIUM: mworker: use the haproxy poll loop
7492 - BUG/MINOR: mworker: no need to stop peers for each proxy
7493 - MINOR: mworker: mworker_cleanlisteners() delete the listeners
7494 - MEDIUM: mworker: block SIGCHLD until the master is ready
7495 - MEDIUM: mworker: never block SIG{TERM,INT} during reload
7496 - MEDIUM: startup: unify signal init between daemon and mworker mode
7497 - MINOR: mworker: don't deinit the poller fd when in wait mode
7498 - MEDIUM: mworker: master wait mode use its own initialization
7499 - MEDIUM: mworker: replace the master pipe by socketpairs
7500 - MINOR: mworker: keep and clean the listeners
7501 - MEDIUM: threads: close the thread-waker pipe during deinit
7502 - MEDIUM: mworker: call per_thread deinit in mworker_reload()
7503 - REORG: http: move the HTTP semantics definitions to http.h/http.c
7504 - REORG: http: move http_get_path() to http.c
7505 - REORG: http: move error codes production and processing to http.c
7506 - REORG: http: move the log encoding tables to log.c
7507 - REORG: http: move some header value processing functions to http.c
7508 - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
7509 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
7510 - MEDIUM: protocol: sockpair protocol
7511 - TESTS: add a python wrapper for sockpair@
7512 - BUG/MINOR: server: Crash when setting FQDN via CLI.
7513 - BUG/MINOR: h2: report asynchronous end of stream on closed connections
7514 - BUILD: fix build without thread
7515 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
7516 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
7517 - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
7518 - MEDIUM: connections: Get rid of the recv() method.
7519 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
7520 - MEDIUM: h2: always subscribe to receive if allowed.
7521 - MEDIUM: h2: Don't use a wake() method anymore.
7522 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
7523 - MINOR: connections: Add a "handle" field to wait_list.
7524 - MEDIUM: mux_h2: Revamp the send path when blocking.
7525 - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
7526 - MINOR: checks: Give checks their own wait_list.
7527 - MINOR: conn_streams: Remove wait_list from conn_streams.
7528 - REORG: h1: create a new h1m_state
7529 - MINOR: h1: add the restart offsets into struct h1m
7530 - MINOR: h1: remove the unused states from h1m_state
7531 - MINOR: h1: provide a distinct init() function for request and response
7532 - MINOR: h1: add a message flag to indicate that a message carries a response
7533 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
7534 - MINOR: h1: properly pre-initialize err_pos to -2
7535 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
7536 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
7537 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
7538 - MEDIUM: h1: make the parser support a pointer to a start line
7539 - MEDIUM: h1: let the caller pass the initial parser's state
7540 - MINOR: h1: make the message parser support a null <hdr> argument
7541 - MEDIUM: h1: support partial message parsing
7542 - MEDIUM: h1: remove the useless H1_MSG_BODY state
7543 - MINOR: h2: store the HTTP status into the H2S, not the H1M
7544 - MINOR: h1: remove the HTTP status from the H1M struct
7545 - MEDIUM: h1: implement the request parser as well
7546 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
7547 - MINOR: connection: pass the proxy when creating a connection
7548 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
7549 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
7550 - BUG/MAJOR: h2: reset the parser's state on mux buffer full
7551
Willy Tarreau65e94d12018-08-02 18:12:50 +020075522018/08/02 : 1.9-dev1
7553 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
7554 - DOC: cache: update sections and fix some typos
7555 - BUILD/MINOR: deviceatlas: enable thread support
7556 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
7557 - BUG/MEDIUM: ssl: don't allocate shctx several time
7558 - BUG/MEDIUM: cache: bad computation of the remaining size
7559 - BUILD: checks: don't include server.h
7560 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
7561 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
7562 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
7563 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
7564 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
7565 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
7566 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
7567 - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
7568 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
7569 - MINOR: config: report when "monitor fail" rules are misplaced
7570 - BUG/MINOR: mworker: fix validity check for the pipe FDs
7571 - BUG/MINOR: mworker: detach from tty when in daemon mode
7572 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
7573 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
7574 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
7575 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
7576 - BUG/MINOR: hpack: fix debugging output of pseudo header names
7577 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
7578 - BUG/MINOR: hpack: reject invalid header index
7579 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
7580 - BUG/MAJOR: h2: correctly check the request length when building an H1 request
7581 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
7582 - BUG/MINOR: h2: try to abort closed streams as soon as possible
7583 - BUG/MINOR: h2: ":path" must not be empty
7584 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
7585 - BUG/MINOR: h2: the TE header if present may only contain trailers
7586 - BUG/MEDIUM: h2: enforce the per-connection stream limit
7587 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
7588 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
7589 - BUG/MINOR: h2: properly check PRIORITY frames
7590 - BUG/MINOR: h2: reject response pseudo-headers from requests
7591 - BUG/MEDIUM: h2: remove connection-specific headers from request
7592 - BUG/MEDIUM: h2: do not accept upper case letters in request header names
7593 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
7594 - BUG/MINOR: action: Don't check http capture rules when no id is defined
7595 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
7596 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
7597 - BUG/MEDIUM: mworker: also close peers sockets in the master
7598 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
7599 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
7600 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
7601 - BUG/MEDIUM: h2: fix handling of end of stream again
7602 - MINOR: mworker: Update messages referencing exit-on-failure
7603 - MINOR: mworker: Improve wording in `void mworker_wait()`
7604 - CONTRIB: halog: Add help text for -s switch in halog program
7605 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
7606 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
7607 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
7608 - DOC: notifications: add precisions about thread usage
7609 - BUG/MEDIUM: lua/notification: memory leak
7610 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
7611 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
7612 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
7613 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
7614 - BUG/MEDIUM: h2: work around a connection API limitation
7615 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
7616 - MINOR: h2: store the demux padding length in the h2c struct
7617 - BUG/MEDIUM: h2: support uploading partial DATA frames
7618 - MINOR: h2: don't demand that a DATA frame is complete before processing it
7619 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
7620 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
7621 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
7622 - BUG/MEDIUM: h2: fix stream limit enforcement
7623 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
7624 - MINOR: sample: add len converter
7625 - BUG: MAJOR: lb_map: server map calculation broken
7626 - BUG: MINOR: http: don't check http-request capture id when len is provided
7627 - MINOR: sample: rename the "len" converter to "length"
7628 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
7629 - DOC/MINOR: intro: typo, wording, formatting fixes
7630 - MINOR: netscaler: respect syntax
7631 - MINOR: netscaler: remove the use of cip_magic only used once
7632 - MINOR: netscaler: rename cip_len to clarify its uage
7633 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
7634 - BUG/MAJOR: netscaler: address truncated CIP header detection
7635 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
7636 - MEDIUM: netscaler: do not analyze original IP packet size
7637 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
7638 - MINOR: spoe: add force-set-var option in spoe-agent configuration
7639 - CONTRIB: iprange: Fix compiler warning in iprange.c
7640 - CONTRIB: halog: Fix compiler warnings in halog.c
7641 - BUG/MINOR: h2: properly report a stream error on RST_STREAM
7642 - MINOR: mux: add flags to describe a mux's capabilities
7643 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
7644 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
7645 - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
7646 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
7647 - MINOR: http: adjust the list of supposedly cacheable methods
7648 - MINOR: http: update the list of cacheable status codes as per RFC7231
7649 - MINOR: http: start to compute the transaction's cacheability from the request
7650 - BUG/MINOR: http: do not ignore cache-control: public
7651 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
7652 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
7653 - MINOR: http: add a function to check request's cache-control header field
7654 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
7655 - BUG/MEDIUM: cache: replace old object on store
7656 - BUG/MEDIUM: cache: respect the request cache-control header
7657 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
7658 - BUG/MAJOR: connection: refine the situations where we don't send shutw()
7659 - BUG/MEDIUM: checks: properly set servers to stopping state on 404
7660 - BUG/MEDIUM: h2: properly handle and report some stream errors
7661 - BUG/MEDIUM: h2: improve handling of frames received on closed streams
7662 - DOC/MINOR: configuration: typo, formatting fixes
7663 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
7664 - BUG/MEDIUM: mworker: don't close stdio several time
7665 - MINOR: don't close stdio anymore
7666 - BUG/MEDIUM: http: don't automatically forward request close
7667 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
7668 - MINOR: h2: add a function to report pseudo-header names
7669 - DEBUG: hpack: make hpack_dht_dump() expose the output file
7670 - DEBUG: hpack: add more traces to the hpack decoder
7671 - CONTRIB: hpack: add an hpack decoder
7672 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
7673 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
7674 - BUILD: ssl: silence a warning when building without NPN nor ALPN support
7675 - CLEANUP: rbtree: remove
7676 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
7677 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
7678 - DOC: lua: Fix typos in comments of hlua_socket_receive
7679 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
7680 - BUG/MINOR: lua: Fix return value of Socket.settimeout
7681 - MINOR: dns: Handle SRV record weight correctly.
7682 - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
7683 - MINOR: hathreads: add support for gcc < 4.7
7684 - BUILD/MINOR: ancient gcc versions atomic fix
7685 - BUG/MEDIUM: stream: properly handle client aborts during redispatch
7686 - MINOR: spoe: add register-var-names directive in spoe-agent configuration
7687 - MINOR: spoe: Don't queue a SPOE context if nothing is sent
7688 - DOC: clarify the scope of ssl_fc_is_resumed
7689 - CONTRIB: debug: fix a few flags definitions
7690 - BUG/MINOR: poll: too large size allocation for FD events
7691 - MINOR: sample: add date_us sample
7692 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
7693 - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
7694 - MINOR: global/threads: move cpu_map at the end of the global struct
7695 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
7696 - MINOR: global: add some global activity counters to help debugging
7697 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
7698 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
7699 - BUG/MEDIUM: fd: maintain a per-thread update mask
7700 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
7701 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
7702 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
7703 - BUG/MEDIUM: threads/mworker: fix a race on startup
7704 - BUG/MINOR: mworker: only write to pidfile if it exists
7705 - MINOR: threads: Fix build when we're not compiling with threads.
7706 - BUG/MINOR: threads: always set an owner to the thread_sync pipe
7707 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
7708 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
7709 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
7710 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
7711 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
7712 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
7713 - CLEANUP: sample: Fix comment encoding of sample.c
7714 - CLEANUP: sample: Fix outdated comment about sample casts functions
7715 - BUG/MINOR: sample: Fix output type of c_ipv62ip
7716 - CLEANUP: Fix typo in ARGT_MSK6 comment
7717 - CLEANUP: standard: Use len2mask4 in str2mask
7718 - MINOR: standard: Add str2mask6 function
7719 - MINOR: config: Add support for ARGT_MSK6
7720 - MEDIUM: sample: Add IPv6 support to the ipmask converter
7721 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
7722 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
7723 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
7724 - MINOR: fd: don't report maxfd in alert messages
7725 - MEDIUM: polling: start to move maxfd computation to the pollers
7726 - CLEANUP: fd/threads: remove the now unused fdtab_lock
7727 - MINOR: poll: more accurately compute the new maxfd in the loop
7728 - CLEANUP: fd: remove the unused "new" field
7729 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
7730 - MEDIUM: select: make use of hap_fd_* functions
7731 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
7732 - MEDIUM: select: don't use the old FD state anymore
7733 - MEDIUM: poll: don't use the old FD state anymore
7734 - MINOR: fd: pass the iocb and owner to fd_insert()
7735 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
7736 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
7737 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
7738 - DOC: don't suggest using http-server-close
7739 - MINOR: introduce proxy-v2-options for send-proxy-v2
7740 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
7741 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
7742 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
7743 - MINOR: spoe: Always link a SPOE context with the applet processing it
7744 - MINOR: spoe: Replace sending_rate by a frequency counter
7745 - MINOR: spoe: Count the number of frames waiting for an ack for each applet
7746 - MEDIUM: spoe: Use an ebtree to manage idle applets
7747 - MINOR: spoa_example: Count the number of frames processed by each worker
7748 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
7749 - MINOR: init: make stdout unbuffered
7750 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
7751 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
7752 - MINOR: compiler: introduce offsetoff().
7753 - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
7754 - MINOR: threads: add test and set/reset operations
7755 - MINOR: pools/threads: Implement lockless memory pools.
7756 - MAJOR: fd/threads: Make the fdcache mostly lockless.
7757 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
7758 - MAJOR: fd: compute the new fd polling state out of the fd lock
7759 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
7760 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
7761 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
7762 - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
7763 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
7764 - MEDIUM: fd: make updt_fd_polling() use atomics
7765 - MEDIUM: poller: use atomic ops to update the fdtab mask
7766 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
7767 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
7768 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
7769 - MINOR: fd: reorder fd_add_to_fd_list()
7770 - BUG/MINOR: time/threads: ensure the adjusted time is always correct
7771 - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
7772 - MINOR: init: emit warning when -sf/-sd cannot parse argument
7773 - BUILD: fd/threads: fix breakage build breakage without threads
7774 - DOC: Describe routing impact of using interface keyword on bind lines
7775 - DOC: Mention -Ws in the list of available options
7776 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
7777 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
7778 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
7779 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
7780 - BUILD/MINOR: memory: stdint is needed for uintptr_t
7781 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
7782 - DOC: lua: new prototype for function "register_action()"
7783 - DOC: cfgparse: Warn on option (tcp|http)log in backend
7784 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
7785 - MINOR: sample: add a new "concat" converter
7786 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
7787 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
7788 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
7789 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
7790 - CLEANUP: cfgparse: Remove unused label end
7791 - CLEANUP: spoe: Remove unused label retry
7792 - CLEANUP: h2: Remove unused labels from mux_h2.c
7793 - CLEANUP: pools: Remove unused end label in memory.h
7794 - CLEANUP: standard: Fix typo in IPv6 mask example
7795 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
7796 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
7797 - MINOR: debug/pools: make DEBUG_UAF also detect underflows
7798 - MINOR: stats: display the number of threads in the statistics.
7799 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
7800 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
7801 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
7802 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
7803 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
7804 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
7805 - MINOR: ssl: extract full pkey info in load_certificate
7806 - MINOR: ssl: add ssl_sock_get_pkey_algo function
7807 - MINOR: ssl: add ssl_sock_get_cert_sig function
7808 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
7809 - MINOR: connection: add proxy-v2-options authority
7810 - MINOR: systemd: Add section for SystemD sandboxing to unit file
7811 - MINOR: systemd: Add SystemD's Protect*= options to the unit file
7812 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
7813 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
7814 - MINOR: h2: provide and use h2s_detach() and h2s_free()
7815 - MEDIUM: h2: use a single buffer allocator
7816 - MINOR/BUILD: fix Lua build on Mac OS X
7817 - BUILD/MINOR: fix Lua build on Mac OS X (again)
7818 - BUG/MINOR: session: Fix tcp-request session failure if handshake.
7819 - CLEANUP: .gitignore: Ignore binaries from the contrib directory
7820 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
7821 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
7822 - BUG/MEDIUM: h2: also arm the h2 timeout when sending
7823 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
7824 - CLEANUP: ssl: Remove a duplicated #include
7825 - CLEANUP: cli: Remove a leftover debug message
7826 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
7827 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
7828 - BUG/MINOR: force-persist and ignore-persist only apply to backends
7829 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
7830 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
7831 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
7832 - TESTS: Add a testcase for multi-port + multi-server listener issue
7833 - CLEANUP: dns: remove duplicate code in src/dns.c
7834 - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
7835 - BUG/MINOR: cli: Ensure all command outputs end with a LF
7836 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
7837 - BUILD: ssl: Fix build with OpenSSL without NPN capability
7838 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
7839 - BUG/MINOR: lua: return bad error messages
7840 - CLEANUP: lua/syntax: lua is a name and not an acronym
7841 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
7842 - BUG/MINOR: tcp-check: use the server's service port as a fallback
7843 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
7844 - MINOR: log: stop emitting alerts when it's not possible to write on the socket
7845 - BUILD/BUG: enable -fno-strict-overflow by default
7846 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
7847 - DOC: log: more than 2 log servers are allowed
7848 - MINOR: hash: add new function hash_crc32c
7849 - MINOR: proxy-v2-options: add crc32c
7850 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
7851 - REORG: compact "struct server"
7852 - MINOR: samples: add crc32c converter
7853 - BUG/MEDIUM: h2: properly account for DATA padding in flow control
7854 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
7855 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
7856 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
7857 - BUG/MINOR: lua: the function returns anything
7858 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
7859 - CLEANUP: lua: typo fix in comments
7860 - BUILD/MINOR: fix build when USE_THREAD is not defined
7861 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
7862 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
7863 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
7864 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
7865 - BUILD/MINOR: cli: fix a build warning introduced by last commit
7866 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
7867 - MINOR: h2: always call h2s_detach() in h2_detach()
7868 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
7869 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
7870 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
7871 - BUILD/MINOR: threads: always export thread_sync_io_handler()
7872 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
7873 - MINOR: h2: implement a basic "show_fd" function
7874 - MINOR: cli: report cache indexes in "show fd"
7875 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
7876 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
7877 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
7878 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
7879 - BUG/MINOR: email-alert: Set the mailer port during alert initialization
7880 - BUG/MINOR: cache: fix "show cache" output
7881 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
7882 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
7883 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
7884 - BUG/MINOR: spoe: Register the variable to set when an error occurred
7885 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
7886 - MINOR: spoe: Add metrics in to know time spent in the SPOE
7887 - MINOR: spoe: Add options to store processing times in variables
7888 - MINOR: log: move 'log' keyword parsing in dedicated function
7889 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
7890 - MINOR: spoe: Add loggers dedicated to the SPOE agent
7891 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
7892 - MINOR: spoe: use agent's logger to log SPOE messages
7893 - MINOR: spoe: Add counters to log info about SPOE agents
7894 - BUG/MAJOR: cache: always initialize newly created objects
7895 - MINOR: servers: Support alphanumeric characters for the server templates names
7896 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
7897 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
7898 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
7899 - MINOR: proxy: Add fe_defbe fetcher
7900 - MINOR: config: Warn if resolvers has no nameservers
7901 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
7902 - MINOR: cli: Ensure the CLI always outputs an error when it should
7903 - MEDIUM: sample: Extend functionality for field/word converters
7904 - MINOR: export localpeer as an environment variable
7905 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
7906 - BUILD: sample: avoid build warning in sample.c
7907 - BUG/CRITICAL: h2: fix incorrect frame length check
7908 - DOC: lua: update the links to the config and Lua API
7909 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
7910 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
7911 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
7912 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
7913 - MINOR: h2: detect presence of CONNECT and/or content-length
7914 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
7915 - BUG/MINOR: spoe: Fix counters update when processing is interrupted
7916 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
7917 - MEDIUM: cli: Add payload support
7918 - MINOR: map: Add payload support to "add map"
7919 - MINOR: ssl: Add payload support to "set ssl ocsp-response"
7920 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
7921 - MINOR: sample: Add strcmp sample converter
7922 - MINOR: http: Add support for 421 Misdirected Request
7923 - BUG/MINOR: config: disable http-reuse on TCP proxies
7924 - MINOR: ssl: disable SSL sample fetches when unsupported
7925 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
7926 - BUG/MINOR: checks: Fix check->health computation for flapping servers
7927 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
7928 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
7929 - MINOR: backend: implement random-based load balancing
7930 - DOC/MINOR: clean up LUA documentation re: servers & array/table.
7931 - MINOR: lua: Add server name & puid to LUA Server class.
7932 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
7933 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
7934 - BUG/MEDIUM: task: Don't free a task that is about to be run.
7935 - MINOR: fd: Make the lockless fd list work with multiple lists.
7936 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
7937 - MINOR: pollers: move polled_mask outside of struct fdtab.
7938 - BUG/MINOR: lua: schedule socket task upon lua connect()
7939 - BUG/MINOR: lua: ensure large proxy IDs can be represented
7940 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
7941 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
7942 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
7943 - BUG/MEDIUM: ssl: properly protect SSL cert generation
7944 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
7945 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
7946 - BUG/MEDIUM: spoe: Flags are not encoded in network order
7947 - CLEANUP: spoe: Remove unused variables the agent structure
7948 - DOC: spoe: fix a typo
7949 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
7950 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
7951 - DOC: add some description of the pending rework of the buffer structure
7952 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
7953 - MINOR: lua: Improve error message
7954 - BUG/MEDIUM: cache: don't cache when an Authorization header is present
7955 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
7956 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
7957 - BUG/BUILD: threads: unbreak build without threads
7958 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
7959 - BUG/MEDIUM: lua/socket: Length required read doesn't work
7960 - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
7961 - MAJOR: tasks: Create a per-thread runqueue.
7962 - MAJOR: tasks: Introduce tasklets.
7963 - MINOR: tasks: Make the number of tasks to run at once configurable.
7964 - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
7965 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
7966 - MINOR: http: Log warning if (add|set)-header fails
7967 - DOC: management: add the new wrew stats column
7968 - MINOR: stats: also report the failed header rewrites warnings on the stats page
7969 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
7970 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
7971 - MINOR: task: Also consider the task list size when getting global tasks.
7972 - MINOR: dns: Implement `parse-resolv-conf` directive
7973 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
7974 - MINOR: task/notification: Is notifications registered ?
7975 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
7976 - BUG/MAJOR: lua: Dead lock with sockets
7977 - BUG/MEDIUM: lua/socket: Notification error
7978 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
7979 - BUG/MEDIUM: lua/socket: Buffer error, may segfault
7980 - DOC: contrib/modsecurity: few typo fixes
7981 - DOC: SPOE.txt: fix a typo
7982 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
7983 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
7984 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
7985 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
7986 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
7987 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
7988 - MINOR: task: Fix a compiler warning by adding a cast.
7989 - MINOR: stats: also report the nice and number of calls for applets
7990 - MINOR: applet: assign the same nice value to a new appctx as its owner task
7991 - MINOR: task: Fix compiler warning.
7992 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
7993 - MINOR: tasks: Don't define rqueue if we're building without threads.
7994 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
7995 - MINOR: lua: Increase debug information
7996 - BUG/MEDIUM: threads: handle signal queue only in thread 0
7997 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
7998 - BUG/MINOR: signals: ha_sigmask macro for multithreading
7999 - BUG/MAJOR: map: fix a segfault when using http-request set-map
8000 - DOC: regression testing: Add a short starting guide.
8001 - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
8002 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
8003 - BUG/MINOR: lua: Segfaults with wrong usage of types.
8004 - BUG/MAJOR: ssl: Random crash with cipherlist capture
8005 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
8006 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
8007 - MINOR: tests: First regression testing file.
8008 - MINOR: reg-tests: Add reg-tests/README file.
8009 - MINOR: reg-tests: Add a few regression testing files.
8010 - DOC: Add new REGTEST tag info about reg testing.
8011 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
8012 - MINOR: Some spelling cleanup in the comments.
8013 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
8014 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
8015 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
8016 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
8017 - REGTEST/MINOR: Add levels to reg-tests target.
8018 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
8019 - BUG/BUILD: threads: unbreak build without threads
8020 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
8021 - MINOR: stick-tables: make stktable_release() do nothing on NULL
8022 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
8023 - MINOR: startup: change session/process group settings
8024 - MINOR: systemd: consider exit status 143 as successful
8025 - REGTEST/MINOR: Wrong URI syntax.
8026 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
8027 - CLEANUP: dns: inacurate comment about prefered IP score
8028 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
8029 - MINOR: dns: new DNS options to allow/prevent IP address duplication
8030 - REGTEST/MINOR: Unexpected curl URL globling.
8031 - BUG/MINOR: ssl: properly ref-count the tls_keys entries
8032 - MINOR: h2: keep a count of the number of conn_streams attached to the mux
8033 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
8034 - MINOR: h2: add the mux and demux buffer lengths on "show fd"
8035 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
8036 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
8037 - MINOR: tasklet: Set process to NULL.
8038 - MINOR: buffer: implement a new file for low-level buffer manipulation functions
8039 - MINOR: buffer: switch buffer sizes and offsets to size_t
8040 - MINOR: buffer: add a few basic functions for the new API
8041 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
8042 - MINOR: buffer: Add b_set_data().
8043 - MINOR: buffer: introduce b_realign_if_empty()
8044 - MINOR: compression: pass the channel to http_compression_buffer_end()
8045 - MINOR: channel: add a few basic functions for the new buffer API
8046 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
8047 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
8048 - MEDIUM: channel: make channel_slow_realign() take a swap buffer
8049 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
8050 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
8051 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
8052 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
8053 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
8054 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
8055 - MINOR: buffer: remove bi_ptr()
8056 - MINOR: buffer: remove bo_ptr()
8057 - MINOR: buffer: remove bo_end()
8058 - MINOR: buffer: remove bi_end()
8059 - MINOR: buffer: remove bo_contig_data()
8060 - MINOR: buffer: merge b{i,o}_contig_space()
8061 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
8062 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
8063 - MINOR: buffer: replace bi_del() and bo_del() with b_del()
8064 - MINOR: buffer: convert most b_ptr() calls to c_ptr()
8065 - MINOR: h1: make h1_measure_trailers() take the byte count in argument
8066 - MINOR: h2: clarify the fact that the send functions are unsigned
8067 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
8068 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
8069 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
8070 - MINOR: h1: make h1_measure_trailers() use an offset and a count
8071 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
8072 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
8073 - MINOR: buffer: get rid of b_end() and b_to_end()
8074 - MINOR: buffer: make b_getblk_nc() take const pointers
8075 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
8076 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
8077 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
8078 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
8079 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
8080 - MINOR: connection: add a flags argument to rcv_buf()
8081 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
8082 - MINOR: buffer: get rid of b_ptr() and convert its last users
8083 - MINOR: buffer: use b_room() to determine available space in a buffer
8084 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
8085 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
8086 - MINOR: buffer: make bo_putchar() use b_tail()
8087 - MINOR: buffer: replace buffer_full() with channel_full()
8088 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
8089 - MINOR: buffer: replace buffer_pending() with ci_data()
8090 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
8091 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
8092 - MINOR: buffer: use b_orig() to replace most references to b->data
8093 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
8094 - MINOR: channel: remove almost all references to buf->i and buf->o
8095 - MINOR: channel: Add co_set_data().
8096 - MEDIUM: channel: adapt to the new buffer API
8097 - MINOR: checks: adapt to the new buffer API
8098 - MEDIUM: h2: update to the new buffer API
8099 - MINOR: buffer: remove unused bo_add()
8100 - MEDIUM: spoe: use the new buffer API for the SPOE buffer
8101 - MINOR: stats: adapt to the new buffers API
8102 - MINOR: cli: use the new buffer API
8103 - MINOR: cache: use the new buffer API
8104 - MINOR: stream-int: use the new buffer API
8105 - MINOR: stream: use wrappers instead of directly manipulating buffers
8106 - MINOR: backend: use new buffer API
8107 - MEDIUM: http: use wrappers instead of directly manipulating buffers states
8108 - MINOR: filters: convert to the new buffer API
8109 - MINOR: payload: convert to the new buffer API
8110 - MEDIUM: h1: port to new buffer API.
8111 - MINOR: flt_trace: adapt to the new buffer API
8112 - MEDIUM: compression: start to move to the new buffer API
8113 - MINOR: lua: use the wrappers instead of directly manipulating buffer states
8114 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
8115 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
8116 - MAJOR: start to change buffer API
8117 - MINOR: buffer: remove the check for output on b_del()
8118 - MINOR: buffer: b_set_data() doesn't truncate output data anymore
8119 - MINOR: buffer: rename the "data" field to "area"
8120 - MEDIUM: buffers: move "output" from struct buffer to struct channel
8121 - MINOR: buffer: replace bi_fast_delete() with b_del()
8122 - MINOR: buffer: replace b{i,o}_put* with b_put*
8123 - MINOR: buffer: add a new file for ist + buffer manipulation functions
8124 - MINOR: checks: use b_putist() instead of b_putstr()
8125 - MINOR: buffers: remove b_putstr()
8126 - CLEANUP: buffer: minor cleanups to buffer.h
8127 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
8128 - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
8129 - MINOR: buffer: rename the data length member to '->data'
8130 - MAJOR: buffer: finalize buffer detachment
8131 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
8132 - MAJOR: chunks: replace struct chunk with struct buffer
8133 - DOC: buffers: document the new buffers API
8134 - DOC: buffers: remove obsolete docs about buffers
8135 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
8136 - MINOR: connections/mux: Add a new "subscribe" method.
8137 - MEDIUM: connections/mux: Revamp the send direction.
8138 - MINOR: connection: simplify subscription by adding a registration function
8139 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
8140 - BUG/MINOR: build: Fix compilation with debug mode enabled
8141 - BUILD: Generate sha256 checksums in publish-release
8142 - MINOR: debug: Add check for CO_FL_WILL_UPDATE
8143 - MINOR: debug: Add checks for conn_stream flags
8144 - MINOR: ist: Add the function isteqi
8145 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
8146 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
8147 - MINOR: buffers: simplify b_contig_space()
8148 - MINOR: buffers: split b_putblk() into __b_putblk()
8149 - MINOR: buffers: add b_xfer() to transfer data between buffers
8150 - DOC: add some design notes about the new layering model
8151 - MINOR: conn_stream: add a new CS_FL_REOS flag
8152 - MINOR: conn_stream: add an rx buffer to the conn_stream
8153 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
8154 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
8155 - MINOR: h2: make each H2 stream support an intermediary input buffer
8156 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
8157 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
8158 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
8159 - MEDIUM: h2: move headers and data frame decoding to their respective parsers
8160 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
8161 - MEDIUM: h2: perform a single call to the data layer in demux()
8162 - MEDIUM: h2: don't call data_cb->recv() anymore
8163 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
8164 - MEDIUM: h2: use the default conn_stream's receive function
8165 - DOC: add more design feedback on the new layering model
8166 - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
8167 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
8168 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
8169 - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
8170 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
8171 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
8172 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
8173 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
8174 - MINOR: signal: don't pass the signal number anymore as the wakeup reason
8175 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
8176 - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
8177 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
8178 - MINOR: queue: centralize dequeuing code a bit better
8179 - MEDIUM: queue: make pendconn_free() work on the stream instead
8180 - DOC: queue: document the expected locking model for the server's queue
8181 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
8182 - MINOR: queue: use a distinct variable for the assigned server and the queue
8183 - MINOR: queue: implement pendconn queue locking functions
8184 - MEDIUM: queue: get rid of the pendconn lock
8185 - MINOR: tasks: Make active_tasks_mask volatile.
8186 - MINOR: tasks: Make global_tasks_mask volatile.
8187 - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
8188 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
8189 - BUG/MEDIUM: threads/sync: use sched_yield when available
8190 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
8191 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
8192 - BUG/MINOR: config: stick-table is not supported in defaults section
8193 - BUILD/MINOR: threads: unbreak build with threads disabled
8194 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
8195 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
8196 - MINOR: threads: move "nbthread" parsing to hathreads.c
8197 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
8198 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
8199 - BUILD/MINOR: compiler: fix offsetof() on older compilers
8200 - SCRIPTS: git-show-backports: add missing quotes to "echo"
8201 - MINOR: threads: add more consistency between certain variables in no-thread case
8202 - MEDIUM: hathreads: implement a more flexible rendez-vous point
8203 - BUG/MEDIUM: cli: make "show fd" thread-safe
8204
Willy Tarreaub3066502017-11-26 19:50:17 +010082052017/11/26 : 1.9-dev0
8206
Willy Tarreau0b787922017-11-26 19:25:23 +010082072017/11/26 : 1.8.0
8208 - BUG/MEDIUM: stream: don't automatically forward connect nor close
8209 - BUG/MAJOR: stream: ensure analysers are always called upon close
8210 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
8211 - MEDIUM: mworker: Add systemd `Type=notify` support
8212 - BUG/MEDIUM: cache: free callback to remove from tree
8213 - CLEANUP: cache: remove unused struct
8214 - MEDIUM: cache: enable the HTTP analysers
8215 - CLEANUP: cache: remove wrong comment
8216 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
8217 - MINOR: threads/plock: rename local variables in macros to avoid conflicts
8218 - MINOR: threads/atomic: implement pl_mb() in asm on x86
8219 - MINOR: threads/atomic: implement pl_bts() on non-x86
8220 - MINOR: threads/build: atomic: replace the few inlines with macros
8221 - BUILD: threads/plock: fix a build issue on Clang without optimization
8222 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
8223 - BUILD: compiler: add a new type modifier __maybe_unused
8224 - BUILD: h2: mark some inlined functions "unused"
8225 - BUILD: server: check->desc always exists
8226 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
8227 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
8228 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
8229 - BUG/MEDIUM: h2: always reassemble the Cookie request header field
8230 - BUG/MINOR: systemd: ignore daemon mode
8231 - CONTRIB: spoa_example: allow to compile outside HAProxy.
8232 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
8233 - CONTRIB: spoa_example: remove last dependencies on type "sample"
8234 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
8235 - CLEANUP: cache: reorder includes
8236 - MEDIUM: shctx: use unsigned int for len and block_count
8237 - MEDIUM: cache: "show cache" on the cli
8238 - BUG/MEDIUM: cache: use key=0 as a condition for freeing
8239 - BUG/MEDIUM: cache: refcount forbids to free the objects
8240 - BUG/MEDIUM: cache fix cli_kws structure
8241 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
8242 - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
8243 - MINOR: ssl: Don't disable early data handling if we could not write.
8244 - MINOR: pools: prepare functions to override malloc/free in pools
8245 - MINOR: pools: implement DEBUG_UAF to detect use after free
8246 - BUG/MEDIUM: threads/time: fix time drift correction
8247 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
8248 - MINOR: sample: Add "thread" sample fetch
8249 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
8250 - BUG/MINOR: stream: fix tv_request calculation for applets
8251 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
8252 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
8253 - MINOR: ssl: Handle reading early data after writing better.
8254 - MINOR: mux: Make sure every string is woken up after the handshake.
8255 - MEDIUM: cache: store sha1 for hashing the cache key
8256 - MINOR: http: implement the "http-request reject" rule
8257 - MINOR: h2: send RST_STREAM before GOAWAY on reject
8258 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
8259 - MINOR: h2: make use of client-fin timeout after GOAWAY
8260 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
8261 - MINOR: ssl: Handle early data with BoringSSL
8262 - BUG/MEDIUM: stream: always release the stream-interface on abort
8263 - BUG/MEDIUM: cache: free ressources in chn_end_analyze
8264 - MINOR: cache: move the refcount decrease in the applet release
8265 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
8266 - MINOR: config: Support a range to specify processes in "cpu-map" parameter
8267 - MINOR: config: Slightly change how parse_process_number works
8268 - MINOR: config: Export parse_process_number and use it wherever it's applicable
8269 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
8270 - MINOR: config: Add auto-increment feature for cpu-map
8271 - MINOR: config: Support partial ranges in cpu-map directive
8272 - MINOR:: config: Remove thread-map directive
8273 - MINOR: config: Add the threads support in cpu-map directive
8274 - MINOR: config: Add threads support for "process" option on "bind" lines
8275 - MEDIUM: listener: Bind listeners on a thread subset if specified
8276 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
8277 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
8278 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
8279 - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
8280 - DOC: update the roadmap file with the latest changes merged in 1.8
8281 - DOC: fix mangled version in peers protocol documentation
8282 - DOC: add initial peers protovol v2.0 documentation.
8283 - DOC: mention William as maintainer of the cache and master-worker
8284 - DOC: add Christopher and Emeric as maintainers of the threads
8285 - MINOR: cache: replace a fprint() by an abort()
8286 - MEDIUM: cache: max-age configuration keyword
8287 - DOC: explain HTTP2 timeout behavior
8288 - DOC: cache: configuration and management
8289 - MAJOR: mworker: exits the master on failure
8290 - BUG/MINOR: threads: don't drop "extern" on the lock in include files
8291 - MINOR: task: keep a pointer to the currently running task
8292 - MINOR: task: align the rq and wq locks
8293 - MINOR: fd: cache-align fdtab and fdcache locks
8294 - MINOR: buffers: cache-align buffer_wq_lock
8295 - CLEANUP: server: reorder some fields in struct server to save 40 bytes
8296 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
8297 - CLEANUP: checks: remove 16 bytes of holes in struct check
8298 - CLEANUP: cache: more efficiently pack the struct cache
8299 - CLEANUP: fd: place the lock at the beginning of struct fdtab
8300 - CLEANUP: pools: align pools on a cache line
8301 - DOC: config: add a few bits about how to configure HTTP/2
8302 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
8303 - BUILD: Makefile: reorder object files by size
8304
Willy Tarreaucfe14662017-11-19 09:55:29 +010083052017/11/19 : 1.8-rc4
8306 - BUG/MEDIUM: cache: does not cache if no Content-Length
8307 - BUILD: thread/pipe: fix build without threads
8308 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
8309 - MINOR: debug/flags: Add missing flags
8310 - MINOR: threads: Use __decl_hathreads to declare locks
8311 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
8312 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
8313 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
8314 - MINOR: ebtree/scope: add a function to find next node from a parent
8315 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
8316 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
8317 - BUG/MEDIUM: cache: use msg->sov to forward header
8318 - MINOR: cache: forward data with headers
8319 - MINOR: cache: disable cache if shctx_row_data_append fail
8320 - BUG/MINOR: threads: tid_bit must be a unsigned long
8321 - CLEANUP: tasks: Remove useless double test on rq_next
8322 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
8323 - MINOR: tools: add a function to dump a scope-aware tree to a file
8324 - MINOR: tools: improve the DOT dump of the ebtree
8325 - MINOR: tools: emphasize the node being worked on in the tree dump
8326 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
8327 - DOC: peers: Add a first version of peers protocol v2.1.
8328 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
8329 - MINOR: mworker: display an accurate error when the reexec fail
8330 - BUG/MEDIUM: mworker: wait again for signals when execvp fail
8331 - BUG/MEDIUM: mworker: does not deinit anymore
8332 - BUG/MEDIUM: mworker: does not close inherited FD
8333 - MINOR: tests: add a python wrapper to test inherited fd
8334 - BUG/MINOR: Allocate the log buffers before the proxies startup
8335 - MINOR: tasks: Use a bitfield to track tasks activity per-thread
8336 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue
8337 - MINOR: applets: Use a bitfield to track applets activity per-thread
8338 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue
8339 - MEDIUM: applets: Don't process more than 200 active applets at once
8340 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command
8341 - MINOR: SSL: Store the ASN1 representation of client sessions.
8342 - MINOR: ssl: Make sure we don't shutw the connection before the handshake.
8343 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data
8344
Willy Tarreau34650d52017-11-11 09:06:48 +010083452017/11/11 : 1.8-rc3
8346 - BUILD: use MAXPATHLEN instead of NAME_MAX.
8347 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions
8348 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser
8349 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port"
8350 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK
8351 - CLEANUP: checks: remove return statements in locked functions
8352 - BUG/MINOR: cli: add severity in "set server addr" parser
8353 - CLEANUP: server: get rid of return statements in the CLI parser
8354 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess"
8355 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path
8356 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB
8357 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB
8358 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired()
8359 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set
8360 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener()
8361 - BUG/MEDIUM: threads: don't try to free build option message on exit
8362 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup()
8363 - MINOR: add master-worker in the warning about nbproc
8364 - MINOR: mworker: allow pidfile in mworker + foreground
8365 - MINOR: mworker: write parent pid in the pidfile
8366 - MINOR: mworker: do not store child pid anymore in the pidfile
8367 - MINOR: ebtree: implement the scope-aware functions for eb32
8368 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc
8369 - MINOR: ebtree: update the eb32sc parent node's scope on delete
8370 - MEDIUM: ebtree: only consider the branches matching the scope in lookups
8371 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first()
8372 - MAJOR: task: make use of the scope-aware ebtree functions
8373 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop
8374 - MEDIUM: task: change the construction of the loop in process_runnable_tasks()
8375 - MINOR: threads: use faster locks for the spin locks
8376 - MINOR: tasks: only visit filled task slots after processing them
8377 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage
8378 - BUG/MINOR: dns: Don't try to get the server lock if it's already held.
8379 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback().
8380 - DOC: Add note about encrypted password CPU usage
8381 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection
8382 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error
8383 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux
8384 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux
8385 - MEDIUM: h2: remove the H2_SS_RESET intermediate state
8386 - BUG/MEDIUM: h2: fix some wrong error codes on connections
8387 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix
8388 - BUILD: enable USE_THREAD for Solaris build.
8389 - BUG/MEDIUM: h2: don't close the connection is there are data left
8390 - MINOR: h2: don't re-enable the connection's task when we're closing
8391 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame
8392 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing
8393 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA
8394 - BUG/MINOR: h2: don't send GOAWAY on failed response
8395 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected.
8396 - BUG/MINOR: comp: fix compilation warning compiling without compression.
8397 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path
8398 - BUG/MAJOR: threads/tasks: fix the scheduler again
8399 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched.
8400 - MINOR: ssl: Handle session resumption with TLS 1.3
8401 - MINOR: ssl: Spell 0x10101000L correctly.
8402 - MINOR: ssl: Handle sending early data to server.
8403 - BUILD: ssl: fix build of backend without ssl
8404 - BUILD: shctx: do not depend on openssl anymore
8405 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits
8406 - BUG/MEDIUM: h2: reject non-3-digit status codes
8407 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up
8408 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match
8409 - BUG/MEDIUM: h2: split the function to send RST_STREAM
8410 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers
8411 - MINOR: tools: don't use unlikely() in hex2i()
8412 - BUG/MEDIUM: h2: support orphaned streams
8413 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release
8414 - CLEANUP: mux: remove the unused "release()" function
8415 - MINOR: cli: make "show fd" report the fd's thread mask
8416 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore
8417 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid
8418 - MEDIUM: http: always reject the "PRI" method
8419
Willy Tarreaua8d8d6e2017-11-03 23:52:47 +010084202017/11/03 : 1.8-rc2
8421 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call
8422 - BUG/MINOR: send-proxy-v2: string size must include ('\0')
8423 - MINOR: mux: Only define pipe functions on linux.
8424 - MINOR: cache: Remove useless test for nonzero.
8425 - MINOR: cache: Don't confuse act_return and act_parse_ret.
8426 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses
8427 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting
8428 - BUG/MAJOR: fix deadlock on healthchecks.
8429 - BUG/MINOR: thread: fix a typo in the debug code
8430 - BUILD: shctx: allow to be built without openssl
8431 - BUG/MEDIUM: cache: don't try to resolve wrong filters
8432 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer
8433 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period.
8434 - BUG/MINOR: stdarg.h inclusion
8435 - BUG/MINOR: dns: fix missing lock protection on server.
8436 - BUG/MINOR: lua: fix missing lock protection on server.
8437 - BUILD: enable USE_THREAD for OpenBSD build.
8438 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake()
8439 - MINOR: thread: report multi-thread support in haproxy -vv
8440
Willy Tarreau901f75c2017-10-31 23:18:29 +010084412017/10/31 : 1.8-rc1
8442 - BUG/MEDIUM: server: Allocate tmptrash before using it.
8443 - CONTRIB: trace: add the possibility to place trace calls in the code
8444 - CONTRIB: trace: try to display the function's return value on exit
8445 - CONTRIB: trace: report the base name only for file names
8446 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
8447 - MINOR: ssl: build with recent BoringSSL library
8448 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
8449 - BUG/MINOR: cli: restore "set ssl tls-key" command
8450 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
8451 - IMPORT: sha1: import SHA1 functions
8452 - MINOR: sample: add the sha1 converter
8453 - MINOR: sample: add the hex2i converter
8454 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
8455 - MINOR: ssl: don't abort after sending 16kB
8456 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
8457 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
8458 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
8459 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
8460 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
8461 - BUG/MINOR: checks: Don't forget to release the connection on error case.
8462 - MINOR: buffer: add the buffer input manipulation functions
8463 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
8464 - MEDIUM: cfgparse: post section callback
8465 - MEDIUM: cfgparse: post parsing registration
8466 - MINOR: lua: add uuid to the Class Proxy
8467 - MINOR: hlua: Add regex class
8468 - MINOR: http: Mark the 425 code as "Too Early".
8469 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
8470 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
8471 - MINOR: ssl: generated certificate is missing in switchctx early callback
8472 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
8473 - BUILD: Makefile: disable -Wunused-label
8474 - MINOR: ssl/proto_http: Add keywords to take care of early data.
8475 - BUG/MINOR: lua: const attribute of a string is overridden
8476 - MINOR: ssl: Don't abuse ssl_options.
8477 - MINOR: update proxy-protocol-v2 #define
8478 - MINOR: merge ssl_sock_get calls for log and ppv2
8479 - MINOR: add ALPN information to send-proxy-v2
8480 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
8481 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
8482 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
8483 - REORG: shctx: move lock functions and struct
8484 - MEDIUM: shctx: allow the use of multiple shctx
8485 - REORG: shctx: move ssl functions to ssl_sock.c
8486 - MEDIUM: shctx: separate ssl and shctx
8487 - MINOR: shctx: rename lock functions
8488 - MINOR: h1: store the status code in the H1 message
8489 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
8490 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
8491 - MINOR: action: Add trk_idx inline function
8492 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
8493 - MINOR: action: Add a function pointer in act_rule struct to check its validity
8494 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
8495 - MINOR: action: Add a functions to check http capture rules
8496 - MINOR: action: Factorize checks on rules calling check_ptr if defined
8497 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
8498 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
8499 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
8500 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
8501 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
8502 - MINOR: spoe: Move message encoding in its own function
8503 - MINOR: spoe: Add a type to qualify the message list during encoding
8504 - MINOR: spoe: Add a generic function to encode a list of SPOE message
8505 - MEDIUM: spoe/rules: Process "send-spoe-group" action
8506 - BUG/MINOR: dns: Fix CLI keyword declaration
8507 - MAJOR: dns: Refactor the DNS code
8508 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
8509 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
8510 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
8511 - MINOR: standard: Add memvprintf function
8512 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
8513 - MINOR: cli: Add "show startup-logs" command
8514 - MINOR: startup: Extend the scope the MODE_STARTING flag
8515 - MINOR: threads: Prepare makefile to link with pthread
8516 - MINOR: threads: Add THREAD_LOCAL macro
8517 - MINOR: threads: Add atomic-ops and plock includes in import dir
8518 - MEDIUM: threads: Add hathreads header file
8519 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
8520 - MINOR: threads: Add nbthread parameter
8521 - MEDIUM: threads: Adds a set of functions to handle sync-point
8522 - MAJOR: threads: Start threads to experiment multithreading
8523 - MINOR: threads: Define the sync-point inside run_poll_loop
8524 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
8525 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
8526 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
8527 - MEDIUM: threads/logs: Make logs thread-safe
8528 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
8529 - MAJOR: threads/fd: Make fd stuffs thread-safe
8530 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
8531 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
8532 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
8533 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
8534 - WIP: SQUASH WITH SYNC POINT
8535 - MAJOR: threads/task: handle multithread on task scheduler
8536 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
8537 - MEDIUM: threads/listeners: Make listeners thread-safe
8538 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
8539 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
8540 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
8541 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
8542 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
8543 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
8544 - MINOR: threads/sample: Change temp_smp into a thread local variable
8545 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
8546 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
8547 - MAJOR: threads/applet: Handle multithreading for applets
8548 - MAJOR: threads/peers: Make peers thread safe
8549 - MAJOR: threads/buffer: Make buffer wait queue thread safe
8550 - MEDIUM: threads/stream: Make streams list thread safe
8551 - MAJOR: threads/ssl: Make SSL part thread-safe
8552 - MEDIUM: threads/queue: Make queues thread-safe
8553 - MAJOR: threads/map: Make acls/maps thread safe
8554 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
8555 - MEDIUM: thread/vars: Make vars thread-safe
8556 - MEDIUM: threads/filters: Add init/deinit callback per thread
8557 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
8558 - MEDIUM: threads/compression: Make HTTP compression thread-safe
8559 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
8560 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
8561 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
8562 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
8563 - MEDIUM: threads/xref: Convert xref function to a thread safe model
8564 - MEDIUM: threads/tasks: Add lock around notifications
8565 - MEDIUM: thread/spoe: Make the SPOE thread-safe
8566 - MEDIUM: thread/dns: Make DNS thread-safe
8567 - MINOR: threads: Add thread-map config parameter in the global section
8568 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
8569 - MINOR: threads/checks: Set the task process_mask when a check is executed
8570 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
8571 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
8572 - MINOR: threads: Don't start when device a detection module is used
8573 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
8574 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
8575 - MAJOR: threads: Offically enable the threads support in HAProxy
8576 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
8577 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
8578 - BUILD: stick-tables: silence an uninitialized variable warning
8579 - BUG/MINOR: dns: Fix SRV records with the new thread code.
8580 - MINOR: ssl: Remove the global allow-0rtt option.
8581 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
8582 - CLEANUP: threads: rename process_mask to thread_mask
8583 - MINOR: h1: add a function to measure the trailers length
8584 - MINOR: threads: add a portable barrier for threads and non-threads
8585 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
8586 - BUG/MEDIUM: threads: Initialize the sync-point
8587 - MEDIUM: connection: start to introduce a mux layer between xprt and data
8588 - MINOR: connection: implement alpn registration of muxes
8589 - MINOR: mux: register the pass-through mux for any ALPN string
8590 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
8591 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
8592 - MINOR: connection: introduce conn_stream
8593 - MINOR: mux: add more methods to mux_ops
8594 - MINOR: connection: introduce the conn_stream manipulation functions
8595 - MINOR: mux_pt: implement remaining mux_ops methods
8596 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
8597 - MINOR: connection: make conn_stream users also check for per-stream error flag
8598 - MINOR: conn_stream: new shutr/w status flags
8599 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
8600 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
8601 - MINOR: connection: add cs_close() to close a conn_stream
8602 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
8603 - MEDIUM: connection: replace conn_full_close() with cs_close()
8604 - MEDIUM: connection: make mux->detach() release the connection
8605 - MEDIUM: stream: do not forcefully close the client connection anymore
8606 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
8607 - MEDIUM: connection: add a destroy callback
8608 - MINOR: session: release the listener with the session, not the stream
8609 - MEDIUM: session: make use of the connection's destroy callback
8610 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
8611 - MINOR: hpack: implement the HPACK Huffman table decoder
8612 - MINOR: hpack: implement the header tables management
8613 - MINOR: hpack: implement the decoder
8614 - MEDIUM: hpack: implement basic hpack encoding
8615 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
8616 - MINOR: h2: create a very minimalistic h2 mux
8617 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
8618 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
8619 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
8620 - MINOR: h2: create the h2c struct and allocate its pool
8621 - MINOR: h2: create the h2s struct and the associated pool
8622 - MINOR: h2: handle two extra stream states for errors
8623 - MINOR: h2: add a frame header descriptor for incoming frames
8624 - MEDIUM: h2: allocate and release the h2c context on connection init/end
8625 - MEDIUM: h2: implement basic recv/send/wake functions
8626 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
8627 - MEDIUM: h2: implement the mux buffer allocator
8628 - MINOR: h2: add the connection and stream flags listing the causes for blocking
8629 - MINOR: h2: add function h2s_id() to report a stream's ID
8630 - MINOR: h2: small function to know when the mux is busy
8631 - MINOR: h2: new function h2c_error to mark an error on the connection
8632 - MINOR: h2: new function h2s_error() to mark an error on a stream
8633 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
8634 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
8635 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
8636 - MINOR: h2: add stream lookup function based on the stream ID
8637 - MINOR: h2: create dummy idle and closed streams
8638 - MINOR: h2: add the function to create a new stream
8639 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
8640 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
8641 - MINOR: h2: also terminate the connection on shutr
8642 - MEDIUM: h2: properly consider all conditions for end of connection
8643 - MEDIUM: h2: wake the connection up for send on pending streams
8644 - MEDIUM: h2: start to implement the frames processing loop
8645 - MINOR: h2: add a function to send a GOAWAY error frame
8646 - MINOR: h2: match the H2 connection preface on init
8647 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
8648 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
8649 - MEDIUM: h2: process streams pending for sending
8650 - MINOR: h2: send a real SETTINGS frame based on the configuration
8651 - MEDIUM: h2: detect the presence of the first settings frame
8652 - MINOR: h2: create a stream parser for the demuxer
8653 - MINOR: h2: implement PING frames
8654 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
8655 - MINOR: h2: lookup the stream during demuxing
8656 - MEDIUM: h2: honor WINDOW_UPDATE frames
8657 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
8658 - MINOR: h2: handle CONTINUATION frames
8659 - MEDIUM: h2: partial implementation of h2_detach()
8660 - MEDIUM: h2: unblock a connection when its current stream detaches
8661 - MEDIUM: h2: basic processing of HEADERS frame
8662 - MEDIUM: h2: don't use trash to decode headers!
8663 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
8664 - MEDIUM: h2: send the H1 response body as DATA frames
8665 - MEDIUM: h2: skip the response trailers if any
8666 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
8667 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
8668 - MEDIUM: h2: handle request body in DATA frames
8669 - MINOR: h2: handle RST_STREAM frames
8670 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
8671 - MINOR: h2: use a common function to signal some and all streams.
8672 - MEDIUM: h2: handle GOAWAY frames
8673 - MINOR: h2: centralize the check for the idle streams
8674 - MINOR: h2: centralize the check for the half-closed(remote) streams
8675 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
8676 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
8677 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
8678 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
8679 - MEDIUM: h2: apply a timeout to h2 connections
8680 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
8681 - MEDIUM: shctx: forbid shctx to read more than expected
8682 - MEDIUM: cache: configuration parsing and initialization
8683 - MEDIUM: cache: store objects in cache
8684 - MEDIUM: cache: deliver objects from cache
8685
Willy Tarreauf08137c2017-10-22 10:13:45 +020086862017/10/22 : 1.8-dev3
8687 - REORG: ssl: move defines and methodVersions table upper
8688 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
8689 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
8690 - MEDIUM: ssl: disable SSLv3 per default for bind
8691 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
8692 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
8693 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
8694 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
8695 - BUG/MEDIUM: build without openssl broken
8696 - BUG/MINOR: warning: need_resend may be used uninitialized
8697 - BUG/MEDIUM: misplaced exit and wrong exit code
8698 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
8699 - BUILD: scripts: make publish-release support bare repositories
8700 - BUILD: scripts: add an automatic mode for publish-release
8701 - BUILD: scripts: add a "quiet" mode to publish-release
8702 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
8703 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
8704 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
8705 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
8706 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
8707 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
8708 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
8709 - BUG/MAJOR: server: Segfault after parsing server state file.
8710 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
8711 - scripts: create-release pass -n to tail
8712 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
8713 - BUG/MEDIUM: fix segfault when no argument to -x option
8714 - MINOR: warning on multiple -x
8715 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
8716 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
8717 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
8718 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
8719 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
8720 - DOC: fix references to the section about the unix socket
8721 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
8722 - MAJOR: task: task scheduler rework.
8723 - MINOR: task/stream: tasks related to a stream must be init by the caller.
8724 - MINOR: queue: Change pendconn_get_next_strm into private function
8725 - MINOR: backends: Change get_server_sh/get_server_uh into private function
8726 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
8727 - MEDIUM: stream: make stream_new() always set the target and analysers
8728 - MINOR: frontend: initialize HTTP layer after the debugging code
8729 - MINOR: connection: add a .get_alpn() method to xprt_ops
8730 - MINOR: ssl: add a get_alpn() method to ssl_sock
8731 - MINOR: frontend: retrieve the ALPN name when available
8732 - MINOR: frontend: report the connection's ALPN in the debug output
8733 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
8734 - MINOR: connection: send data before receiving
8735 - MAJOR: applet: applet scheduler rework.
8736 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
8737 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
8738 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
8739 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
8740 - MINOR: compression: Use a memory pool to allocate compression states
8741 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
8742 - DOC: fix references to the section about time format.
8743 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
8744 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
8745 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
8746 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
8747 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
8748 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
8749 - MINOR: peers: Add additional information to stick-table definition messages.
8750 - BUG/MINOR: http: properly handle all 1xx informational responses
8751 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
8752 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
8753 - CLEANUP: hdr_idx: make some function arguments const where possible
8754 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
8755 - BUG/MINOR: lua: In error case, the safe mode is not removed
8756 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
8757 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
8758 - BUG/MEDIUM: lua: bad memory access
8759 - BUG/MINOR: Lua: variable already initialized
8760 - DOC: update CONTRIBUTING regarding optional parts and message format
8761 - DOC: update the list of OpenSSL versions in the README
8762 - BUG/MINOR: http: Set the response error state in http_sync_res_state
8763 - MINOR: http: Reorder/rewrite checks in http_resync_states
8764 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
8765 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
8766 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
8767 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
8768 - BUG/MINOR: contrib/modsecurity: BSD build fix
8769 - BUG/MINOR: contrib/mod_defender: build fix
8770 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
8771 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
8772 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
8773 - MINOR: tools: add a portable timegm() alternative
8774 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
8775 - DOC: Updated 51Degrees git URL to point to a stable version.
8776 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
8777 - MINOR: memory: remove macros
8778 - BUG/MINOR: lua: Fix Server.get_addr() port values
8779 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
8780 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
8781 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
8782 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
8783 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
8784 - MINOR: task: always preinitialize the task's timeout in task_init()
8785 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
8786 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
8787 - MINOR: lua: Add proxy as member of proxy object.
8788 - DOC: lua: Proxy class doc update
8789 - MINOR: lua: Add lists of frontends and backends
8790 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
8791 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
8792 - MINOR: ssl: add a new error codes for wrong server certificates
8793 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
8794 - MINOR: ssl: add "no-ca-names" parameter for bind
8795 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
8796 - DOC: fix alphabetical order of "show commands" in management.txt
8797 - MINOR: listener: add a function to return a listener's state as a string
8798 - MINOR: cli: add a new "show fd" command
8799 - BUG/MEDIUM: ssl: Fix regression about certificates generation
8800 - MINOR: Add server port field to server state file.
8801 - MINOR: ssl: allow to start without certificate if strict-sni is set
8802 - MINOR: dns: Cache previous DNS answers.
8803 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
8804 - Add a few functions to do unaligned access.
8805 - MINOR: dns: Handle SRV records.
8806 - MINOR: check: Fix checks when using SRV records.
8807 - MINOR: doc: Document SRV label usage.
8808 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
8809 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
8810 - BUILD/MINOR: build without openssl still broken
8811 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
8812 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
8813 - MINOR: init: Fix CPU affinity setting on FreeBSD.
8814 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
8815 - MINOR: dns: update record dname matching for SRV query types
8816 - MINOR: dns: update dns response buffer reading pointer due to SRV record
8817 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
8818 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
8819 - MINOR: dns: ability to use a SRV resolution for multiple backends
8820 - MINOR: dns: enable caching of responses for server set by a SRV record
8821 - MINOR: dns: new dns record type (RTYPE) for OPT
8822 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
8823 - MINOR: dns: default "hold obsolete" timeout set to 0
8824 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
8825 - MINOR: session: add a streams field to the session struct
8826 - MINOR: stream: link the stream to its session
8827 - MEDIUM: session: do not free a session until no stream references it
8828 - MINOR: ist: implement very simple indirect strings
8829 - TESTS: ist: add a test file for the functions
8830 - MINOR: http: export some of the HTTP parser macros
8831 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
8832 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
8833 - MINOR: dns: Maximum DNS udp payload set to 8192
8834 - MINOR: dns: automatic reduction of DNS accpeted payload size
8835 - MINOR: dns: make SRV record processing more verbose
8836 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
8837 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
8838 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
8839 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
8840 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
8841 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
8842 - MINOR: lua: properly process the contents of the content-length field
8843 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
8844 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
8845 - OPTIM: lua: don't add "Connection: close" on the response
8846 - REORG/MEDIUM: connection: introduce the notion of connection handle
8847 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
8848 - MEDIUM: connection: get rid of data->init() which was not for data
8849 - MEDIUM: stream: make stream_new() allocate its own task
8850 - CLEANUP: listener: remove the unused handler field
8851 - MEDIUM: session: add a pointer to a struct task in the session
8852 - MINOR: stream: provide a new stream creation function for connections
8853 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
8854 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
8855 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
8856 - DOC: add CLI info on privilege levels
8857 - DOC: Refer to Mozilla TLS info / config generator
8858 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
8859 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
8860 - DOC: Add note about "* " prefix in CSV stats
8861 - CLEANUP: memory: Remove unused function pool_destroy
8862 - MINOR: listeners: Change listener_full and limit_listener into private functions
8863 - MINOR: listeners: Change enable_listener and disable_listener into private functions
8864 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
8865 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
8866 - MINOR: backends: Make get_server_* functions explicitly static
8867 - MINOR: applet: Check applets_active_queue before processing applets queue
8868 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
8869 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
8870 - MINOR: logs: Use dedicated function to init/deinit log buffers
8871 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
8872 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
8873 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
8874 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
8875 - MINOR: fd: Add fd_active function
8876 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
8877 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
8878 - MINOR: freq_ctr: Return the new value after an update
8879 - MEDIUM: check: server states and weight propagation re-work
8880 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
8881 - MINOR: fd: Add fd_update_events function
8882 - MINOR: polling: Use fd_update_events to update events seen for a fd
8883 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
8884 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
8885 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
8886 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
8887 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
8888 - MINOR: xref: Add a new xref system
8889 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
8890 - MINOR: tasks: Move Lua notification from Lua to tasks
8891 - MINOR: net_helper: Inline functions meant to be inlined.
8892 - MINOR: cli: add socket commands and config to prepend informational messages with severity
8893 - MINOR: add severity information to cli feedback messages
8894 - BUILD: Makefile: add a function to detect support by the compiler of certain options
8895 - BUILD: Makefile: shut certain gcc/clang stupid warnings
8896 - BUILD: Makefile: improve detection of support for compiler warnings
8897 - MINOR: peers: don't reference the incoming listener on outgoing connections
8898 - MINOR: frontend: don't retrieve ALPN on the critical path
8899 - MINOR: protocols: always pass a "port" argument to the listener creation
8900 - MINOR: protocols: register the ->add function and stop calling them directly
8901 - MINOR: unix: remove the now unused proto_uxst.h file
8902 - MINOR: listeners: new function create_listeners
8903 - MINOR: listeners: make listeners count consistent with reality
8904 - MEDIUM: session: take care of incrementing/decrementing jobs
8905 - MINOR: listener: new function listener_release
8906 - MINOR: session: small cleanup of conn_complete_session()
8907 - MEDIUM: session: factor out duplicated code for conn_complete_session
8908 - MEDIUM: session: count the frontend's connections at a single place
8909 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
8910 - BUG/MINOR: compression: Check response headers before http-response rules eval
8911 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
8912 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
8913 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
8914 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
8915 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
8916 - MINOR: tools: make my_htonll() more efficient on x86_64
8917 - MINOR: buffer: add b_del() to delete a number of characters
8918 - MINOR: buffer: add b_end() and b_to_end()
8919 - MINOR: net_helper: add functions to read from vectors
8920 - MINOR: net_helper: add write functions
8921 - MINOR: net_helper: add 64-bit read/write functions
8922 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
8923 - MINOR: ist: add a macro to ease const array initialization
8924 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
8925 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
8926 - BUG/MINOR: log: fixing small memory leak in error code path.
8927 - BUG/MINOR: contrib/halog: fixing small memory leak
8928 - BUG/MEDIUM: tcp/http: set-dst-port action broken
8929 - CLEANUUP: checks: don't set conn->handle.fd to -1
8930 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
8931 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
8932 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
8933 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
8934 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
8935 - CLEANUP: checks: remove misleading comments and statuses for external process
8936 - CLEANUP: checks: don't report report the fork() error twice
8937 - CLEANUP: checks: do not allocate a connection for process checks
8938 - TESTS: checks: add a simple test config for external checks
8939 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
8940 - TESTS: checks: add a simple test config for tcp-checks
8941 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
8942 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
8943 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
8944 - MEDIUM: checks: do not allocate a permanent connection anymore
8945 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
8946 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
8947 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
8948 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
8949 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
8950 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
8951 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
8952 - MINOR: session: remove the list of streams from struct session
8953 - DOC: fix some typos
8954 - MINOR: server: add the srv_queue() sample fetch method
8955 - MINOR: payload: add new sample fetch functions to process distcc protocol
8956 - MAJOR: servers: propagate server status changes asynchronously.
8957 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
8958 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
8959 - MINOR: server: Handle weight increase in consistent hash.
8960 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
8961 - BUG/MINOR: tools: fix my_htonll() on x86_64
8962 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
8963 - BUG/MAJOR: lua: scheduled task is freezing.
8964 - MINOR: buffer: add bo_del() to delete a number of characters from output
8965 - MINOR: buffer: add a function to match against string patterns
8966 - MINOR: buffer: add two functions to inject data into buffers
8967 - MINOR: buffer: add buffer_space_wraps()
8968 - REORG: channel: finally rename the last bi_* / bo_* functions
8969 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
8970 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
8971 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
8972 - MINOR: ist: add ist0() to add a trailing zero to a string.
8973 - BUG/MEDIUM: log: check result details truncated.
8974 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
8975 - REORG: http: move some very http1-specific parts to h1.{c,h}
8976 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
8977 - REORG: http: move the HTTP/1 header block parser to h1.c
8978 - MEDIUM: http: make the chunk size parser only depend on the buffer
8979 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
8980 - MINOR: h1: add struct h1m for basic HTTP/1 messages
8981 - MINOR: http: add very simple header management based on double strings
8982 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
8983 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
8984 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
8985 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
8986 - MINOR: connection: add conn_stop_tracking() to disable tracking
8987 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
8988 - MINOR: unix: use conn_full_close() instead of conn_force_close()
8989 - MINOR: checks: use conn_full_close() instead of conn_force_close()
8990 - MINOR: session: use conn_full_close() instead of conn_force_close()
8991 - MINOR: stream: use conn_full_close() instead of conn_force_close()
8992 - MINOR: stream: use conn_full_close() instead of conn_force_close()
8993 - MINOR: backend: use conn_full_close() instead of conn_force_close()
8994 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
8995 - MINOR: connection: remove conn_force_close()
8996 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
8997
Willy Tarreauf57a29a2017-06-02 15:59:51 +020089982017/06/02 : 1.8-dev2
8999 - CLEANUP: server: moving netinet/tcp.h inclusion
9000 - DOC: changed "block"(deprecated) examples to http-request deny
9001 - DOC: add few comments to examples.
9002 - DOC: update sample code for PROXY protocol
9003 - DOC: mention lighttpd 1.4.46 implements PROXY
9004 - MINOR server: Restrict dynamic cookie check to the same proxy.
9005 - DOC: stick-table is available in frontend sections
9006 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
9007 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
9008 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
9009 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
9010 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
9011 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
9012 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
9013 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
9014 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
9015 - BUG/MEDIUM: servers: unbreak server weight propagation
9016 - MINOR: lua: ensure the memory allocator is used all the time
9017 - MINOR: cli: Add a command to send listening sockets.
9018 - MINOR: global: Add an option to get the old listening sockets.
9019 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
9020 - MINOR: doc: document the -x flag
9021 - MINOR: proxy: Don't close FDs if not our proxy.
9022 - MINOR: socket transfer: Set a timeout on the socket.
9023 - MINOR: systemd wrapper: add support for passing the -x option.
9024 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
9025 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
9026 - CLEANUP: logs: typo: simgle => single
9027 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
9028 - MEDIUM: config: don't check config validity when there are fatal errors
9029 - BUG/MAJOR: Use -fwrapv.
9030 - BUG/MINOR: server: don't use "proxy" when px is really meant.
9031 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
9032 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
9033 - MINOR: server: Extract the code responsible of copying default-server settings.
9034 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
9035 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
9036 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
9037 - DOC: Add documentation for new "server-template" keyword.
9038 - DOC: add layer 4 links/cross reference to "block" keyword.
9039 - DOC: errloc/errorloc302/errorloc303 missing status codes.
9040 - BUG/MEDIUM: lua: memory leak
9041 - CLEANUP: lua: remove test
9042 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
9043 - BUG/MINOR: change header-declared function to static inline
9044 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
9045 - MINOR: Add binary encoding request header sample fetch
9046 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
9047 - MINOR: Add ModSecurity wrapper as contrib
9048 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
9049 - DOC: update RFC references
9050 - CONTRIB: tcploop: add action "X" to execute a command
9051 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
9052 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
9053 - BUG/MINOR: checks: don't send proxy protocol with agent checks
9054 - MINOR: ssl: add prefer-client-ciphers
9055 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
9056 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
9057 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
9058 - MINOR: ssl: support TLSv1.3 for bind and server
9059 - MINOR: ssl: show methods supported by openssl
9060 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
9061 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
9062 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
9063 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
9064 - MINOR: sample: Add b64dec sample converter
9065 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
9066 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
9067 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
9068 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
9069 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
9070 - MAJOR: ssl: add openssl async mode support
9071 - MEDIUM: ssl: handle multiple async engines
9072 - MINOR: boringssl: basic support for OCSP Stapling
9073 - MEDIUM: mworker: replace systemd mode by master worker mode
9074 - MEDIUM: mworker: handle reload and signals
9075 - MEDIUM: mworker: wait mode on reload failure
9076 - MEDIUM: mworker: try to guess the next stats socket to use with -x
9077 - MEDIUM: mworker: exit-on-failure option
9078 - MEDIUM: mworker: workers exit when the master leaves
9079 - DOC: add documentation for the master-worker mode
9080 - MEDIUM: systemd: Type=forking in unit file
9081 - MAJOR: systemd-wrapper: get rid of the wrapper
9082 - MINOR: log: Add logurilen tunable.
9083 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
9084 - MINOR: dns: smallest DNS fqdn size
9085 - MINOR: dns: functions to manage memory for a DNS resolution structure
9086 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
9087 - REORG: dns: dns_option structure, storage of hostname_dn
9088 - MINOR: dns: new snr_check_ip_callback function
9089 - MAJOR: dns: save a copy of the DNS response in struct resolution
9090 - MINOR: dns: implement a LRU cache for DNS resolutions
9091 - MINOR: dns: make 'ancount' field to match the number of saved records
9092 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
9093 - MAJOR/REORG: dns: DNS resolution task and requester queues
9094 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
9095 - MINOR: Add Mod Defender integration as contrib
9096 - CLEANUP: str2mask return code comment: non-zero -> zero.
9097 - MINOR: tools: make debug_hexdump() use a const char for the string
9098 - MINOR: tools: make debug_hexdump() take a string prefix
9099 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
9100
Willy Tarreau7b677262017-04-03 09:27:49 +020091012017/04/03 : 1.8-dev1
9102 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
9103 - BUG/MINOR: stats: make field_str() return an empty string on NULL
9104 - DOC: Spelling fixes
9105 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
9106 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
9107 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
9108 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
9109 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
9110 - BUG/MAJOR: stream: fix session abort on resource shortage
9111 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
9112 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
9113 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
9114 - DOC: Fix map table's format
9115 - DOC: Added 51Degrees conv and fetch functions to documentation.
9116 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
9117 - DOC: mention that req_tot is for both frontends and backends
9118 - BUG/MEDIUM: variables: some variable name can hide another ones
9119 - MINOR: lua: Allow argument for actions
9120 - BUILD: rearrange target files by build time
9121 - CLEANUP: hlua: just indent functions
9122 - MINOR: lua: give HAProxy variable access to the applets
9123 - BUG/MINOR: stats: fix be/sessions/max output in html stats
9124 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
9125 - DOC: lua: Documentation about some entry missing
9126 - DOC: lua: Add documentation about variable manipulation from applet
9127 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
9128 - DOC: Add undocumented argument of the trace filter
9129 - DOC: Fix some typo in SPOE documentation
9130 - MINOR: cli: Remove useless call to bi_putchk
9131 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
9132 - MINOR: applet: Count number of (active) applets
9133 - MINOR: task: Rename run_queue and run_queue_cur counters
9134 - BUG/MEDIUM: stream: Save unprocessed events for a stream
9135 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
9136 - BUILD/MEDIUM: Fixing the build using LibreSSL
9137 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
9138 - SCRIPTS: git-show-backports: fix a harmless typo
9139 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
9140 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
9141 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
9142 - CLEANUP: applet/table: add an "action" entry in ->table context
9143 - CLEANUP: applet: remove the now unused appctx->private field
9144 - DOC: lua: documentation about time parser functions
9145 - DOC: lua: improve links
9146 - DOC: lua: section declared twice
9147 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
9148 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
9149 - BUG/MINOR: cli: "show cli sockets" would always report process 64
9150 - CLEANUP: lua: rename one of the lua appctx union
9151 - BUG/MINOR: lua/cli: bad error message
9152 - MEDIUM: lua: use memory pool for hlua struct in applets
9153 - MINOR: lua/signals: Remove Lua part from signals.
9154 - DOC: cli: show cli sockets
9155 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
9156 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
9157 - CLEANUP: applet: group all CLI contexts together
9158 - CLEANUP: stats: move a misplaced stats context initialization
9159 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
9160 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
9161 - MINOR: appctx/cli: remove the env entry from the appctx union
9162 - MINOR: appctx/cli: remove the "be" entry from the appctx union
9163 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
9164 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
9165 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
9166 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
9167 - MINOR/DOC: lua: just precise one thing
9168 - DOC: fix small typo in fe_id (backend instead of frontend)
9169 - BUG/MINOR: Fix the sending function in Lua's cosocket
9170 - BUG/MINOR: lua: memory leak executing tasks
9171 - BUG/MINOR: lua: bad return code
9172 - BUG/MINOR: lua: memleak when Lua/cli fails
9173 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
9174 - CLEANUP: haproxy: statify unexported functions
9175 - MINOR: haproxy: add a registration for build options
9176 - CLEANUP: wurfl: use the build options list to report it
9177 - CLEANUP: 51d: use the build options list to report it
9178 - CLEANUP: da: use the build options list to report it
9179 - CLEANUP: namespaces: use the build options list to report it
9180 - CLEANUP: tcp: use the build options list to report transparent modes
9181 - CLEANUP: lua: use the build options list to report it
9182 - CLEANUP: regex: use the build options list to report the regex type
9183 - CLEANUP: ssl: use the build options list to report the SSL details
9184 - CLEANUP: compression: use the build options list to report the algos
9185 - CLEANUP: auth: use the build options list to report its support
9186 - MINOR: haproxy: add a registration for post-check functions
9187 - CLEANUP: checks: make use of the post-init registration to start checks
9188 - CLEANUP: filters: use the function registration to initialize all proxies
9189 - CLEANUP: wurfl: make use of the late init registration
9190 - CLEANUP: 51d: make use of the late init registration
9191 - CLEANUP: da: make use of the late init registration code
9192 - MINOR: haproxy: add a registration for post-deinit functions
9193 - CLEANUP: wurfl: register the deinit function via the dedicated list
9194 - CLEANUP: 51d: register the deinitialization function
9195 - CLEANUP: da: register the deinitialization function
9196 - CLEANUP: wurfl: move global settings out of the global section
9197 - CLEANUP: 51d: move global settings out of the global section
9198 - CLEANUP: da: move global settings out of the global section
9199 - MINOR: cfgparse: add two new functions to check arguments count
9200 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
9201 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
9202 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
9203 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
9204 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
9205 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
9206 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
9207 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
9208 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
9209 - MINOR: tcp-rules: check that the listener exists before updating its counters
9210 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
9211 - MINOR: listener: move the transport layer pointer to the bind_conf
9212 - MEDIUM: move listener->frontend to bind_conf->frontend
9213 - MEDIUM: ssl: remote the proxy argument from most functions
9214 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
9215 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
9216 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
9217 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
9218 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
9219 - MINOR: connection: add a minimal transport layer registration system
9220 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
9221 - CLEANUP: connection: unexport raw_sock and ssl_sock
9222 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
9223 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
9224 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
9225 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
9226 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
9227 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
9228 - BUG/MINOR: systemd: potential zombie processes
9229 - DOC: Add timings events schemas
9230 - BUILD: lua: build failed on FreeBSD.
9231 - MINOR: samples: add xx-hash functions
9232 - MEDIUM: regex: pcre2 support
9233 - BUG/MINOR: option prefer-last-server must be ignored in some case
9234 - MINOR: stats: Support "select all" for backend actions
9235 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
9236 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
9237 - BUG/MINOR: http: report real parser state in error captures
9238 - BUILD: scripts: automatically update the branch in version.h when releasing
9239 - MINOR: tools: add a generic hexdump function for debugging
9240 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
9241 - MINOR: http: custom status reason.
9242 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
9243 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
9244 - BUG/MINOR: tools: fix off-by-one in port size check
9245 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
9246 - MEDIUM: server: split the address and the port into two different fields
9247 - MINOR: tools: make str2sa_range() return the port in a separate argument
9248 - MINOR: server: take the destination port from the port field, not the addr
9249 - MEDIUM: server: disable protocol validations when the server doesn't resolve
9250 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
9251 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
9252 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
9253 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
9254 - MINOR: proto_http.c 502 error txt typo.
9255 - DOC: add deprecation notice to "block"
9256 - MINOR: compression: fix -vv output without zlib/slz
9257 - BUG/MINOR: Reset errno variable before calling strtol(3)
9258 - MINOR: ssl: don't show prefer-server-ciphers output
9259 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
9260 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
9261 - MAJOR: ssl: bind configuration per certificat
9262 - MINOR: ssl: add curve suite for ECDHE negotiation
9263 - MINOR: checks: Add agent-addr config directive
9264 - MINOR: cli: Add possiblity to change agent config via CLI/socket
9265 - MINOR: doc: Add docs for agent-addr configuration variable
9266 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
9267 - BUILD: ssl: fix to build (again) with boringssl
9268 - BUILD: ssl: fix build on OpenSSL 1.0.0
9269 - BUILD: ssl: silence a warning reported for ERR_remove_state()
9270 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
9271 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
9272 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
9273 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
9274 - MINOR: server: extend the flags to 32 bits
9275 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
9276 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
9277 - BUG/MAJOR: dns: restart sockets after fork()
9278 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
9279 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
9280 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
9281 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
9282 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
9283 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
9284 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
9285 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
9286 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
9287 - MINOR: http: don't close when redirect location doesn't start with "/"
9288 - MEDIUM: boringssl: support native multi-cert selection without bundling
9289 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
9290 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
9291 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
9292 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
9293 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
9294 - MEDIUM: ssl: remove ssl-options from crt-list
9295 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
9296 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
9297 - MINOR: ssl: improved cipherlist captures
9298 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
9299 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
9300 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
9301 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
9302 - MINOR: spoe: Remove SPOE details from the appctx structure
9303 - MINOR: spoe: Add status code in error variable instead of hardcoded value
9304 - MINOR: spoe: Send a log message when an error occurred during event processing
9305 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
9306 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
9307 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
9308 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
9309 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
9310 - MAJOR: spoe: refactor the filter to clean up the code
9311 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
9312 - REORG: spoe: Move struct and enum definitions in dedicated header file
9313 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
9314 - MINOR: spoe: Improve implementation of the payload fragmentation
9315 - MINOR: spoe: Add support of negation for options in SPOE configuration file
9316 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
9317 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
9318 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
9319 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
9320 - DOC: spoe: Update SPOE documentation to reflect recent changes
9321 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
9322 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
9323 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
9324 - BUG/MINOR: Fix "get map <map> <value>" CLI command
9325 - MINOR: Add nbsrv sample converter
9326 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
9327 - MINOR: Add hostname sample fetch
9328 - CLEANUP: Remove comment that's no longer valid
9329 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
9330 - MINOR: http-request tarpit deny_status.
9331 - CLEANUP: http: make http_server_error() not set the status anymore
9332 - MEDIUM: stats: Add JSON output option to show (info|stat)
9333 - MEDIUM: stats: Add show json schema
9334 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
9335 - MINOR: server: Add dynamic session cookies.
9336 - MINOR: cli: Let configure the dynamic cookies from the cli.
9337 - BUG/MINOR: checks: attempt clean shutw for SSL check
9338 - CONTRIB: tcploop: make it build on FreeBSD
9339 - CONTRIB: tcploop: fix time format to silence build warnings
9340 - CONTRIB: tcploop: report action 'K' (kill) in usage message
9341 - CONTRIB: tcploop: fix connect's address length
9342 - CONTRIB: tcploop: use the trash instead of NULL for recv()
9343 - BUG/MEDIUM: listener: do not try to rebind another process' socket
9344 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
9345 - CLEANUP: config: Typo in comment.
9346 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
9347 - TESTS: add a test configuration to stress handshake combinations
9348 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
9349 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
9350 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
9351 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
9352 - BUG: payload: fix payload not retrieving arbitrary lengths
9353 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
9354 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
9355 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
9356 - MINOR: doc: 2.4. Examples should be 2.5. Examples
9357 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
9358 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
9359 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
9360 - OPTIM: poll: enable support for POLLRDHUP
9361 - MINOR: kqueue: exclusively rely on the kqueue returned status
9362 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
9363 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
9364 - DOC/MINOR: Fix typos in proxy protocol doc
9365 - DOC: Protocol doc: add checksum, TLV type ranges
9366 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
9367 - DOC: Protocol doc: add noop TLV
9368 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
9369 - MINOR: dns: improve DNS response parsing to use as many available records as possible
9370 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
9371 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
9372 - MINOR: server: Make 'default-server' support 'backup' keyword.
9373 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
9374 - CLEANUP: server: code alignement.
9375 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
9376 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
9377 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
9378 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
9379 - CLEANUP: server: code alignement.
9380 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
9381 - MINOR: server: Make 'default-server' support 'ssl' keyword.
9382 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
9383 - CLEANUP: server: code alignement.
9384 - MINOR: server: Make 'default-server' support 'verify' keyword.
9385 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
9386 - MINOR: server: Make 'default-server' support 'check' keyword.
9387 - MINOR: server: Make 'default-server' support 'track' setting.
9388 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
9389 - MINOR: server: Make 'default-server' support 'redir' keyword.
9390 - MINOR: server: Make 'default-server' support 'observe' keyword.
9391 - MINOR: server: Make 'default-server' support 'cookie' keyword.
9392 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
9393 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
9394 - MINOR: server: Make 'default-server' support 'namespace' keyword.
9395 - MINOR: server: Make 'default-server' support 'source' keyword.
9396 - MINOR: server: Make 'default-server' support 'sni' keyword.
9397 - MINOR: server: Make 'default-server' support 'addr' keyword.
9398 - MINOR: server: Make 'default-server' support 'disabled' keyword.
9399 - MINOR: server: Add 'no-agent-check' server keyword.
9400 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
9401 - MINOR: doc: fix use-server example (imap vs mail)
9402 - BUG/MEDIUM: tcp: don't require privileges to bind to device
9403 - BUILD: make the release script use shortlog for the final changelog
9404 - BUILD: scripts: fix typo in announce-release error message
9405 - CLEANUP: time: curr_sec_ms doesn't need to be exported
9406 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
9407 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
9408 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
9409 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
9410 - CLEANUP: http: Remove channel_congested function
9411 - CLEANUP: buffers: Remove buffer_bounce_realign function
9412 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
9413 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
9414 - MINOR: http: Add debug messages when HTTP body analyzers are called
9415 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
9416 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
9417 - DOC: fix parenthesis and add missing "Example" tags
9418 - DOC: update the contributing file
9419 - DOC: log-format/tcplog/httplog update
9420 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
9421
Willy Tarreau0e658fb2016-11-25 16:55:50 +010094222016/11/25 : 1.8-dev0
9423
Willy Tarreaue59fcdd2016-11-25 16:39:17 +010094242016/11/25 : 1.7.0
9425 - SCRIPTS: make publish-release also copy the new SPOE doc
9426 - BUILD: http: include types/sample.h in proto_http.h
9427 - BUILD: debug/flags: remove test for SF_COMP_READY
9428 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
9429 - MINOR: lua: add function which return true if the channel is full.
9430 - MINOR: lua: add ip addresses and network manipulation function
9431 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
9432 - CONTRIB: tcploop: implement fork()
9433 - CONTRIB: tcploop: implement logging when called with -v
9434 - CONTRIB: tcploop: update the usage output
9435 - CONTRIB: tcploop: support sending plain strings
9436 - CONTRIB: tcploop: don't report failed send() or recv()
9437 - CONTRIB: tcploop: add basic loops via a jump instruction
9438 - BUG/MEDIUM: channel: bad unlikely macro
9439 - CLEANUP: lua: move comment
9440 - CLEANUP: lua: control executed twice
9441 - BUG/MEDIUM: ssl: Store certificate filename in a variable
9442 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
9443 - CLEANUP: ssl: Remove goto after return dead code
9444 - CLEANUP: ssl: Fix bind keywords name in comments
9445 - DOC: ssl: Use correct wording for ca-sign-pass
9446 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
9447 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
9448 - MINOR: cli: add private pointer and release function
9449 - MEDIUM: lua: Add cli handler for Lua
9450 - BUG/MEDIUM: connection: check the control layer before stopping polling
9451 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
9452 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
9453 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
9454 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
9455 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
9456 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
9457 - MINOR: spoe: Remove useless 'timeout ack' option
9458 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
9459 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
9460 - MINOR: spoe: Add "option set-on-error" statement
9461 - MINOR: stats: correct documentation of process ID for typed output
9462 - BUILD: contrib: fix ip6range build on Centos 7
9463 - BUILD: fix build on Solaris 10/11
9464 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
9465 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
9466 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
9467 - MINOR: connection: add a few functions to report the data and xprt layers' names
9468 - MINOR: connection: add names for transport and data layers
9469 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
9470 - REORG: cli: split dumpstats.h in stats.h and cli.h
9471 - REORG: cli: move ssl CLI functions to ssl_sock.c
9472 - REORG: cli: move map and acl code to map.c
9473 - REORG: cli: move show stat resolvers to dns.c
9474 - MINOR: cli: create new function cli_has_level() to validate permissions
9475 - MINOR: server: create new function cli_find_server() to find a server
9476 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
9477 - REORG: cli: move 'set server' to server.c
9478 - REORG: cli: move 'show pools' to memory.c
9479 - REORG: cli: move 'show servers' to proxy.c
9480 - REORG: cli: move 'show sess' to stream.c
9481 - REORG: cli: move 'show backend' to proxy.c
9482 - REORG: cli: move get/set weight to server.c
9483 - REORG: cli: move "show stat" to stats.c
9484 - REORG: cli: move "show info" to stats.c
9485 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
9486 - REORG: cli: move table dump/clear/set to stick_table.c
9487 - REORG: cli: move "show errors" out of cli.c
9488 - REORG: cli: make "show env" also use the generic keyword registration
9489 - REORG: cli: move "set timeout" to its own handler
9490 - REORG: cli: move "clear counters" to stats.c
9491 - REORG: cli: move "set maxconn global" to its own handler
9492 - REORG: cli: move "set maxconn server" to server.c
9493 - REORG: cli: move "set maxconn frontend" to proxy.c
9494 - REORG: cli: move "shutdown sessions server" to stream.c
9495 - REORG: cli: move "shutdown session" to stream.c
9496 - REORG: cli: move "shutdown frontend" to proxy.c
9497 - REORG: cli: move "{enable|disable} frontend" to proxy.c
9498 - REORG: cli: move "{enable|disable} server" to server.c
9499 - REORG: cli: move "{enable|disable} health" to server.c
9500 - REORG: cli: move "{enable|disable} agent" to server.c
9501 - REORG: cli: move the "set rate-limit" functions to their own parser
9502 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
9503 - CLEANUP: cli: simplify the request parser a little bit
9504 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
9505 - BUILD: server: remove a build warning introduced by latest series
9506 - BUG/MINOR: log-format: uncatched memory allocation functions
9507 - CLEANUP: log-format: useless file and line in json converter
9508 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
9509 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
9510 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
9511 - CLEANUP: log-format: remove unused arguments
9512 - MEDIUM: log-format: strict parsing and enable fail
9513 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
9514 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
9515 - BUILD: vars: remove a build warning on vars.c
9516 - MINOR: lua: add utility function for check boolean argument
9517 - MINOR: lua: Add tokenize function.
9518 - BUG/MINOR: conf: calloc untested
9519 - MINOR: http/conf: store the use_backend configuration file and line for logs
9520 - MEDIUM: log-format: Use standard HAProxy log system to report errors
9521 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
9522 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
9523 - MINOR: cli: make "show stat" support a proxy name
9524 - MINOR: cli: make "show errors" support a proxy name
9525 - MINOR: cli: make "show errors" capable of dumping only request or response
9526 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
9527 - CLEANUP: counters: move from 3 types to 2 types
9528 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
9529 - REORG: tcp-rules: move tcp rules processing to their own file
9530 - REORG: stkctr: move all the stick counters processing to stick-tables.c
9531 - DOC: update the roadmap file with the latest changes
9532
Willy Tarreaud5d890b2016-11-09 23:18:17 +010095332016/11/09 : 1.7-dev6
9534 - DOC: fix the entry for hash-balance-factor config option
9535 - DOC: Fix typo in description of `-st` parameter in man page
9536 - CLEANUP: cfgparse: Very minor spelling correction
9537 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
9538 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
9539 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
9540 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
9541 - MINOR: peers: remove the pointer to the stream
9542 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
9543 - DOC: stats: provide state details for show servers state
9544 - MEDIUM: tools: make str2ip2() preserve existing ports
9545 - CLEANUP: tools: make ipcpy() preserve the original port
9546 - OPTIM: http: move all http character classs tables into a single one
9547 - OPTIM: http: improve parsing performance of long header lines
9548 - OPTIM: http: improve parsing performance of long URIs
9549 - OPTIM: http: optimize lookup of comma and quote in header values
9550 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
9551 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
9552 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
9553 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
9554 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
9555 - DOC: move the device detection modules documentation to their own files
9556 - CLEANUP: wurfl: reduce exposure in the rest of the code
9557 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
9558 - MINOR: stream: make option contstats usable again
9559 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
9560 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
9561 - MAJOR: server: postpone address resolution
9562 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
9563 - MINOR: server: indicate in the logs when RMAINT is cleared
9564 - MINOR: stats: indicate it when a server is down due to resolution
9565 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
9566 - MINOR: dns: implement extra 'hold' timers.
9567 - MAJOR: dns: runtime resolution can change server admin state
9568 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
9569 - MEDIUM: server: add a new init-addr server line setting
9570 - MEDIUM: server: make use of init-addr
9571 - MINOR: server: implement init-addr none
9572 - MEDIUM: server: make libc resolution failure non-fatal
9573 - MINOR: server: add support for explicit numeric address in init-addr
9574 - DOC: add some documentation for the "init-addr" server keyword
9575 - MINOR: init: add -dr to ignore server address resolution failures
9576 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
9577 - BUG: vars: Fix 'set-var' converter because of a typo
9578 - CLEANUP: remove last references to 'ruleset' section
9579 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
9580 - MINOR: filters: Update filters documentation accordingly to recent changes
9581 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
9582 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
9583 - MINOR: flt_trace: Add hexdump option to dump forwarded data
9584 - MINOR: cfgparse: Add functions to backup and restore registered sections
9585 - MINOR: cfgparse: Parse scope lines and save the last one parsed
9586 - REORG: sample: move code to release a sample expression in sample.c
9587 - MINOR: vars: Allow '.' in variable names
9588 - MINOR: vars: Add vars_set_by_name_ifexist function
9589 - MEDIUM: vars: Add a per-process scope for variables
9590 - MINOR: vars: Add 'unset-var' action/converter
9591 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
9592 - MINOR: spoe: add random ip-reputation service as SPOA example
9593 - MINOR: spoe/checks: Add support for SPOP health checks
9594 - DOC: update ROADMAP file
9595
Willy Tarreau608efa12016-10-25 22:22:00 +020095962016/10/25 : 1.7-dev5
9597 - MINOR: cfgparse: few memory leaks fixes.
9598 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
9599 - CLEANUP: logs: remove unused log format field definitions
9600 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
9601 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
9602 - CLEANUP: proto_http: Removing useless variable assignation
9603 - CLEANUP: dumpstats: Removing useless variables allocation
9604 - CLEANUP: dns: Removing usless variable & assignation
9605 - BUG/MINOR: payload: fix SSLv2 version parser
9606 - MINOR: cli: allow the semi-colon to be escaped on the CLI
9607 - MINOR: cli: change a server health check port through the stats socket
9608 - BUG/MINOR: Fix OSX compilation errors
9609 - MAJOR: check: find out which port to use for health check at run time
9610 - MINOR: server: introduction of 3 new server flags
9611 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
9612 - MINOR: cli: ability to change a server's port
9613 - CLEANUP/MINOR dns: comment do not follow up code update
9614 - MINOR: chunk: new strncat function
9615 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
9616 - MINOR: dns: new MAX values
9617 - MINOR: dns: new macro to compute DNS header size
9618 - MINOR: dns: new DNS structures to store received packets
9619 - MEDIUM: dns: new DNS response parser
9620 - MINOR: dns: query type change when last record is a CNAME
9621 - MINOR: dns: proper domain name validation when receiving DNS response
9622 - MINOR: dns: comments in types/dns.h about structures endianness
9623 - BUG/MINOR: displayed PCRE version is running release
9624 - MINOR: show Built with PCRE version
9625 - MINOR: show Running on zlib version
9626 - MEDIUM: make SO_REUSEPORT configurable
9627 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
9628 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
9629 - BUG/MINOR: stats: report the correct conn_time in backend's html output
9630 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
9631 - MINOR: Add fe_req_rate sample fetch
9632 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
9633 - MEDIUM: cli: register CLI keywords with cli_register_kw()
9634 - BUILD: Make use of accept4() on OpenBSD.
9635 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
9636 - DOC: fix missed entry for "set-{src,dst}{,-port}"
9637 - BUG/MINOR: vars: use sess and not s->sess in action_store()
9638 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
9639 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
9640 - MINOR: stats: output dcon
9641 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
9642 - MINOR: counters: add new fields for denied_sess
9643 - MEDIUM: tcp: add registration and processing of TCP L5 rules
9644 - MINOR: stats: emit dses
9645 - DOC: document tcp-request session
9646 - MINOR: ssl: add debug traces
9647 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
9648 - BUG/MINOR: ssl: Check malloc return code
9649 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
9650 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
9651 - BUG/MINOR: systemd: always restore signals before execve()
9652 - BUG/MINOR: systemd: check return value of calloc()
9653 - MINOR: systemd: report it when execve() fails
9654 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
9655 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
9656 - MINOR: backend: add hash-balance-factor option for hash-type consistent
9657 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
9658 - MEDIUM: server: Implement bounded-load hash algorithm
9659 - SCRIPTS: make git-show-backports also dump a "git show" command
9660 - MINOR: build: Allow linking to device-atlas library file
9661 - MINOR: stats: Escape equals sign on socket dump
9662
Willy Tarreau41d5e3a2016-08-14 12:25:21 +020096632016/08/14 : 1.7-dev4
9664 - MINOR: add list_append_word function
9665 - MEDIUM: init: use list_append_word in haproxy.c
9666 - MEDIUM: init: allow directory as argument of -f
9667 - CLEANUP: config: detect double registration of a config section
9668 - MINOR: log: add the %Td log-format specifier
9669 - MEDIUM: filters: Move HTTP headers filtering in its own callback
9670 - MINOR: filters: Simplify calls to analyzers using 2 new macros
9671 - MEDIUM: filters: Add pre and post analyzer callbacks
9672 - DOC: filters: Update the filters documentation accordingly to recent changes
9673 - BUG/MEDIUM: init: don't use environment locale
9674 - SCRIPTS: teach git-show-backports how to report upstream commits
9675 - SCRIPTS: make git-show-backports capable of limiting its history
9676 - BUG/MAJOR: fix listening IP address storage for frontends
9677 - BUG/MINOR: fix listening IP address storage for frontends (cont)
9678 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
9679 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
9680 - BUG/MEDIUM: stick-tables: fix breakage in table converters
9681 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
9682 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
9683 - BUILD: fix build on Solaris 11
9684 - BUG/MEDIUM: config: fix multiple declaration of section parsers
9685 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
9686 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
9687 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
9688 - DOC: update doc about tls-tickets-keys dump
9689 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
9690 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
9691 - MEDIUM: tcp/http: add 'set-src-port' action
9692 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
9693 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
9694 - BUILD/MEDIUM: rebuild everything when an include file is changed
9695 - BUILD/MEDIUM: force a full rebuild if some build options change
9696 - BUG/MEDIUM: lua: converters doesn't work
9697 - BUG/MINOR: http: add-header: header name copied twice
9698 - BUG/MEDIUM: http: add-header: buffer overwritten
9699 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
9700 - MINOR: stream: export the function 'smp_create_src_stkctr'
9701 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
9702 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
9703 - BUG/MINOR: http: url32+src should use the big endian version of url32
9704 - BUG/MINOR: http: url32+src should check cli_conn before using it
9705 - DOC: http: add documentation for url32 and url32+src
9706 - BUG/MINOR: fix http-response set-log-level parsing error
9707 - MINOR: systemd: Use variable for config and pidfile paths
9708 - MINOR: systemd: Perform sanity check on config before reload
9709 - MEDIUM: ssl: support SNI filters with multicerts
9710 - MINOR: ssl: crt-list parsing factor
9711 - BUILD: ssl: fix typo causing a build failure in the multicert patch
9712 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
9713 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
9714 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
9715 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
9716 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
9717 - BUG/MAJOR: external-checks: use asynchronous signal delivery
9718 - BUG/MINOR: external-checks: do not unblock undesired signals
9719 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
9720 - BUG/MEDIUM: filters: Fix data filtering when data are modified
9721 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
9722 - BUG/MINOR: srv-state: fix incorrect output of state file
9723 - BUG/MINOR: ssl: close ssl key file on error
9724 - BUG/MINOR: http: fix misleading error message for response captures
9725 - BUG/BUILD: don't automatically run "make" on "make install"
9726 - DOC: add missing doc for http-request deny [deny_status <status>]
9727 - CLEANUP: dumpstats: u64 field is an unsigned type.
9728 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
9729 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
9730 - MINOR: new function my_realloc2 = realloc + free upon failure
9731 - CLEANUP: fixed some usages of realloc leading to memory leak
9732 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
9733 - CLEANUP: connection: using internal struct to hold source and dest port.
9734 - DOC: spelling fixes
9735 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
9736 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
9737 - BUG/MINOR: Fix endiness issue in DNS header creation code
9738 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
9739 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
9740 - MEDIUM: http: implement http-response track-sc* directive
9741 - BUG/MINOR: peers: Fix peers data decoding issue
9742 - BUG/MINOR: peers: don't count track-sc multiple times on errors
9743 - MINOR: standard: add function "escape_string"
9744 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
9745 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
9746 - DOC: lua: remove old functions
9747 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
9748 - DOC: fix json converter example and error message
9749 - BUG/MEDIUM: stream-int: completely detach connection on connect error
9750 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
9751 - BUILD: make proto_tcp.c compatible with musl library
9752 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
9753 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
9754 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
9755 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
9756 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
9757 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
9758 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
9759 - MINOR: sample: use smp_make_rw() in upper/lower converters
9760 - MINOR: tcp: add dst_is_local and src_is_local
9761 - BUG/MINOR: peers: some updates are pushed twice after a resync.
9762 - BUILD: protocol: fix some build errors on OpenBSD
9763 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
9764 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
9765 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
9766 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
9767 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
9768 - BUILD: compression: remove a warning when no compression lib is used
9769 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
9770 - MINOR: tcp: add further tcp info fetchers
9771 - BUG/MINOR: peers: empty chunks after a resync.
9772 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
9773 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
9774 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
9775 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
9776
Willy Tarreau7d1b48f2016-05-10 15:36:58 +020097772016/05/10 : 1.7-dev3
9778 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
9779 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
9780 - BUILD: namespaces: fix a potential build warning in namespaces.c
9781 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
9782 - DOC: add encoding to json converter example
9783 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
9784 - DOC: Clarify tunes.vars.xxx-max-size settings
9785 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
9786 - CLEANUP: connection: fix double negation on memcmp()
9787 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
9788 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
9789 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
9790 - BUG/MINOR: lua: can't load external libraries
9791 - BUG/MINOR: prevent the dump of uninitialized vars
9792 - CLEANUP: map: it seems that the map were planed to be chained
9793 - MINOR: lua: move class registration facilities
9794 - MINOR: lua: remove some useless checks
9795 - CLEANUP: lua: Remove two same functions
9796 - MINOR: lua: refactor the Lua object registration
9797 - MINOR: lua: precise message when a critical error is catched
9798 - MINOR: lua: post initialization
9799 - MINOR: lua: Add internal function which strip spaces
9800 - MINOR: lua: convert field to lua type
9801 - DOC: "addr" parameter applies to both health and agent checks
9802 - DOC: timeout client: pointers to timeout http-request
9803 - DOC: typo on stick-store response
9804 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
9805 - DOC: typo: ACL subdir match
9806 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
9807 - DOC: regsub: parser limitation about the inability to use closing square brackets
9808 - DOC: typo: req.uri is now replaced by capture.req.uri
9809 - DOC: name set-gpt0 mismatch with the expected keyword
9810 - MINOR: http: sample fetch which returns unique-id
9811 - MINOR: dumpstats: extract stats fields enum and names
9812 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
9813 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
9814 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
9815 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
9816 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
9817 - MINOR: lua: dump general info
9818 - MINOR: lua: add class proxy
9819 - MINOR: lua: add class server
9820 - MINOR: lua: add class listener
9821 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
9822 - MEDIUM: proxy: use dynamic allocation for error dumps
9823 - CLEANUP: remove unneeded casts
9824 - CLEANUP: uniformize last argument of malloc/calloc
9825 - DOC: fix "needed" typo
9826 - BUG/MINOR: dumpstats: fix write to global chunk
9827 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
9828 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
9829 - CLEANUP: proto_http: few corrections for gcc warnings.
9830 - BUG/MINOR: DNS: resolution structure change
9831 - BUG/MINOR : allow to log cookie for tarpit and denied request
9832 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
9833 - OPTIM/MINOR: session: abort if possible before connecting to the backend
9834 - DOC: http: rename the unique-id sample and add the documentation
9835 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
9836 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
9837 - BUG/MINOR: server: risk of over reading the pref_net array.
9838 - BUG/MINOR: cfgparse: couple of small memory leaks.
9839 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
9840 - DOC: fix discrepancy in the example for http-request redirect
9841 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
9842 - CLEANUP: .gitignore cleanup
9843 - DOC: Clarify IPv4 address / mask notation rules
9844 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
9845 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
9846 - BUG/MINOR: listener: stop unbound listeners on startup
9847 - BUG/MINOR: fix maxaccept computation according to the frontend process range
9848 - TESTS: add blocksig.c to run tests with all signals blocked
9849 - MEDIUM: unblock signals on startup.
9850 - MINOR: filters: Print the list of existing filters during HA startup
9851 - MINOR: filters: Typo in an error message
9852 - MINOR: filters: Filters must define the callbacks struct during config parsing
9853 - DOC: filters: Add filters documentation
9854 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
9855 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
9856 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
9857 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
9858 - MINOR: Add ability for agent-check to set server maxconn
9859 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
9860 - MINOR: filters: add opaque data
9861 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
9862 - MINOR: lua: migrate the argument mask to 64 bits type.
9863 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
9864 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
9865 - BUG/MEDIUM: http: fix incorrect reporting of server errors
9866 - MINOR: channel: add new function channel_congested()
9867 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
9868 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
9869 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
9870 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
9871 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
9872 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
9873 - MINOR: stats: fix typo in help messages
9874 - MINOR: stats: show stat resolvers missing in the help message
9875 - BUG/MINOR: dns: fix DNS header definition
9876 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
9877 - CLEANUP: don't ignore scripts in .gitignore
9878 - BUILD: add a few release and backport scripts in scripts/
9879
Willy Tarreau8234f6d2016-03-14 00:10:05 +010098802016/03/14 : 1.7-dev2
9881 - DOC: lua: fix lua API
9882 - DOC: mailers: typo in 'hostname' description
9883 - DOC: compression: missing mention of libslz for compression algorithm
9884 - BUILD/MINOR: regex: missing header
9885 - BUG/MINOR: stream: bad return code
9886 - DOC: lua: fix somme errors and add implicit types
9887 - MINOR: lua: add set/get priv for applets
9888 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
9889 - BUG/MINOR: http: Be sure to process all the data received from a server
9890 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
9891 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
9892 - DOC: ssl: fixed some formatting errors in crt tag
9893 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
9894 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
9895 - MINOR: chunk: make chunk_initstr() take a const string
9896 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
9897 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
9898 - MINOR: lru: new function to delete <nb> least recently used keys
9899 - DOC: add Ben Shillito as the maintainer of 51d
9900 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
9901 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
9902 - BUG/MINOR: 51d: Releases workset back to pool.
9903 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
9904 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
9905 - MINOR: rename master process name in -Ds (systemd mode)
9906 - DOC: fix a few spelling mistakes
9907 - DOC: fix "workaround" spelling
9908 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
9909 - MINOR: fix the return type for dns_response_get_query_id() function
9910 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
9911 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
9912 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
9913 - BUG/MEDIUM: servers state: server port is used uninitialized
9914 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
9915 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
9916 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
9917 - MEDIUM: pools: add a new flag to avoid rounding pool size up
9918 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
9919 - BUG/MINOR: stream: don't force retries if the server is DOWN
9920 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
9921 - MINOR: unix: don't mention free ports on EAGAIN
9922 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
9923 - MINOR: stats: send content-length with the redirect to allow keep-alive
9924 - BUG: stream_interface: Reuse connection even if the output channel is empty
9925 - DOC: remove old tunnel mode assumptions
9926 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
9927 - BUG/MEDIUM: http-reuse: do not share private connections across backends
9928 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
9929 - BUG/MINOR: stats: fix missing comma in stats on agent drain
9930 - MAJOR: filters: Add filters support
9931 - MINOR: filters: Do not reset stream analyzers if the client is gone
9932 - REORG: filters: Prepare creation of the HTTP compression filter
9933 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
9934 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
9935 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
9936 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
9937 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
9938 - MINOR: filters: Add stream_filters structure to hide filters info
9939 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
9940 - MINOR: filters: Remove unused or useless stuff and do small optimizations
9941 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
9942 - MINOR: filters/http: Slightly update the parsing of chunks
9943 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
9944 - MINOR: filters: Add an filter example
9945 - MINOR: filters: Extract proxy stuff from the struct filter
9946 - MINOR: map: Add regex matching replacement
9947 - BUG/MINOR: lua: unsafe initialization
9948 - DOC: lua: fix somme errors
9949 - MINOR: lua: file dedicated to unsafe functions
9950 - MINOR: lua: add "now" time function
9951 - MINOR: standard: add RFC HTTP date parser
9952 - MINOR: lua: Add date functions
9953 - MINOR: lua: move common function
9954 - MINOR: lua: merge function
9955 - MINOR: lua: Add concat class
9956 - MINOR: standard: add function "escape_chunk"
9957 - MEDIUM: log: add a new log format flag "E"
9958 - DOC: add server name at rate-limit sessions example
9959 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
9960 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
9961 - DOC: LUA: fix some typos and syntax errors
9962 - MINOR: cli: add a new "show env" command
9963 - MEDIUM: config: allow to manipulate environment variables in the global section
9964 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
9965 - MINOR: mailers: increase default timeout to 10 seconds
9966 - MINOR: mailers: use <CRLF> for all line endings
9967 - BUG/MAJOR: lua: segfault using Concat object
9968 - DOC: lua: copyrights
9969 - MINOR: common: mask conversion
9970 - MEDIUM: dns: extract options
9971 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
9972 - MINOR: mailers: make it possible to configure the connection timeout
9973 - BUG/MAJOR: lua: applets can't sleep.
9974 - BUG/MINOR: server: some prototypes are renamed
9975 - BUG/MINOR: lua: Useless copy
9976 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
9977 - BUG/MINOR: server: fix the format of the warning on address change
9978 - CLEANUP: server: add "const" to some message strings
9979 - MINOR: server: generalize the "updater" source
9980 - BUG/MEDIUM: chunks: always reject negative-length chunks
9981 - BUG/MINOR: systemd: ensure we don't miss signals
9982 - BUG/MINOR: systemd: report the correct signal in debug message output
9983 - BUG/MINOR: systemd: propagate the correct signal to haproxy
9984 - MINOR: systemd: ensure a reload doesn't mask a stop
9985 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
9986 - CLEANUP: stats: Avoid computation with uninitialized bits.
9987 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
9988 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
9989 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
9990 - BUG/MAJOR: samples: check smp->strm before using it
9991 - MINOR: sample: add a new helper to initialize the owner of a sample
9992 - MINOR: sample: always set a new sample's owner before evaluating it
9993 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
9994 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
9995 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
9996 - MINOR: stats: create fields types suitable for all CSV output data
9997 - MINOR: stats: add all the "show info" fields in a table
9998 - MEDIUM: stats: fill all the show info elements prior to displaying them
9999 - MINOR: stats: add a function to emit fields into a chunk
10000 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
10001 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
10002 - MINOR: stats: add a declaration of all stats fields
10003 - MINOR: stats: don't hard-code the CSV fields list anymore
10004 - MINOR: stats: create stats fields storage and CSV dump function
10005 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
10006 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
10007 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
10008 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
10009 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
10010 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
10011 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
10012 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
10013 - MEDIUM: stats: move the server state coloring logic to the server dump function
10014 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
10015 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
10016 - MINOR: stats: make CSV report server check status only when enabled
10017 - MINOR: stats: only report backend's down time if it has servers
10018 - MINOR: stats: prepend '*' in front of the check status when in progress
10019 - MINOR: stats: make HTML stats dump rely on the table for the check status
10020 - MINOR: stats: add agent_status, agent_code, agent_duration to output
10021 - MINOR: stats: add check_desc and agent_desc to the output fields
10022 - MINOR: stats: add check and agent's health values in the output
10023 - MEDIUM: stats: make the HTML server state dump use the CSV states
10024 - MEDIUM: stats: only report observe errors when observe is set
10025 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
10026 - MEDIUM: stats: report server's address in the CSV output
10027 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
10028 - MEDIUM: stats: compute the color code only in the HTML form
10029 - MEDIUM: stats: report the listeners' address in the CSV output
10030 - MEDIUM: stats: make it possible to report the WAITING state for listeners
10031 - REORG: stats: dump the frontend's HTML stats via a generic function
10032 - REORG: stats: dump the socket stats via the generic function
10033 - REORG: stats: dump the server stats via the generic function
10034 - REORG: stats: dump the backend stats via the generic function
10035 - MEDIUM: stats: add a new "mode" column to report the proxy mode
10036 - MINOR: stats: report the load balancing algorithm in CSV output
10037 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
10038 - MINOR: stats: report number of intercepted requests for frontend and backends
10039 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
10040 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
10041 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
10042 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
10043 - MINOR: stats: add functions to emit typed fields into a chunk
10044 - MEDIUM: stats: support "show info typed" on the CLI
10045 - MEDIUM: stats: implement a typed output format for stats
10046 - DOC: document the "show info typed" and "show stat typed" output formats
10047 - MINOR: cfgparse: warn when uid parameter is not a number
10048 - MINOR: cfgparse: warn when gid parameter is not a number
10049 - BUG/MINOR: standard: Avoid free of non-allocated pointer
10050 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
10051 - CLEANUP: http: fix a build warning introduced by a recent fix
10052 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
10053
Willy Tarreaucb928252015-12-20 23:33:18 +0100100542015/12/20 : 1.7-dev1
10055 - DOC: specify that stats socket doc (section 9.2) is in management
10056 - BUILD: install only relevant and existing documentation
10057 - CLEANUP: don't ignore debian/ directory if present
10058 - BUG/MINOR: dns: parsing error of some DNS response
10059 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
10060 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
10061 - MEDIUM: dns: Don't use the ANY query type
10062 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
10063 - DOC: fix a typo for a "deviceatlas" keyword
10064 - FIX: small typo in an example using the "Referer" header
10065 - MINOR: cli: ability to set per-server maxconn
10066 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
10067 - DEBUG/MEDIUM: memory: optionally protect free data in pools
10068 - DEBUG/MEDIUM: memory: add optional control pool memory operations
10069 - MEDIUM: memory: add accounting for failed allocations
10070 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
10071 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
10072 - BUG/MINOR: dns: unable to parse CNAMEs response
10073 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
10074 - DOC: deviceatlas: more example use cases.
10075 - MINOR: config: allow IPv6 bracketed literals
10076 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
10077 - BUILD: add Haiku as supported target.
10078 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
10079 - DOC: typo on capture.res.hdr and capture.req.hdr
10080 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
10081 - CLEANUP: use direction names in place of numeric values
10082 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
10083 - MINOR: check: add agent-send server parameter
10084 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
10085 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
10086 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
10087 - BUILD: freebsd: double declaration
10088 - BUG/MEDIUM: lua: clean output buffer
10089 - BUILD: check for libressl to be able to build against it
10090 - DOC: lua-api/index.rst small example fixes, spelling correction.
10091 - DOC: lua: architecture and first steps
10092 - DOC: relation between timeout http-request and option http-buffer-request
10093 - BUILD: Make deviceatlas require PCRE
10094 - BUG: http: do not abort keep-alive connections on server timeout
10095 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
10096 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
10097 - BUILD/MINOR: http: proto_http.h needs sample.h
10098 - BUG/MEDIUM: http: don't enable auto-close on the response side
10099 - BUG/MEDIUM: stream: fix half-closed timeout handling
10100 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
10101 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
10102 - BUG/MEDIUM: sample: urlp can't match an empty value
10103 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
10104 - CLEANUP: proxy: calloc call inverted arguments
10105 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
10106 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
10107 - DOC: Edited 51Degrees section of README/
10108 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
10109 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
10110 - BUG/MINOR: checks: typo in an email-alert error message
10111 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
10112 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
10113 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
10114 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
10115 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
10116 - MINOR: ssl: Added cert_key_and_chain struct
10117 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
10118 - MINOR: ssl: Added multi cert support for crt-list config keyword
10119 - MEDIUM: ssl: Added multi cert support for loading crt directories
10120 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
10121 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
10122 - MINOR: config: make tune.recv_enough configurable
10123 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
10124 - DOC: ssl: Adding docs for Multi-Cert bundling
10125 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
10126 - BUG/MEDIUM: peers: old stick table updates could be repushed.
10127 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
10128 - REORG/MINOR: lua: convert boolean "int" to bitfield
10129 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
10130 - BUG/MINOR: lua: Lua applets must not use http_txn
10131 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
10132 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
10133 - CLEANUP: lua: bad error messages
10134 - CONTRIB: initiate a debugging suite to make debugging easier
10135
Willy Tarreau991b4782015-10-13 21:48:10 +0200101362015/10/13 : 1.7-dev0
10137 - exact copy of 1.6.0
10138
Willy Tarreau844028b2015-10-13 18:52:22 +0200101392015/10/13 : 1.6.0
10140 - BUG/MINOR: Handle interactive mode in cli handler
10141 - DOC: global section missing parameters
10142 - DOC: backend section missing parameters
10143 - DOC: stats paramaters available in frontend
10144 - MINOR: lru: do not allocate useless memory in lru64_lookup
10145 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
10146 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
10147 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
10148 - MINOR: ssl: Read the file used to generate certificates in any order
10149 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
10150 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
10151 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
10152 - BUILD: Fix the build on OSX (htonll/ntohll)
10153 - BUILD: enable build on Linux/s390x
10154 - BUG/MEDIUM: lua: direction test failed
10155 - MINOR: lua: fix a spelling error in some error messages
10156 - CLEANUP: cli: ensure we can never double-free error messages
10157 - BUG/MEDIUM: lua: force server-close mode on Lua services
10158 - MEDIUM: init: support more command line arguments after pid list
10159 - MEDIUM: init: support a list of files on the command line
10160 - MINOR: debug: enable memory poisonning to use byte 0
10161 - BUILD: ssl: fix build error introduced by recent commit
10162 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
10163 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
10164 - DOC: mention the "namespace" options for bind and server lines
10165 - DOC: add the "management" documentation
10166 - DOC: move the stats socket documentation from config to management
10167 - MINOR: examples: update haproxy.spec to mention new docs
10168 - DOC: mention management.txt in README
10169 - DOC: remove haproxy-{en,fr}.txt
10170 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
10171 - MINOR: init: report use of libslz instead of "no compression"
10172 - CLEANUP: examples: remove some obsolete and confusing files
10173 - CLEANUP: examples: remove obsolete configuration file samples
10174 - CLEANUP: examples: fix the example file content-sw-sample.cfg
10175 - CLEANUP: examples: update sample file option-http_proxy.cfg
10176 - CLEANUP: examples: update sample file ssl.cfg
10177 - CLEANUP: tests: move a test file from examples/ to tests/
10178 - CLEANUP: examples: shut up warnings in transparent proxy example
10179 - CLEANUP: tests: removed completely obsolete test files
10180 - DOC: update ROADMAP to remove what was done in 1.6
10181 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
10182
Willy Tarreau8c1ad712015-10-06 12:13:56 +0200101832015/10/06 : 1.6-dev7
10184 - MINOR: cli: Dump all resolvers stats if no resolver section is given
10185 - BUG: config: external-check command validation is checking for incorrect arguments.
10186 - DOC: documentation format cleanups
10187 - DOC: lua: few typos.
10188 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
10189 - BUG/MEDIUM: logs: segfault writing to log from Lua
10190 - DOC: fix lua use-service example
10191 - MINOR: payload: add support for tls session ticket ext
10192 - MINOR: lua: remove the run flag
10193 - MEDIUM: lua: change the timeout execution
10194 - MINOR: lua: rename the tune.lua.applet-timeout
10195 - DOC: lua: update Lua doc
10196 - DOC: lua: update doc according with the last Lua changes
10197 - MINOR: http/tcp: fill the avalaible actions
10198 - DOC: reorder misplaced res.ssl_hello_type in the doc
10199 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
10200 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
10201 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
10202 - BUILD: server: fix build warnings introduced by load-server-state
10203 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
10204
Willy Tarreaue7ae6562015-09-28 23:46:27 +0200102052015/09/28 : 1.6-dev6
10206 - BUG/MAJOR: can't enable a server through the stat socket
10207 - MINOR: server: Macro definition for server-state
10208 - MINOR: cli: new stats socket command: show servers state
10209 - DOC: stats socket command: show servers state
10210 - MINOR: config: new global directive server-state-base
10211 - DOC: global directive server-state-base
10212 - MINOR: config: new global section directive: server-state-file
10213 - DOC: new global directive: server-state-file
10214 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
10215 - DOC: load-server-state-from-file
10216 - MINOR: init: server state loaded from file
10217 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
10218 - MINOR: cli: new stats socket command: show backend
10219 - DOC: servers state seamless reload example
10220 - BUG: dns: can't connect UDP socket on FreeBSD
10221 - MINOR: cfgparse: New function cfg_unregister_sections()
10222 - MINOR: chunk: New function free_trash_buffers()
10223 - BUG/MEDIUM: main: Freeing a bunch of static pointers
10224 - MINOR: proto_http: Externalisation of previously internal functions
10225 - MINOR: global: Few new struct fields for da module
10226 - MAJOR: da: Update of the DeviceAtlas API module
10227 - DOC: DeviceAtlas new keywords
10228 - DOC: README: DeviceAtlas sample configuration updates
10229 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
10230 - MEDIUM: log: use a separate buffer for the header and for the message
10231 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
10232 - MEDIUM: logs: add support for RFC5424 header format per logger
10233 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
10234 - DOC: mention support for the RFC5424 syslog message format
10235 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
10236 - MEDIUM: logs: pass the trailing "\n" as an iovec
10237 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
10238 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
10239 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
10240 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
10241 - MINOR: global: Added new fields for 51Degrees device detection
10242 - DOC: Added more explanation for 51Degrees V3.2
10243 - BUILD: Changed 51Degrees option to support V3.2
10244 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
10245 - MINOR: 51d: Improved string handling for LRU cache
10246 - DOC: add references to rise/fall for the fastinter explanation
10247 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
10248 - BUG/MAJOR: lua: potential unexpected aborts()
10249 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
10250 - MINOR: action: add private configuration
10251 - MINOR: action: add reference to the original keywork matched for the called parser.
10252 - MINOR: lua: change actions registration
10253 - MEDIUM: proto_http: smp_prefetch_http initialize txn
10254 - MINOR: channel: rename function chn_sess to chn_strm
10255 - CLEANUP: lua: align defines
10256 - MINOR: http: export http_get_path() function
10257 - MINOR: http: export the get_reason() function
10258 - MINOR: http: export function http_msg_analyzer()
10259 - MINOR: http: split initialization
10260 - MINOR: lua: reset pointer after use
10261 - MINOR: lua: identify userdata objects
10262 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
10263 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
10264 - CLEANUP: lua: use calloc in place of malloc
10265 - BUG/MEDIUM: lua: longjmp function must be unregistered
10266 - BUG/MEDIUM: lua: forces a garbage collection
10267 - BUG/MEDIUM: lua: wakeup task on bad conditions
10268 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
10269 - MINOR: lua: extend socket address to support non-IP families
10270 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
10271 - BUG/MEDIUM: lua: socket destroy before reading pending data
10272 - MEDIUM: lua: change the GC policy
10273 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
10274 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
10275 - MINOR: applet: add init function
10276 - MINOR: applet: add an execution timeout
10277 - MINOR: stream/applet: add use-service action
10278 - MINOR: lua: add AppletTCP class and service
10279 - MINOR: lua: add AppletHTTP class and service
10280 - DOC: lua: some documentation update
10281 - DOC: add the documentation about internal circular lists
10282 - DOC: add a CONTRIBUTING file
10283 - DOC: add a MAINTAINERS file
10284 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
10285 - DOC: update coding-style to reference checkpatch.pl
10286 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
10287 - BUG/MINOR: args: add name for ARGT_VAR
10288 - DOC: add more entries to MAINTAINERS
10289 - DOC: add more entries to MAINTAINERS
10290 - CLEANUP: stream-int: remove obsolete function si_applet_call()
10291 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
10292 - BUG/MEDIUM: http: do not dereference strm_li(stream)
10293 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
10294 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
10295 - MINOR: stream-int: use si_release_endpoint() to close idle conns
10296 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
10297 - BUG/MEDIUM: acl: always accept match "found"
10298 - MINOR: applet: rename applet_runq to applet_active_queue
10299 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
10300 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
10301 - MINOR: stream-int: implement a new stream_int_update() function
10302 - MEDIUM: stream-int: factor out the stream update functions
10303 - MEDIUM: stream-int: call stream_int_update() from si_update()
10304 - MINOR: stream-int: export stream_int_update_*
10305 - MINOR: stream-int: move the applet_pause call out of the stream updates
10306 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
10307 - MINOR: stream-int: implement the stream_int_notify() function
10308 - MEDIUM: stream-int: use the same stream notification function for applets and conns
10309 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
10310 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
10311 - BUG/MEDIUM: applet: fix reporting of broken write situation
10312 - BUG/MINOR: stats: do not call cli_release_handler 3 times
10313 - BUG/MEDIUM: cli: properly handle closed output
10314 - MINOR: cli: do not call the release handler on internal error.
10315 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
10316 - DEBUG: add p_malloc() to return a poisonned memory area
10317 - CLEANUP: lua: remove unneeded memset(0) after calloc()
10318 - MINOR: lua: use the proper applet wakeup mechanism
10319 - BUG/MEDIUM: lua: better fix for the protocol check
10320 - BUG/MEDIUM: lua: properly set the target on the connection
10321 - MEDIUM: actions: pass a new "flags" argument to custom actions
10322 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
10323 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
10324 - MEDIUM: lua: only allow actions to yield if not in a final call
10325 - DOC: clarify how to make use of abstract sockets in socat
10326 - CLEANUP: config: make the errorloc/errorfile messages less confusing
10327 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
10328 - BUG/MINOR: config: check that tune.bufsize is always positive
10329 - MEDIUM: config: set tune.maxrewrite to 1024 by default
10330 - DOC: add David Carlier as maintainer of da.c
10331 - DOC: fix some broken unexpected unicode chars in the Lua doc.
10332 - BUG/MEDIUM: proxy: ignore stopped peers
10333 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
10334 - MEDIUM: init: completely deallocate unused peers
10335 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
10336 - DOC: remove outdated actions lists on tcp-request/response
10337 - MEDIUM: tcp: add new tcp action "silent-drop"
10338 - DOC: add URLs to optional libraries in the README
10339
Willy Tarreaua02e8a62015-09-14 12:23:10 +0200103402015/09/14 : 1.6-dev5
10341 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
10342 - BUG/MEDIUM: dns: DNS resolution doesn't start
10343 - BUG/MAJOR: dns: dns client resolution infinite loop
10344 - MINOR: dns: coding style update
10345 - MINOR: dns: new bitmasks to use against DNS flags
10346 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
10347 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
10348 - MEDIUM: dns: handling of truncated response
10349 - MINOR: DNS client query type failover management
10350 - MINOR: dns: no expected DNS record type found
10351 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
10352 - BUG/MINOR: DNS request retry counter used for retry only
10353 - DOC: DNS documentation updated
10354 - MEDIUM: actions: remove ACTION_STOP
10355 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
10356 - BUG/MINOR: lua: last log character truncated.
10357 - CLEANUP: typo: bad indent
10358 - CLEANUP: actions: missplaced includes
10359 - MINOR: build: missing header
10360 - CLEANUP: lua: Merge log functions
10361 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
10362 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
10363 - BUG/MAJOR: http: don't call http_send_name_header() after an error
10364 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
10365 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
10366 - BUG/MEDIUM: dns: use the correct server hostname when resolving
10367
Willy Tarreau61d301f2015-08-30 00:17:17 +0200103682015/08/30 : 1.6-dev4
10369 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
10370 - DOC: typo in 'redirect', 302 code meaning
10371 - DOC: typos in tcp-check expect examples
10372 - DOC: resolve-prefer default value and default-server update
10373 - MINOR: DNS counters: increment valid counter
10374 - BUG/MEDIUM: DNS resolution response parsing broken
10375 - MINOR: server: add new SRV_ADMF_CMAINT flag
10376 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
10377 - BUG/MEDIUM: dns: wrong first time DNS resolution
10378 - BUG/MEDIUM: lua: Lua tasks fail to start.
10379 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
10380 - DOC/MINOR: fix OpenBSD versions where haproxy works
10381 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
10382 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
10383 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
10384 - BUILD: ssl: Allow building against libssl without SSLv3.
10385 - DOC: clarify some points about SSL and the proxy protocol
10386 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
10387 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
10388 - DOC: match several lua configuration option names to those implemented in code
10389 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
10390 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
10391 - MINOR: stream: initialize the current_rule field to NULL on stream init
10392 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
10393 - CLEANUP: proto_http: remove useless initialisation
10394 - CLEANUP: http/tcp actions: remove the scope member
10395 - BUG/MINOR: proto_tcp: custom action continue is ignored
10396 - MINOR: proto_tcp: add session in the action prototype
10397 - MINOR: vars: reduce the code size of some wrappers
10398 - MINOR: Move http method enum from proto_http to sample
10399 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
10400 - MINOR: sample/proto_tcp: export "smp_fetch_src"
10401 - MEDIUM: cli: rely on the map's output type instead of the sample type
10402 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
10403 - BUG/MEDIUM: vars: segfault during the configuration parsing
10404 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
10405 - BUG/MEDIUM: lua: bad error processing
10406 - MINOR: samples: rename a struct from sample_storage to sample_data
10407 - MINOR: samples: rename some struct member from "smp" to "data"
10408 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
10409 - MINOR: samples: extract the anonymous union and create the union sample_value
10410 - MINOR: samples: rename union from "data" to "u"
10411 - MEDIUM: 51degrees: Adapt the 51Degrees library
10412 - MINOR: samples: data assignation simplification
10413 - MEDIUM: pattern/map: Maps can returns various types
10414 - MINOR: map: The map can return IPv4 and IPv6
10415 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
10416 - MINOR: actions: Remove the data opaque pointer
10417 - MINOR: lua: use the hlua_rule type in place of opaque type
10418 - MINOR: vars: use the vars types as argument in place of opaque type
10419 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
10420 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
10421 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
10422 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
10423 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
10424 - MEDIUM: capture: Move the capture configuration storage in the union
10425 - MINOR: actions: add "from" information
10426 - MINOR: actions: remove the mark indicating the last entry in enum
10427 - MINOR: actions: Declare all the embedded actions in the same header file
10428 - MINOR: actions: change actions names
10429 - MEDIUM: actions: Add standard return code for the action API
10430 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
10431 - MINOR: proto_tcp: proto_tcp.h is now useles
10432 - MINOR: actions: mutualise the action keyword lookup
10433 - MEDIUM: actions: Normalize the return code of the configuration parsers
10434 - MINOR: actions: Remove wrappers
10435 - MAJOR: stick-tables: use sample types in place of dedicated types
10436 - MEDIUM: stick-tables: use the sample type names
10437 - MAJOR: stick-tables: remove key storage from the key struct
10438 - MEDIUM: stick-tables: Add GPT0 in the stick tables
10439 - MINOR: stick-tables: Add GPT0 access
10440 - MINOR: stick-tables: Add GPC0 actions
10441 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
10442 - DOC: ssl: missing LF
10443 - MINOR: lua: add core.done() function
10444 - DOC: fix function name
10445 - BUG/MINOR: lua: in some case a sample may remain undefined
10446 - DOC: fix "http_action_set_req_line()" comments
10447 - MINOR: http: Action for manipulating the returned status code.
10448 - MEDIUM: lua: turns txn:close into txn:done
10449 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
10450 - BUILD: link with libdl if needed for Lua support
10451 - CLEANUP: backend: factor out objt_server() in connect_server()
10452 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
10453 - MEDIUM: stream-int: simplify si_alloc_conn()
10454 - MINOR: stream-int: add new function si_detach_endpoint()
10455 - MINOR: server: add a list of private idle connections
10456 - MINOR: connection: add a new list member in the connection struct
10457 - MEDIUM: stream-int: queue idle connections at the server
10458 - MINOR: stream-int: make si_idle_conn() only accept valid connections
10459 - MINOR: server: add a list of already used idle connections
10460 - MINOR: connection: add a new flag CO_FL_PRIVATE
10461 - MINOR: config: add new setting "http-reuse"
10462 - MAJOR: backend: initial work towards connection reuse
10463 - MAJOR: backend: improve the connection reuse mechanism
10464 - MEDIUM: backend: implement "http-reuse safe"
10465 - MINOR: server: add a list of safe, already reused idle connections
10466 - MEDIUM: backend: add the "http-reuse aggressive" strategy
10467 - DOC: document the new http-reuse directive
10468 - DOC: internals: document next steps for HTTP connection reuse
10469 - DOC: mention that %ms is left-padded with zeroes.
10470 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
10471 - MAJOR: http: remove references to appsession
10472 - CLEANUP: config: remove appsession initialization
10473 - CLEANUP: appsession: remove appsession.c and sessionhash.c
10474 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
10475 - CLEANUP: proxy: remove last references to appsession
10476 - CLEANUP: appsession: remove the last include files
10477 - DOC: remove documentation about appsession
10478 - CLEANUP: .gitignore: ignore more test files
10479 - CLEANUP: .gitignore: finally ignore everything but what is known.
10480 - MEDIUM: config: emit a warning on a frontend without listener
10481 - DOC: add doc/internals/entities-v2.txt
10482 - DOC: add doc/linux-syn-cookies.txt
10483 - DOC: add design thoughts on HTTP/2
10484 - DOC: add some thoughts on connection sharing for HTTP/2
10485 - DOC: add design thoughts on dynamic buffer allocation
10486 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
10487 - DOC: add new file intro.txt
10488 - MAJOR: tproxy: remove support for cttproxy
10489 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
10490 - DOC: lua: replace txn:close with txn:done in lua-api
10491 - DOC: intro: minor updates and fixes
10492 - DOC: intro: fix too long line.
10493 - DOC: fix example of http-request using ssl_fc_session_id
10494 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
10495 - CLEANUP: lua: fix some indent issues
10496 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
10497 - DOC: lua: mention than txn:close was renamed txn:done.
10498
Willy Tarreau50bdda62015-07-22 17:32:56 +0200104992015/07/22 : 1.6-dev3
10500 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
10501 - MEDIUM: http: Add new 'set-src' option to http-request
10502 - DOC usesrc root privileges requirments
10503 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
10504 - MINOR: proxy: bit field for proxy_find_best_match diff status
10505 - MINOR: server: new server flag: SRV_F_FORCED_ID
10506 - MINOR: server: server_find functions: id, name, best_match
10507 - DOC: dns: fix chapters syntax
10508 - BUILD/MINOR: tools: rename popcount to my_popcountl
10509 - BUILD: add netbsd TARGET
10510 - MEDIUM: 51Degrees code refactoring and cleanup
10511 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
10512 - DOC: add notes about the "51degrees-cache-size" parameter
10513 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
10514 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
10515 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
10516 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
10517 - BUG/MINOR: lua: type error in the arguments wrapper
10518 - CLEANUP: vars: remove unused struct
10519 - BUG/MINOR: http/sample: gmtime/localtime can fail
10520 - MINOR: standard: add 64 bits conversion functions
10521 - MAJOR: sample: converts uint and sint in 64 bits signed integer
10522 - MAJOR: arg: converts uint and sint in sint
10523 - MEDIUM: sample: switch to saturated arithmetic
10524 - MINOR: vars: returns variable content
10525 - MEDIUM: vars/sample: operators can use variables as parameter
10526 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
10527 - BUILD/MINOR: lua: fix a harmless build warning
10528 - BUILD/MINOR: stats: fix build warning due to condition always true
10529 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
10530 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
10531 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
10532 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
10533 - MINOR: vars: make the accounting not depend on the stream
10534 - MEDIUM: vars: move the session variables to the session, not the stream
10535 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
10536 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
10537 - BUG/MAJOR: tcp: tcp rulesets were still broken
10538 - MINOR: stats: improve compression stats reporting
10539 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
10540 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
10541 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
10542 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
10543 - MINOR: args: add new context for servers
10544 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
10545 - MINOR: ssl: provide ia function to set the SNI extension on a connection
10546 - MEDIUM: ssl: add sni support on the server lines
10547 - CLEANUP: stream: remove a useless call to si_detach()
10548 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
10549 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
10550 - MINOR: stream-int: only use si_release_endpoint() to release a connection
10551 - MINOR: standard: provide htonll() and ntohll()
10552 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
10553 - BUG/MAJOR: dns: fix the length of the string to be copied
10554
Willy Tarreauad90f0d2015-06-17 15:53:25 +0200105552015/06/17 : 1.6-dev2
10556 - BUG/MINOR: ssl: Display correct filename in error message
10557 - MEDIUM: logs: Add HTTP request-line log format directives
10558 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
10559 - BUG/MINOR: check: fix tcpcheck error message
10560 - MINOR: use an int instead of calling tcpcheck_get_step_id
10561 - MINOR: tcpcheck_rule structure update
10562 - MINOR: include comment in tcpcheck error log
10563 - DOC: tcpcheck comment documentation
10564 - MEDIUM: server: add support for changing a server's address
10565 - MEDIUM: server: change server ip address from stats socket
10566 - MEDIUM: protocol: add minimalist UDP protocol client
10567 - MEDIUM: dns: implement a DNS resolver
10568 - MAJOR: server: add DNS-based server name resolution
10569 - DOC: server name resolution + proto DNS
10570 - MINOR: dns: add DNS statistics
10571 - MEDIUM: http: configurable http result codes for http-request deny
10572 - BUILD: Compile clean when debug options defined
10573 - MINOR: lru: Add the possibility to free data when an item is removed
10574 - MINOR: lru: Add lru64_lookup function
10575 - MEDIUM: ssl: Add options to forge SSL certificates
10576 - MINOR: ssl: Export functions to manipulate generated certificates
10577 - MEDIUM: config: add DeviceAtlas global keywords
10578 - MEDIUM: global: add the DeviceAtlas required elements to struct global
10579 - MEDIUM: sample: add the da-csv converter
10580 - MEDIUM: init: DeviceAtlas initialization
10581 - BUILD: Makefile: add options to build with DeviceAtlas
10582 - DOC: README: explain how to build with DeviceAtlas
10583 - BUG/MEDIUM: http: fix the url_param fetch
10584 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
10585 - MAJOR: peers: peers protocol version 2.0
10586 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
10587 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
10588 - MEDIUM: peers: support of any stick-table data-types for sync
10589 - BUG/MAJOR: sample: regression on sample cast to stick table types.
10590 - CLEANUP: deinit: remove codes for cleaning p->block_rules
10591 - DOC: Fix L4TOUT typo in documentation
10592 - DOC: set-log-level in Logging section preamble
10593 - BUG/MEDIUM: compat: fix segfault on FreeBSD
10594 - MEDIUM: check: include server address and port in the send-state header
10595 - MEDIUM: backend: Allow redispatch on retry intervals
10596 - MINOR: Add TLS ticket keys reference and use it in the listener struct
10597 - MEDIUM: Add support for updating TLS ticket keys via socket
10598 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
10599 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
10600 - DOC: Update doc about weight, act and bck fields in the statistics
10601 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
10602 - MINOR: ssl: add a destructor to free allocated SSL ressources
10603 - MEDIUM: ssl: add the possibility to use a global DH parameters file
10604 - MEDIUM: ssl: replace standards DH groups with custom ones
10605 - MEDIUM: stats: Add enum srv_stats_state
10606 - MEDIUM: stats: Separate server state and colour in stats
10607 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
10608 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
10609 - MEDIUM: Lower priority of email alerts for log-health-checks messages
10610 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
10611 - MEDIUM: Document when email-alerts are sent
10612 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
10613 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
10614 - BUG/MINOR: utf8: remove compilator warning
10615 - MEDIUM: map: uses HAProxy facilities to store default value
10616 - BUG/MINOR: lua: error in detection of mandatory arguments
10617 - BUG/MINOR: lua: set current proxy as default value if it is possible
10618 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
10619 - BUG/MEDIUM: lua: undetected infinite loop
10620 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
10621 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
10622 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
10623 - BUILD: lua: it miss the '-ldl' directive
10624 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
10625 - MINOR: http: split the function http_action_set_req_line() in two parts
10626 - MINOR: http: split http_transform_header() function in two parts.
10627 - MINOR: http: export function inet_set_tos()
10628 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
10629 - MINOR: lua: create and register HTTP class
10630 - DOC: lua: fix some typos
10631 - MINOR: lua: add log functions
10632 - BUG/MINOR: lua: Fix SSL initialisation
10633 - DOC: lua: some fixes
10634 - MINOR: lua: (req|res)_get_headers return more than one header value
10635 - MINOR: lua: map system integration in Lua
10636 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
10637 - MINOR: sample: add url_dec converter
10638 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
10639 - MEDIUM: sample change the prototype of sample-fetches and converters functions
10640 - MINOR: sample: fill the struct sample with the options.
10641 - MEDIUM: sample: change the prototype of sample-fetches functions
10642 - MINOR: http: split the url_param in two parts
10643 - CLEANUP: http: bad indentation
10644 - MINOR: http: add body_param fetch
10645 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
10646 - DOC: http: req.body_param documentation
10647 - MINOR: proxy: custom capture declaration
10648 - MINOR: capture: add two "capture" converters
10649 - MEDIUM: capture: Allow capture with slot identifier
10650 - MINOR: http: add array of generic pointers in http_res_rules
10651 - MEDIUM: capture: adds http-response capture
10652 - MINOR: common: escape CSV strings
10653 - MEDIUM: stats: escape some strings in the CSV dump
10654 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
10655 - MINOR: lua: Lua tcp action are not final action
10656 - DOC: lua: schematics about lua socket organization
10657 - BUG/MINOR: debug: display (null) in place of "meth"
10658 - DOC: mention the "lua action" in documentation
10659 - MINOR: standard: add function that converts signed int to a string
10660 - BUG/MINOR: sample: wrong conversion of signed values
10661 - MEDIUM: sample: Add type any
10662 - MINOR: debug: add a special converter which display its input sample content.
10663 - MINOR: tcp: increase the opaque data array
10664 - MINOR: tcp/http/conf: extends the keyword registration options
10665 - MINOR: build: fix build dependency
10666 - MEDIUM: vars: adds support of variables
10667 - MINOR: vars: adds get and set functions
10668 - MINOR: lua: Variable access
10669 - MINOR: samples: add samples which returns constants
10670 - BUG/MINOR: vars/compil: fix some warnings
10671 - BUILD: add 51degrees options to makefile.
10672 - MINOR: global: add several 51Degrees members to global
10673 - MINOR: config: add 51Degrees config parsing.
10674 - MINOR: init: add 51Degrees initialisation code
10675 - MEDIUM: sample: add fiftyone_degrees converter.
10676 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
10677 - MEDIUM: sample: add trie support to 51Degrees
10678 - DOC: add 51Degrees notes to configuration.txt.
10679 - DOC: add build indications for 51Degrees to README.
10680 - MEDIUM: cfgparse: introduce weak and strong quoting
10681 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
10682 - MINOR: cfgparse: remove line size limitation
10683 - MEDIUM: cfgparse: expand environment variables
10684 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
10685 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
10686 - CLEANUP: cfgparse: remove reference to 'ruleset' section
10687 - MEDIUM: cfgparse: check section maximum number of arguments
10688 - MEDIUM: cfgparse: max arguments check in the global section
10689 - MEDIUM: cfgparse: check max arguments in the proxies sections
10690 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
10691 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
10692 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
10693 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
10694 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
10695 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
10696 - MINOR: connection: implement conn_sock_send()
10697 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
10698 - MEDIUM: connection: make conn_drain() perform more controls
10699 - REORG: connection: move conn_drain() to connection.c and rename it
10700 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
10701 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
10702 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
10703 - BUG/MEDIUM: peers: correctly configure the client timeout
10704 - MINOR: peers: centralize configuration of the peers frontend
10705 - MINOR: proxy: store the default target into the frontend's configuration
10706 - MEDIUM: stats: use frontend_accept() as the accept function
10707 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
10708 - CLEANUP: listeners: remove unused timeout
10709 - MEDIUM: listener: store the default target per listener
10710 - BUILD: fix automatic inclusion of libdl.
10711 - MEDIUM: lua: implement a simple memory allocator
10712 - MEDIUM: compression: postpone buffer adjustments after compression
10713 - MEDIUM: compression: don't send leading zeroes with chunk size
10714 - BUG/MINOR: compression: consider the expansion factor in init
10715 - MINOR: http: check the algo name "identity" instead of the function pointer
10716 - CLEANUP: compression: statify all algo-specific functions
10717 - MEDIUM: compression: add a distinction between UA- and config- algorithms
10718 - MEDIUM: compression: add new "raw-deflate" compression algorithm
10719 - MEDIUM: compression: split deflate_flush() into flush and finish
10720 - CLEANUP: compression: remove unused reset functions
10721 - MAJOR: compression: integrate support for libslz
10722 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
10723 - BUG/MAJOR: http: null-terminate the http actions keywords list
10724 - CLEANUP: lua: remove the unused hlua_sleep memory pool
10725 - BUG/MAJOR: lua: use correct object size when initializing a new converter
10726 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
10727 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
10728 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
10729 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
10730 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
10731 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
10732 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
10733 - REORG/MAJOR: session: rename the "session" entity to "stream"
10734 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
10735 - MINOR: session: start to reintroduce struct session
10736 - MEDIUM: stream: allocate the session when a stream is created
10737 - MEDIUM: stream: move the listener's pointer to the session
10738 - MEDIUM: stream: move the frontend's pointer to the session
10739 - MINOR: session: add a pointer to the session's origin
10740 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
10741 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
10742 - MEDIUM: http: move header captures from http_txn to struct stream
10743 - MINOR: http: create a dedicated pool for http_txn
10744 - MAJOR: http: move http_txn out of struct stream
10745 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
10746 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
10747 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
10748 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
10749 - MAJOR: sample: pass a pointer to the session to each sample fetch function
10750 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
10751 - CLEANUP: stream: don't set ->target to the incoming connection anymore
10752 - MINOR: stream: move session initialization before the stream's
10753 - MINOR: session: store the session's accept date
10754 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
10755 - MINOR: session: implement session_free() and use it everywhere
10756 - MINOR: session: add stick counters to the struct session
10757 - REORG: stktable: move the stkctr_* functions from stream to sticktable
10758 - MEDIUM: streams: support looking up stkctr in the session
10759 - MEDIUM: session: update the session's stick counters upon session_free()
10760 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
10761 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
10762 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
10763 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
10764 - MAJOR: stream: don't initialize the stream anymore in stream_accept
10765 - MEDIUM: session: remove the task pointer from the session
10766 - REORG: session: move the session parts out of stream.c
10767 - MINOR: stream-int: make appctx_new() take the applet in argument
10768 - MEDIUM: peers: move the appctx initialization earlier
10769 - MINOR: session: introduce session_new()
10770 - MINOR: session: make use of session_new() when creating a new session
10771 - MINOR: peers: make use of session_new() when creating a new session
10772 - MEDIUM: peers: initialize the task before the stream
10773 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
10774 - CLEANUP: stream.c: do not re-attach the connection to the stream
10775 - MEDIUM: stream: isolate connection-specific initialization code
10776 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
10777 - MEDIUM: peers: make use of stream_accept_session()
10778 - MEDIUM: frontend: make ->accept only return +/-1
10779 - MEDIUM: stream: return the stream upon accept()
10780 - MEDIUM: frontend: move some stream initialisation to stream_new()
10781 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
10782 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
10783 - MEDIUM: frontend: move some remaining stream settings to stream_new()
10784 - CLEANUP: frontend: remove one useless local variable
10785 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
10786 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
10787 - MINOR: lua: minor cleanup in hlua_socket_new()
10788 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
10789 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
10790 - CLEANUP: stream-int: swap stream-int and appctx declarations
10791 - CLEANUP: namespaces: fix protection against multiple inclusions
10792 - MINOR: session: maintain the session count stats in the session, not the stream
10793 - MEDIUM: session: adjust the connection flags before stream_new()
10794 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
10795 - CLEANUP: poll: move the conditions for waiting out of the poll functions
10796 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
10797 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
10798 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
10799 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
10800 - DOC: update the entities diagrams
10801 - BUG/MEDIUM: http: properly retrieve the front connection
10802 - MINOR: applet: add a new "owner" pointer in the appctx
10803 - MEDIUM: applet: make the applet not depend on a stream interface anymore
10804 - REORG: applet: move the applet definitions out of stream_interface
10805 - CLEANUP: applet: rename struct si_applet to applet
10806 - REORG: stream-int: create si_applet_ops dedicated to applets
10807 - MEDIUM: applet: add basic support for an applet run queue
10808 - MEDIUM: applet: implement a run queue for active appctx
10809 - MEDIUM: stream-int: add a new function si_applet_done()
10810 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
10811 - MAJOR: stream: use a regular ->update for all stream interfaces
10812 - MEDIUM: dumpstats: don't unregister the applet anymore
10813 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
10814 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
10815 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
10816 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
10817 - MEDIUM: stream-int: pause the appctx if the task is woken up
10818 - BUG/MAJOR: tcp: only call registered actions when they're registered
10819 - BUG/MEDIUM: peers: fix applet scheduling
10820 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
10821 - MINOR: tools: provide an rdtsc() function for time comparisons
10822 - IMPORT: lru: import simple ebtree-based LRU functions
10823 - IMPORT: hash: import xxhash-r39
10824 - MEDIUM: pattern: add a revision to all pattern expressions
10825 - MAJOR: pattern: add LRU-based cache on pattern matching
10826 - BUG/MEDIUM: http: remove content-length from chunked messages
10827 - DOC: http: update the comments about the rules for determining transfer-length
10828 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
10829 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
10830 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
10831 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
10832 - MEDIUM: http: disable support for HTTP/0.9 by default
10833 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
10834 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
10835 - MEDIUM: init: don't stop proxies in parent process when exiting
10836 - MINOR: stick-table: don't attach to peers in stopped state
10837 - MEDIUM: config: initialize stick-tables after peers, not before
10838 - MEDIUM: peers: add the ability to disable a peers section
10839 - MINOR: peers: store the pointer to the signal handler
10840 - MEDIUM: peers: unregister peers that were never started
10841 - MEDIUM: config: propagate the table's process list to the peers sections
10842 - MEDIUM: init: stop any peers section not bound to the correct process
10843 - MEDIUM: config: validate that peers sections are bound to exactly one process
10844 - MAJOR: peers: allow peers section to be used with nbproc > 1
10845 - DOC: relax the peers restriction to single-process
10846 - DOC: document option http-ignore-probes
10847 - DOC: fix the comments about the meaning of msg->sol in HTTP
10848 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
10849 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
10850 - MEDIUM: stream: move HTTP request body analyser before process_common
10851 - MEDIUM: http: add a new option http-buffer-request
10852 - MEDIUM: http: provide 3 fetches for the body
10853 - DOC: update the doc on the proxy protocol
10854 - BUILD: pattern: fix build warnings introduced in the LRU cache
10855 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
10856 - CLEANUP: config: fix misleading information in error message.
10857 - MINOR: config: report the number of processes using a peers section in the error case
10858 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
10859 - MEDIUM: http: add new "capture" action for http-request
10860 - BUG/MEDIUM: http: fix the http-request capture parser
10861 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
10862 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
10863 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
10864 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
10865 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
10866 - CLEANUP: checks: simplify the loop processing of tcp-checks
10867 - BUG/MAJOR: checks: always check for end of list before proceeding
10868 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
10869 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
10870 - MEDIUM: http: make url_param iterate over multiple occurrences
10871 - BUG/MEDIUM: peers: apply a random reconnection timeout
10872 - MEDIUM: config: reject invalid config with name duplicates
10873 - MEDIUM: config: reject conflicts in table names
10874 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
10875 - MINOR: proxy: simply ignore duplicates in proxy name lookups
10876 - MINOR: config: don't open-code proxy name lookups
10877 - MEDIUM: config: clarify the conflicting modes detection for backend rules
10878 - CLEANUP: proxy: remove now unused function findproxy_mode()
10879 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
10880 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
10881 - MINOR: proxy: add a new function proxy_find_by_id()
10882 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
10883 - MEDIUM: proxy: add a new proxy_find_best_match() function
10884 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
10885 - MINOR: http: prepare support for parsing redirect actions on responses
10886 - MEDIUM: http: implement http-response redirect rules
10887 - MEDIUM: http: no need to close the request on redirect if data was parsed
10888 - BUG/MEDIUM: http: fix body processing for the stats applet
10889 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
10890 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
10891 - CLEANUP: da: move the converter registration to da.c
10892 - CLEANUP: da: register the config keywords in da.c
10893 - CLEANUP: adjust the envelope name in da.h to reflect the file name
10894 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
10895 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
10896 - BUILD: fix build warning when not using 51degrees
10897 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
10898 - BUILD: ssl: fix recent build breakage on older SSL libs
10899
Willy Tarreau8747b6d2015-03-11 23:57:23 +0100109002015/03/11 : 1.6-dev1
10901 - CLEANUP: extract temporary $CFG to eliminate duplication
10902 - CLEANUP: extract temporary $BIN to eliminate duplication
10903 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
10904 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
10905 - CLEANUP: extract quiet_check() to avoid duplication
10906 - BUG/MINOR: don't start haproxy on reload
10907 - DOC: Address issue where documentation is excluded due to a gitignore rule.
10908 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
10909 - BUILD: fix "make install" to support spaces in the install dirs
10910 - BUG/MINOR: config: http-request replace-header arg typo
10911 - BUG: config: error in http-response replace-header number of arguments
10912 - DOC: missing track-sc* in http-request rules
10913 - BUILD: lua: missing ifdef related to SSL when enabling LUA
10914 - BUG/MEDIUM: regex: fix pcre_study error handling
10915 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
10916 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
10917 - MEDIUM: Improve signal handling in systemd wrapper.
10918 - DOC: fix typo in Unix Socket commands
10919 - BUG/MEDIUM: checks: external checks can't change server status to UP
10920 - BUG/MEDIUM: checks: segfault with external checks in a backend section
10921 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
10922 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
10923 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
10924 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
10925 - BUG/MINOR: log: fix request flags when keep-alive is enabled
10926 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
10927 - MINOR: checks: allow external checks in backend sections
10928 - MEDIUM: checks: provide environment variables to the external checks
10929 - MINOR: checks: update dynamic environment variables in external checks
10930 - DOC: checks: environment variables used by "external-check command"
10931 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
10932 - MINOR: ssl: load certificates in alphabetical order
10933 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
10934 - MINOR: lua: typo in an error message
10935 - MINOR: report the Lua version in -vv
10936 - MINOR: lua: add a compilation error message when compiled with an incompatible version
10937 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
10938 - BUILD: try to automatically detect the Lua library name
10939 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
10940 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
10941 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
10942 - MEDIUM: connection: add new bit in Proxy Protocol V2
10943 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
10944 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
10945 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
10946 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
10947 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
10948 - MINOR: ssl: add statement to force some ssl options in global.
10949 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
10950 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
10951 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
10952 - MINOR: samples: adds the bytes converter.
10953 - MINOR: samples: adds the field converter.
10954 - MINOR: samples: add the word converter.
10955 - BUG/MINOR: server: move the directive #endif to the end of file
10956 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
10957 - DOC: fix a few typos
10958 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
10959 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
10960 - BUG/MINOR: parse: refer curproxy instead of proxy
10961 - BUG/MINOR: parse: check the validity of size string in a more strict way
10962 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
10963 - DOC: expand the docs for the provided stats.
10964 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
10965 - MEDIUM: ssl: Certificate Transparency support
10966 - MEDIUM: stats: proxied stats admin forms fix
10967 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
10968 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
10969 - MAJOR: namespace: add Linux network namespace support
10970 - MINOR: systemd: Check configuration before start
10971 - BUILD: ssl: handle boringssl in openssl version detection
10972 - BUILD: ssl: disable OCSP when using boringssl
10973 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
10974 - MINOR: ssl: don't use boringssl's cipher_list
10975 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
10976 - MINOR: stats: fix minor typo in HTML page
10977 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
10978 - MEDIUM: Add support for configurable TLS ticket keys
10979 - DOC: Document the new tls-ticket-keys bind keyword
10980 - DOC: clearly state that the "show sess" output format is not fixed
10981 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
10982 - DOC: httplog does not support 'no'
10983 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
10984 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
10985 - BUG/MEDIUM: Consistently use 'check' in process_chk
10986 - MEDIUM: Add external check
10987 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
10988 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
10989 - MEDIUM: Remove connect_chk
10990 - MEDIUM: Refactor init_check and move to checks.c
10991 - MEDIUM: Add free_check() helper
10992 - MEDIUM: Move proto and addr fields struct check
10993 - MEDIUM: Attach tcpcheck_rules to check
10994 - MEDIUM: Add parsing of mailers section
10995 - MEDIUM: Allow configuration of email alerts
10996 - MEDIUM: Support sending email alerts
10997 - DOC: Document email alerts
10998 - MINOR: Remove trailing '.' from email alert messages
10999 - MEDIUM: Allow suppression of email alerts by log level
11000 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
11001 - MINOR: deinit: fix memory leak
11002 - MINOR: http: export the function 'smp_fetch_base32'
11003 - BUG/MEDIUM: http: tarpit timeout is reset
11004 - MINOR: sample: add "json" converter
11005 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
11006 - MINOR: map/acl/dumpstats: remove the "Done." message
11007 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
11008 - BUG/MINOR: pattern: error message missing
11009 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
11010 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
11011 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
11012 - MEDIUM: task: call session analyzers if the task is woken by a message.
11013 - MEDIUM: protocol: automatically pick the proto associated to the connection.
11014 - MEDIUM: channel: wake up any request analyzer on response activity
11015 - MINOR: converters: add a "void *private" argument to converters
11016 - MINOR: converters: give the session pointer as converter argument
11017 - MINOR: sample: add private argument to the struct sample_fetch
11018 - MINOR: global: export function and permits to not resolve DNS names
11019 - MINOR: sample: add function for browsing samples.
11020 - MINOR: global: export many symbols.
11021 - MINOR: includes: fix a lot of missing or useless includes
11022 - MEDIUM: tcp: add register keyword system.
11023 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
11024 - MEDIUM: http: change the code returned by the response processing rule functions
11025 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
11026 - MINOR: channel: functions to get data from a buffer without copy
11027 - MEDIUM: lua: lua integration in the build and init system.
11028 - MINOR: lua: add ease functions
11029 - MINOR: lua: add runtime execution context
11030 - MEDIUM: lua: "com" signals
11031 - MINOR: lua: add the configuration directive "lua-load"
11032 - MINOR: lua: core: create "core" class and object
11033 - MINOR: lua: post initialisation bindings
11034 - MEDIUM: lua: add coroutine as tasks.
11035 - MINOR: lua: add sample and args type converters
11036 - MINOR: lua: txn: create class TXN associated with the transaction.
11037 - MINOR: lua: add shared context in the lua stack
11038 - MINOR: lua: txn: import existing sample-fetches in the class TXN
11039 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
11040 - MINOR: lua: register and execute sample-fetches in LUA
11041 - MINOR: lua: register and execute converters in LUA
11042 - MINOR: lua: add bindings for tcp and http actions
11043 - MINOR: lua: core: add sleep functions
11044 - MEDIUM: lua: socket: add "socket" class for TCP I/O
11045 - MINOR: lua: core: pattern and acl manipulation
11046 - MINOR: lua: channel: add "channel" class
11047 - MINOR: lua: txn: object "txn" provides two objects "channel"
11048 - MINOR: lua: core: can set the nice of the current task
11049 - MINOR: lua: core: can yield an execution stack
11050 - MINOR: lua: txn: add binding for closing the client connection.
11051 - MEDIUM: lua: Lua initialisation "on demand"
11052 - BUG/MAJOR: lua: send function fails and return bad bytes
11053 - MINOR: remove unused declaration.
11054 - MINOR: lua: remove some #define
11055 - MINOR: lua: use bitfield and macro in place of integer and enum
11056 - MINOR: lua: set skeleton for Lua execution expiration
11057 - MEDIUM: lua: each yielding function returns a wake up time.
11058 - MINOR: lua: adds "forced yield" flag
11059 - MEDIUM: lua: interrupt the Lua execution for running other process
11060 - MEDIUM: lua: change the sleep function core
11061 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
11062 - DOC: lua: Lua configuration documentation
11063 - MINOR: lua: add the struct session in the lua channel struct
11064 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
11065 - BUG/MEDIUM: lua: reset flags before resuming execution
11066 - BUG/MEDIUM: lua: fix infinite loop about channel
11067 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
11068 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
11069 - MEDIUM: lua: use the Lua-5.3 version of the library
11070 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
11071 - BUG/MEDIUM: lua: can't handle the response bytes
11072 - BUG/MEDIUM: lua: segfault with buffer_replace2
11073 - BUG/MINOR: lua: check buffers before initializing socket
11074 - BUG/MINOR: log: segfault if there are no proxy reference
11075 - BUG/MEDIUM: lua: sockets don't have buffer to write data
11076 - BUG/MEDIUM: lua: cannot connect socket
11077 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
11078 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
11079 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
11080 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
11081 - MINOR: replace the Core object by a simple model.
11082 - MEDIUM: lua: change the objects configuration
11083 - MEDIUM: lua: create a namespace for the fetches
11084 - MINOR: converters: add function to browse converters
11085 - MINOR: lua: wrapper for converters
11086 - MINOR: lua: replace function (req|get)_channel by a variable
11087 - MINOR: lua: fetches and converters can return an empty string in place of nil
11088 - DOC: lua api
11089 - BUG/MEDIUM: sample: fix random number upper-bound
11090 - BUG/MINOR: stats:Fix incorrect printf type.
11091 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
11092 - BUG/MINOR: logs: properly initialize and count log sockets
11093 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
11094 - BUG/MINOR: counters: do not untrack counters before logging
11095 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
11096 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
11097 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
11098 - BUILD: remove TODO from the spec file and add README
11099 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
11100 - MEDIUM: log: support a user-configurable max log line length
11101 - DOC: provide an example of how to use ssl_c_sha1
11102 - BUILD: checks: external checker needs signal.h
11103 - BUILD: checks: kill a minor warning on Solaris in external checks
11104 - BUILD: http: fix isdigit & isspace warnings on Solaris
11105 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
11106 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
11107 - MEDIUM: listener: implement a per-protocol pause() function
11108 - MEDIUM: listener: support rebinding during resume()
11109 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
11110 - DOC: explicitly mention the limits of abstract namespace sockets
11111 - DOC: minor fix on {sc,src}_kbytes_{in,out}
11112 - DOC: fix alphabetical sort of converters
11113 - MEDIUM: stick-table: implement lookup from a sample fetch
11114 - MEDIUM: stick-table: add new converters to fetch table data
11115 - MINOR: samples: add two converters for the date format
11116 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
11117 - DOC: remove references to CPU=native in the README
11118 - DOC: mention that "compression offload" is ignored in defaults section
11119 - DOC: mention that Squid correctly responds 400 to PPv2 header
11120 - BUILD: fix dependencies between config and compat.h
11121 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
11122 - MEDIUM: stick-table: make it easier to register extra data types
11123 - BUG/MINOR: http: base32+src should use the big endian version of base32
11124 - MINOR: sample: allow IP address to cast to binary
11125 - MINOR: sample: add new converters to hash input
11126 - MINOR: sample: allow integers to cast to binary
11127 - BUILD: report commit ID in git versions as well
11128 - CLEANUP: session: move the stick counters declarations to stick_table.h
11129 - MEDIUM: http: add the track-sc* actions to http-request rules
11130 - BUG/MEDIUM: connection: fix proxy v2 header again!
11131 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
11132 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
11133 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
11134 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
11135 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
11136 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
11137 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
11138 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
11139 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
11140 - MEDIUM: http: enable header manipulation for 101 responses
11141 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
11142 - MEDIUM: config: properly propagate process binding between proxies
11143 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
11144 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
11145 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
11146 - MEDIUM: config: report it when tcp-request rules are misplaced
11147 - DOC: indicate in the doc that track-sc* can wait if data are missing
11148 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
11149 - MEDIUM: systemd-wrapper: support multiple executable versions and names
11150 - BUG/MEDIUM: remove debugging code from systemd-wrapper
11151 - BUG/MEDIUM: http: adjust close mode when switching to backend
11152 - BUG/MINOR: config: don't propagate process binding on fatal errors.
11153 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
11154 - BUG/MINOR: tcp-check: report the correct failed step in the status
11155 - DOC: indicate that weight zero is reported as DRAIN
11156 - BUG/MEDIUM: config: avoid skipping disabled proxies
11157 - BUG/MINOR: config: do not accept more track-sc than configured
11158 - BUG/MEDIUM: backend: fix URI hash when a query string is present
11159 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
11160 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
11161 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
11162 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
11163 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
11164 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
11165 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
11166 - MEDIUM: ssl: add support for smaller SSL records
11167 - MINOR: session: release a few other pools when stopping
11168 - MINOR: task: release the task pool when stopping
11169 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
11170 - BUG/MAJOR: frontend: initialize capture pointers earlier
11171 - BUG/MINOR: stats: correctly set the request/response analysers
11172 - MAJOR: polling: centralize calls to I/O callbacks
11173 - DOC: fix typo in the body parser documentation for msg.sov
11174 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
11175 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
11176 - DEBUG: pools: apply poisonning on every allocated pool
11177 - BUG/MAJOR: sessions: unlink session from list on out of memory
11178 - BUG/MEDIUM: patterns: previous fix was incomplete
11179 - BUG/MEDIUM: payload: ensure that a request channel is available
11180 - BUG/MINOR: tcp-check: don't condition data polling on check type
11181 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
11182 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
11183 - BUG/MINOR: config: fix typo in condition when propagating process binding
11184 - BUG/MEDIUM: config: do not propagate processes between stopped processes
11185 - BUG/MAJOR: stream-int: properly check the memory allocation return
11186 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
11187 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
11188 - BUG/MEDIUM: compression: correctly report zlib_mem
11189 - CLEANUP: lists: remove dead code
11190 - CLEANUP: memory: remove dead code
11191 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
11192 - MINOR: memory: cut pool allocator in 3 layers
11193 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
11194 - MINOR: stream-int: retrieve session pointer from stream-int
11195 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
11196 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
11197 - MINOR: buffer: move buffer initialization after channel initialization
11198 - MINOR: buffer: only use b_free to release buffers
11199 - MEDIUM: buffer: always assign a dummy empty buffer to channels
11200 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
11201 - MEDIUM: channel: do not report full when buf_empty is present on a channel
11202 - MINOR: session: group buffer allocations together
11203 - MINOR: buffer: implement b_alloc_fast()
11204 - MEDIUM: buffer: implement b_alloc_margin()
11205 - MEDIUM: session: implement a basic atomic buffer allocator
11206 - MAJOR: session: implement a wait-queue for sessions who need a buffer
11207 - MAJOR: session: only allocate buffers when needed
11208 - MINOR: stats: report a "waiting" flags for sessions
11209 - MAJOR: session: only wake up as many sessions as available buffers permit
11210 - MINOR: config: implement global setting tune.buffers.reserve
11211 - MINOR: config: implement global setting tune.buffers.limit
11212 - MEDIUM: channel: implement a zero-copy buffer transfer
11213 - MEDIUM: stream-int: support splicing from applets
11214 - OPTIM: stream-int: try to send pending spliced data
11215 - CLEANUP: session: remove session_from_task()
11216 - DOC: add missing entry for log-format and clarify the text
11217 - MINOR: logs: add a new per-proxy "log-tag" directive
11218 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
11219 - MINOR: config: extend the default max hostname length to 64 and beyond
11220 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
11221 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
11222 - MINOR: channel: add channel_in_transit()
11223 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
11224 - MEDIUM: channel: make bi_avail() use channel_in_transit()
11225 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
11226 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
11227 - MINOR: channel: rename channel_full() to !channel_may_recv()
11228 - MINOR: channel: rename buffer_reserved() to channel_reserved()
11229 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
11230 - MINOR: channel: rename bi_avail() to channel_recv_max()
11231 - MINOR: channel: rename bi_erase() to channel_truncate()
11232 - BUG/MAJOR: log: don't try to emit a log if no logger is set
11233 - MINOR: tools: add new round_2dig() function to round integers
11234 - MINOR: global: always export some SSL-specific metrics
11235 - MINOR: global: report information about the cost of SSL connections
11236 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
11237 - MINOR: http: add a new fetch "query" to extract the request's query string
11238 - MINOR: hash: add new function hash_crc32
11239 - MINOR: samples: provide a "crc32" converter
11240 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
11241 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
11242 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
11243 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
11244 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
11245 - MINOR: args: add type-specific flags for each arg in a list
11246 - MINOR: args: implement a new arg type for regex : ARGT_REG
11247 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
11248 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
11249 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
11250 - MEDIUM: http: implement http-request set-{method,path,query,uri}
11251 - DOC: fix missing closing brackend on regsub
11252 - MEDIUM: samples: provide basic arithmetic and bitwise operators
11253 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
11254 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
11255 - BUG/MINOR: http: abort request processing on filter failure
11256 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
11257 - MINOR: ssl/server: add the "no-ssl-reuse" server option
11258 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
11259 - MINOR: http: add a new function to iterate over each header line
11260 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
11261 - MEDIUM: task: always ensure that the run queue is consistent
11262 - BUILD: Makefile: add -Wdeclaration-after-statement
11263 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
11264 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
11265 - MEDIUM: protocol: use a family array to index the protocol handlers
11266 - BUILD: lua: cleanup many mixed occurrences declarations & code
11267 - BUG/MEDIUM: task: fix recently introduced scheduler skew
11268 - BUG/MINOR: lua: report the correct function name in an error message
11269 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
11270 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
11271 - MINOR: lua: convert IP addresses to type string
11272 - CLEANUP: lua: use the same function names in C and Lua
11273 - REORG/MAJOR: move session's req and resp channels back into the session
11274 - CLEANUP: remove now unused channel pool
11275 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
11276 - MEDIUM: stream-int: add a flag indicating which side the SI is on
11277 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
11278 - MEDIUM: stream-interface: remove now unused pointers to channels
11279 - MEDIUM: stream-int: make si_sess() use the stream int's side
11280 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
11281 - MEDIUM: stream-int: remove any reference to the owner
11282 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
11283 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
11284 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
11285 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
11286 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
11287 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
11288 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
11289 - CLEANUP: session: use local variables to access channels / stream ints
11290 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
11291 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
11292 - CLEANUP: stream-int: limit usage of si_ic/si_oc
11293 - CLEANUP: lua: limit usage of si_ic/si_oc
11294 - MINOR: channel: add chn_sess() helper to retrieve session from channel
11295 - MEDIUM: session: simplify receive buffer allocator to only use the channel
11296 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
11297 - CLEANUP: lua: remove the session pointer from hlua_channel
11298 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
11299 - MEDIUM: lua: remove struct hlua_channel
11300 - MEDIUM: lua: remove hlua_sample_fetch
11301
Willy Tarreau15480d72014-06-19 21:10:58 +0200113022014/06/19 : 1.6-dev0
11303 - exact copy of 1.5.0
11304
Willy Tarreau9229f122014-06-19 21:01:06 +0200113052014/06/19 : 1.5.0
11306 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
11307 - MEDIUM: ssl: basic OCSP stapling support.
11308 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
11309 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
11310 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
11311 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
11312 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
11313 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
11314 - MEDIUM: Break out check establishment into connect_chk()
11315 - MEDIUM: Add port_to_str helper
11316 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
11317 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
11318 - MINOR: regex: fix a little configuration memory leak.
11319 - MINOR: regex: Create JIT compatible function that return match strings
11320 - MEDIUM: regex: replace all standard regex function by own functions
11321 - MEDIUM: regex: Remove null terminated strings.
11322 - MINOR: regex: Use native PCRE API.
11323 - MINOR: missing regex.h include
11324 - DOC: Add Exim as Proxy Protocol implementer.
11325 - BUILD: don't use type "uint" which is not portable
11326 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
11327 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
11328 - CLEANUP: http: don't clear CF_READ_NOEXP twice
11329 - DOC: fix proxy protocol v2 decoder example
11330 - DOC: fix remaining occurrences of "pattern extraction"
11331 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
11332 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
11333 - MINOR: sample: improve sample_fetch_string() to report partial contents
11334 - MINOR: capture: extend the captures to support non-header keys
11335 - MINOR: tcp: prepare support for the "capture" action
11336 - MEDIUM: tcp: add a new tcp-request capture directive
11337 - MEDIUM: session: allow shorter retry delay if timeout connect is small
11338 - MEDIUM: session: don't apply the retry delay when redispatching
11339 - MEDIUM: session: redispatch earlier when possible
11340 - MINOR: config: warn when tcp-check rules are used without option tcp-check
11341 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
11342 - DOC: proxy protocol example parser was still wrong
11343 - DOC: minor updates to the proxy protocol doc
11344 - CLEANUP: connection: merge proxy proto v2 header and address block
11345 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
11346 - MINOR: tools: add new functions to quote-encode strings
11347 - DOC: clarify the CSV format
11348 - MEDIUM: stats: report the last check and last agent's output on the CSV status
11349 - MINOR: freq_ctr: introduce a new averaging method
11350 - MEDIUM: session: maintain per-backend and per-server time statistics
11351 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
11352 - BUG/MINOR: http: fix typos in previous patch
11353 - DOC: remove the ultra-obsolete TODO file
11354 - DOC: update roadmap
11355 - DOC: minor updates to the README
11356 - DOC: mention the maxconn limitations with the select poller
11357 - DOC: commit a few old design thoughts files
11358
Willy Tarreau2e858402014-05-28 17:50:53 +0200113592014/05/28 : 1.5-dev26
11360 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
11361 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
11362 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
11363 - MINOR: fix a few memory usage errors
11364 - CONTRIB: halog: Filter input lines by date and time through timestamp
11365 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
11366 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
11367 - MINOR: acl: set "str" as default match for strings
11368 - DOC: Add some precisions about acl default matching method
11369 - MEDIUM: acl: strenghten the option parser to report invalid options
11370 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
11371 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
11372 - MINOR: stats: improve alignment of color codes to save one line of header
11373 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
11374 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
11375 - MINOR: server: use functions to detect state changes and to update them
11376 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
11377 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
11378 - BUG/MAJOR: config: don't free valid regex memory
11379 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
11380 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
11381 - MEDIUM: proxy: make timeout parser a bit stricter
11382 - REORG/MEDIUM: server: split server state and flags in two different variables
11383 - REORG/MEDIUM: server: move the maintenance bits out of the server state
11384 - MAJOR: server: use states instead of flags to store the server state
11385 - REORG: checks: put the functions in the appropriate files !
11386 - MEDIUM: server: properly support and propagate the maintenance status
11387 - MEDIUM: server: allow multi-level server tracking
11388 - CLEANUP: checks: rename the server_status_printf function
11389 - MEDIUM: checks: simplify server up/down/nolb transitions
11390 - MAJOR: checks: move health checks changes to set_server_check_status()
11391 - MINOR: server: make the status reporting function support a reason
11392 - MINOR: checks: simplify health check reporting functions
11393 - MINOR: server: implement srv_set_stopped()
11394 - MINOR: server: implement srv_set_running()
11395 - MINOR: server: implement srv_set_stopping()
11396 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
11397 - MEDIUM: checks: simplify success notification using srv_set_running()
11398 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
11399 - MEDIUM: stats: report a server's own state instead of the tracked one's
11400 - MINOR: server: make use of srv_is_usable() instead of checking eweight
11401 - MAJOR: checks: add support for a new "drain" administrative mode
11402 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
11403 - MEDIUM: stats: introduce new actions to simplify admin status management
11404 - MINOR: cli: introduce a new "set server" command
11405 - MINOR: stats: report a distinct output for DOWN caused by agent
11406 - MINOR: checks: support specific check reporting for the agent
11407 - MINOR: checks: support a neutral check result
11408 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
11409 - MEDIUM: cli: add support for enabling/disabling health checks.
11410 - MEDIUM: stats: report down caused by agent prior to reporting up
11411 - MAJOR: agent: rework the response processing and support additional actions
11412 - MINOR: stats: improve the stats web page to support more actions
11413 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
11414 - DOC: document the workarouds for Google Chrome's bogus pre-connect
11415 - MINOR: stats: report SSL key computations per second
11416 - MINOR: stats: add counters for SSL cache lookups and misses
11417
Willy Tarreaua3393952014-05-10 15:16:43 +0200114182014/05/10 : 1.5-dev25
11419 - MEDIUM: connection: Implement and extented PROXY Protocol V2
11420 - MINOR: ssl: clean unused ACLs declarations
11421 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
11422 - MINOR: ssl: merge client's and frontend's certificate functions.
11423 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
11424 - MINOR: ssl: adds sample converter base64 for binary type.
11425 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
11426 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
11427 - MAJOR: ssl: Change default locks on ssl session cache.
11428 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
11429 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
11430 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
11431 - BUG/MEDIUM: patterns: last fix was still not enough
11432 - MINOR: http: export the smp_fetch_cookie function
11433 - MINOR: http: generic pointer to rule argument
11434 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
11435 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
11436 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
11437 - BUG/MINOR: http: log 407 in case of proxy auth
11438 - MINOR: http: rely on the message body parser to send 100-continue
11439 - MEDIUM: http: move reqadd after execution of http_request redirect
11440 - MEDIUM: http: jump to dedicated labels after http-request processing
11441 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
11442 - BUG/MINOR: http: block rules forgot to increment the session's request counter
11443 - MEDIUM: http: move Connection header processing earlier
11444 - MEDIUM: http: remove even more of the spaghetti in the request path
11445 - MINOR: http: silently support the "block" action for http-request
11446 - CLEANUP: proxy: rename "block_cond" to "block_rules"
11447 - MEDIUM: http: emulate "block" rules using "http-request" rules
11448 - MINOR: http: remove the now unused loop over "block" rules
11449 - MEDIUM: http: factorize the "auth" action of http-request and stats
11450 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
11451 - MINOR: config: add minimum support for emitting warnings only once
11452 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
11453 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
11454 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
11455 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
11456 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
11457 - BUILD: config: remove a warning with clang
11458 - BUG/MAJOR: http: connection setup may stall on balance url_param
11459 - BUG/MEDIUM: http/session: disable client-side expiration only after body
11460 - BUG/MEDIUM: http: correctly report request body timeouts
11461 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
11462 - MEDIUM: listener: make the accept function more robust against pauses
11463 - BUILD: syscalls: remove improper inline statement in front of syscalls
11464 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
11465 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
11466 - DOC: add some explanation on the shared cache build options in the readme.
11467 - MEDIUM: proxy: only adjust the backend's bind-process when already set
11468 - MEDIUM: config: limit nbproc to the machine's word size
11469 - MEDIUM: config: check the bind-process settings according to nbproc
11470 - MEDIUM: listener: parse the new "process" bind keyword
11471 - MEDIUM: listener: inherit the process mask from the proxy
11472 - MAJOR: listener: only start listeners bound to the same processes
11473 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
11474 - CLEANUP: config: set the maxaccept value for peers listeners earlier
11475 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
11476 - BUG/MINOR: checks: correctly configure the address family and protocol
11477 - MINOR: tools: split is_addr() and is_inet_addr()
11478 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
11479 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
11480 - MEDIUM: checks: only complain about the missing port when the check uses TCP
11481 - MEDIUM: unix: implement support for Linux abstract namespace sockets
11482 - DOC: map_beg was missing from the table of map_* converters
11483 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
11484 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
11485 - BUILD: remove the obsolete BSD and OSX makefiles
11486 - MEDIUM: unix: avoid a double connect probe when no data are sent
11487 - DOC: stop referencing the slow git repository in the README
11488 - BUILD: only build the systemd wrapper on Linux 2.6 and above
11489 - DOC: update roadmap with completed tasks
11490 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
11491
Willy Tarreau8860dcd2014-04-26 00:08:14 +0200114922014/04/26 : 1.5-dev24
11493 - MINOR: pattern: find element in a reference
11494 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
11495 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
11496 - DOC: Full section dedicated to the converters
11497 - MEDIUM: http: register http-request and http-response keywords
11498 - BUG/MINOR: compression: correctly report incoming byte count
11499 - BUG/MINOR: http: don't report server aborts as client aborts
11500 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
11501 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
11502 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
11503 - BUG/MAJOR: http: fix timeouts during data forwarding
11504 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
11505 - MEDIUM: http: move skipping of 100-continue earlier
11506 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
11507 - CLEANUP: general: get rid of all old occurrences of "session *t"
11508 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
11509 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
11510 - MEDIUM: http: enable analysers to have keep-alive on stats
11511 - REORG: http: move HTTP Connection response header parsing earlier
11512 - MINOR: stats: always emit HTTP/1.1 in responses
11513 - MINOR: http: add capture.req.ver and capture.res.ver
11514 - MINOR: checks: add a new global max-spread-checks directive
11515 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
11516 - MINOR: http: implement the max-keep-alive-queue setting
11517 - DOC: fix alphabetic order of tcp-check
11518 - MINOR: connection: add a new error code for SSL with heartbeat
11519 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
11520 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
11521 - BUILD: http: remove a warning on strndup
11522 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
11523 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
11524 - MINOR: ssl: finally catch the heartbeats missing the padding
11525
Willy Tarreau8317b282014-04-23 01:49:41 +0200115262014/04/23 : 1.5-dev23
11527 - BUG/MINOR: reject malformed HTTP/0.9 requests
11528 - MINOR: systemd wrapper: re-execute on SIGUSR2
11529 - MINOR: systemd wrapper: improve logging
11530 - MINOR: systemd wrapper: propagate exit status
11531 - BUG/MINOR: tcpcheck connect wrong behavior
11532 - MEDIUM: proxy: support use_backend with dynamic names
11533 - MINOR: stats: Enhancement to stats page to provide information of last session time.
11534 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
11535 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
11536 - DOC: fix fetching samples syntax
11537 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
11538 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
11539 - DOC: fix typo
11540 - CLEANUP: code style: use tabs to indent codes instead of spaces
11541 - DOC: fix a few config typos.
11542 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
11543 - DOC: lowercase format string in unique-id
11544 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
11545 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
11546 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
11547 - BUG/MINOR: build: handle whitespaces in wc -l output
11548 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
11549 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
11550 - BUG/MEDIUM: map: The map parser includes blank lines.
11551 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
11552 - MINOR: standard: add function "encode_chunk"
11553 - BUG/MINOR: http: fix encoding of samples used in http headers
11554 - MINOR: sample: add hex converter
11555 - MEDIUM: sample: change the behavior of the bin2str cast
11556 - MAJOR: auth: Change the internal authentication system.
11557 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
11558 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
11559 - MEDIUM: pattern: Change the prototype of the function pattern_register().
11560 - CONTRIB: ip6range: add a network IPv6 range to mask converter
11561 - MINOR: pattern: separe list element from the data part.
11562 - MEDIUM: pattern: add indexation function.
11563 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
11564 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
11565 - MINOR: sample: dont call the sample cast function "c_none"
11566 - MINOR: standard: Add function for converting cidr to network mask.
11567 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
11568 - MEDIUM: sample/http_proto: Add new type called method
11569 - MINOR: dumpstats: Group map inline help
11570 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
11571 - MINOR: dumpstats: change map inline sentences
11572 - MINOR: dumpstats: change the "get map" display management
11573 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
11574 - MEDIUM: pattern: The match function browse itself the list or the tree.
11575 - MEDIUM: pattern: Index IPv6 addresses in a tree.
11576 - MEDIUM: pattern: add delete functions
11577 - MEDIUM: pattern: add prune function
11578 - MEDIUM: pattern: add sample lookup function.
11579 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
11580 - MINOR: map/pattern: The sample parser is stored in the pattern
11581 - MAJOR: pattern/map: Extends the map edition system in the patterns
11582 - MEDIUM: pattern: merge same pattern
11583 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
11584 - MINOR: pattern: Each pattern is identified by unique id.
11585 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
11586 - MINOR: pattern: The function "pattern_register()" is no longer used.
11587 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
11588 - MINOR: pattern: store configuration reference for each acl or map pattern.
11589 - MINOR: pattern: Each pattern expression element store the reference struct.
11590 - MINOR: dumpstats: display the reference for th key/pattern and value.
11591 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
11592 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
11593 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
11594 - MINOR: pattern/map/acl: Centralization of the file parsers
11595 - MINOR: pattern: Check if the file reference is not used with acl and map
11596 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
11597 - MEDIUM: dumpstats: Display error message during add of values.
11598 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
11599 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
11600 - MINOR: cli: Block the usage of the command "acl add" in many cases.
11601 - MINOR: doc: Update the documentation about the map and acl
11602 - MINOR: pattern: index duplicates
11603 - MINOR: configuration: File and line propagation
11604 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
11605 - MINOR: standard: Disable ip resolution during the runtime
11606 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
11607 - MINOR: pattern: forbid dns resolutions
11608 - DOC: document "get map" / "get acl" on the CLI
11609 - MEDIUM: acl: Change the acl register struct
11610 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
11611 - DOC: pattern: pattern organisation schematics
11612 - MINOR: pattern/cli: Update used terms in documentation and cli
11613 - MINOR: cli: remove information about acl or map owner.
11614 - MINOR: session: don't always assume there's a listener
11615 - MINOR: pattern: Add function to prune and reload pattern list.
11616 - MINOR: standard: Add ipv6 support in the function url2sa().
11617 - MEDIUM: config: Dynamic sections.
11618 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
11619 - MINOR: http: Add the "language" converter to for use with accept-language
11620 - BUG/MINOR: log: Don't dump empty unique-id
11621 - BUG/MAJOR: session: fix a possible crash with src_tracked
11622 - DOC: Update "language" documentation
11623 - MINOR: http: add the function "del-header" to the directives http-request and http-response
11624 - DOC: add some information on capture.(req|res).hdr
11625 - MINOR: http: capture.req.method and capture.req.uri
11626 - MINOR: http: optimize capture.req.method and capture.req.uri
11627 - MINOR: session: clean up the connection free code
11628 - BUG/MEDIUM: checks: immediately report a connection success
11629 - MEDIUM: connection: don't use real send() flags in snd_buf()
11630 - OPTIM: ssl: implement dynamic record size adjustment
11631 - MINOR: stats: report exact last session time in backend too
11632 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
11633 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
11634 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
11635 - MINOR: channel: add the date of last read in the channel
11636 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
11637 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
11638 - MINOR: config: make the stream interface idle timer user-configurable
11639 - MINOR: config: add global directives to set default SSL ciphers
11640 - MINOR: sample: add a rand() sample fetch to return a sample.
11641 - BUG/MEDIUM: config: immediately abort if peers section has no name
11642 - BUG/MINOR: ssl: fix syntax in config error message
11643 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
11644 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
11645 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
11646 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
11647 - MEDIUM: acl: fix pattern type for payload / payload_lv
11648 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
11649 - BUG/MEDIUM: compression: fix the output type of the compressor name
11650 - BUG/MEDIUM: http: don't start to forward request data before the connect
11651 - MINOR: http: release compression context only in http_end_txn()
11652 - MINOR: protect ebimtree/ebistree against multiple inclusions
11653 - MEDIUM: proxy: create a tree to store proxies by name
11654 - MEDIUM: proxy: make findproxy() use trees to look up proxies
11655 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
11656 - MEDIUM: stick-table: lookup table names using trees.
11657 - MEDIUM: config: faster lookup for duplicated proxy name
11658 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
11659 - MINOR: sample: move smp_to_type to sample.c
11660 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
11661 - REORG: cfgparse: move server keyword parsing to server.c
11662 - BUILD: adjust makefile for AIX 5.1
11663 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
11664 - CLEANUP: pattern: move array definitions to proto/ and not types/
11665 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
11666 - BUILD: ssl: previous patch failed
11667 - BUILD/MEDIUM: standard: get rid of the last strcpy()
11668 - BUILD/MEDIUM: standard: get rid of sprintf()
11669 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
11670 - BUILD/MEDIUM: checks: get rid of sprintf()
11671 - BUILD/MEDIUM: http: remove calls to sprintf()
11672 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
11673 - BUILD/MINOR: ssl: remove one call to sprintf()
11674 - MEDIUM: http: don't reject anymore message bodies not containing the url param
11675 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
11676 - CLEANUP: http: rename http_process_request_body()
11677 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
11678 - MINOR: http: make msg->eol carry the last CRLF length
11679 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
11680 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
11681 - MAJOR: http: don't update msg->sov anymore while processing the body
11682 - MINOR: http: add a small helper to compute the amount of body bytes present
11683 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
11684 - MINOR: http: add a small helper to compute how far to rewind to find URI
11685 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
11686 - MAJOR: http: reset msg->sov after headers are forwarded
11687 - MEDIUM: http: forward headers again while waiting for connection to complete
11688 - BUG/MINOR: http: deinitialize compression after a parsing error
11689 - BUG/MINOR: http: deinitialize compression after a compression error
11690 - MEDIUM: http: headers must be forwarded even if data was already inspected
11691 - MAJOR: http: re-enable compression on chunked encoding
11692 - MAJOR: http/compression: fix chunked-encoded response processing
11693 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
11694 - MEDIUM: http: start to centralize the forwarding code
11695 - MINOR: http: further cleanups of response forwarding function
11696 - MEDIUM: http: only allocate the temporary compression buffer when needed
11697 - MAJOR: http: centralize data forwarding in the request path
11698 - CLEANUP: http: document the response forwarding states
11699 - CLEANUP: http: remove all calls to http_silent_debug()
11700 - DOC: internal: add some reminders about HTTP parsing and pointer states
11701 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
11702 - BUG/MINOR: stats: last session was not always set
11703 - DOC: add pointer to the Cyril's HTML doc in the README
11704 - MEDIUM: config: relax use_backend check to make the condition optional
11705 - MEDIUM: config: report misplaced http-request rules
11706 - MEDIUM: config: report misplaced use-server rules
11707 - DOC: update roadmap with what was done.
11708
Willy Tarreau1a34d572014-02-03 00:41:29 +0100117092014/02/03 : 1.5-dev22
11710 - MEDIUM: tcp-check new feature: connect
11711 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
11712 - MINOR: ssl: handshake optim for long certificate chains.
11713 - BUG/MINOR: pattern: pattern comparison executed twice
11714 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
11715 - BUG/MEDIUM: pattern: Segfault in binary parser
11716 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
11717 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
11718 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
11719 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
11720 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
11721 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
11722 - MINOR: doc: Bad cli function name.
11723 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
11724 - BUILD: last release inadvertently prepended a "+" in front of the date
11725 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
11726 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
11727 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
11728 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
11729 - MINOR: http: try to stick to same server after status 401/407
11730 - BUG/MINOR: http: always disable compression on HTTP/1.0
11731 - OPTIM: poll: restore polling after a poll/stop/want sequence
11732 - OPTIM: http: don't stop polling for read on the client side after a request
11733 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
11734 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
11735 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
11736 - BUG/MINOR: stream-int: do not clear the owner upon unregister
11737 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
11738 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
11739 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
11740 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
11741 - OPTIM: session: set the READ_DONTWAIT flag when connecting
11742 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
11743 - MINOR: session: factor out the connect time measurement
11744 - MEDIUM: session: prepare to support earlier transitions to the established state
11745 - MEDIUM: stream-int: make si_connect() return an established state when possible
11746 - MINOR: checks: use an inline function for health_adjust()
11747 - OPTIM: session: put unlikely() around the freewheeling code
11748 - MEDIUM: config: report a warning when multiple servers have the same name
11749 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
11750 - BUILD/MINOR: listener: remove a glibc warning on accept4()
11751 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
11752 - BUILD: listener: fix recent accept4() again
11753 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
11754 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
11755 - MEDIUM: listener: fix polling management in the accept loop
11756 - MINOR: protocol: improve the proto->drain() API
11757 - MINOR: connection: add a new conn_drain() function
11758 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
11759 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
11760 - MINOR: connection: add more error codes to report connection errors
11761 - MEDIUM: tcp: report connection error at the connection level
11762 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
11763 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
11764 - DOC: fix misleading information about SIGQUIT
11765 - BUG/MAJOR: fix freezes during compression
11766 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
11767 - BUILD: fix VERDATE exclusion regex
11768 - CLEANUP: polling: rename "spec_e" to "state"
11769 - DOC: add a diagram showing polling state transitions
11770 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
11771 - REORG: polling: rename "fd_spec" to "fd_cache"
11772 - REORG: polling: rename the cache allocation functions
11773 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
11774 - MAJOR: polling: rework the whole polling system
11775 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
11776 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
11777 - MEDIUM: connection: add check for readiness in I/O handlers
11778 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
11779 - MINOR: stream-interface: no need to call fd_stop_both() on error
11780 - MEDIUM: connection: no need to recheck FD state
11781 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
11782 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
11783 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
11784 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
11785 - MEDIUM: polling: centralize polled events processing
11786 - MINOR: polling: create function fd_compute_new_polled_status()
11787 - MINOR: cli: add more information to the "show info" output
11788 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
11789 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
11790 - REORG: stats: move the stats socket states to dumpstats.c
11791 - MINOR: cli: add the new "show pools" command
11792 - BUG/MEDIUM: counters: flush content counters after each request
11793 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
11794 - MINOR: tools: add very basic support for composite pointers
11795 - MEDIUM: counters: stop relying on session flags at all
11796 - BUG/MINOR: cli: fix missing break in command line parser
11797 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
11798 - MAJOR: http: update connection mode configuration
11799 - MEDIUM: http: make keep-alive + httpclose be passive mode
11800 - MAJOR: http: switch to keep-alive mode by default
11801 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
11802 - BUG/MEDIUM: listener: improve detection of non-working accept4()
11803 - BUILD: listener: add fcntl.h and unistd.h
11804 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
11805
Willy Tarreau6b07bf72013-12-17 00:45:49 +0100118062013/12/17 : 1.5-dev21
11807 - MINOR: stats: don't use a monospace font to report numbers
11808 - MINOR: session: remove debugging code
11809 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
11810 - MEDIUM: http: make option http_proxy automatically rewrite the URL
11811 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
11812 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
11813 - BUG/MEDIUM: checks: servers must not start in slowstart mode
11814 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
11815 - MEDIUM: stream-int: implement a very simplistic idle connection manager
11816 - DOC: update the ROADMAP file
11817
Willy Tarreau11f64d62013-12-16 02:32:37 +0100118182013/12/16 : 1.5-dev20
11819 - DOC: add missing options to the manpage
11820 - DOC: add manpage references to all system calls
11821 - DOC: update manpage reference to haproxy-en.txt
11822 - DOC: remove -s and -l options from the manpage
11823 - DOC: missing information for the "description" keyword
11824 - DOC: missing http-send-name-header keyword in keyword table
11825 - MINOR: tools: function my_memmem() to lookup binary contents
11826 - MEDIUM: checks: add send/expect tcp based check
11827 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
11828 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
11829 - DOC: Documentation for hashing function, with test results.
11830 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
11831 - BUILD: ssl: compilation issue with openssl v0.9.6.
11832 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
11833 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
11834 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
11835 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
11836 - CLEANUP: session: remove event_accept() which was not used anymore
11837 - BUG/MINOR: deinit: free fdinfo while doing cleanup
11838 - DOC: minor typo fix in documentation
11839 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
11840 - BUG/MINOR: use the same check condition for server as other algorithms
11841 - DOC: fix typo in comments
11842 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
11843 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
11844 - MINOR: buffer: align the last output line of buffer_dump()
11845 - MINOR: buffer: align the last output line if there are less than 8 characters left
11846 - DOC: stick-table: modify the description
11847 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
11848 - CLEANUP: code style: use tabs to indent codes
11849 - DOC: checkcache: block responses with cacheable cookies
11850 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
11851 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
11852 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
11853 - LOW: systemd-wrapper: Write debug information to stdout
11854 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
11855 - MEDIUM: http: add IPv6 support for "set-tos"
11856 - DOC: ssl: update build instructions to use new SSL_* variables
11857 - BUILD/MINOR: systemd: fix compiler warning about unused result
11858 - url32+src - like base32+src but whole url including parameters
11859 - BUG/MINOR: fix forcing fastinter in "on-error"
11860 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
11861 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
11862 - MEDIUM: Split up struct server's check element
11863 - MEDIUM: Move result element to struct check
11864 - MEDIUM: Paramatise functions over the check of a server
11865 - MEDIUM: cfgparse: Factor out check initialisation
11866 - MEDIUM: Add state to struct check
11867 - MEDIUM: Move health element to struct check
11868 - MEDIUM: Add helper for task creation for checks
11869 - MEDIUM: Add helper function for failed checks
11870 - MEDIUM: Log agent fail, stopped or down as info
11871 - MEDIUM: Remove option lb-agent-chk
11872 - MEDIUM: checks: Add supplementary agent checks
11873 - MEDIUM: Do not mark a server as down if the agent is unavailable
11874 - MEDIUM: Set rise and fall of agent checks to 1
11875 - MEDIUM: Add enable and disable agent unix socket commands
11876 - MEDIUM: Add DRAIN state and report it on the stats page
11877 - BUILD/MINOR: missing header file
11878 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
11879 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
11880 - MINOR: http: some exported functions were not in the header file
11881 - MINOR: http: change url_decode to return the size of the decoded string.
11882 - BUILD/MINOR: missing header file
11883 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
11884 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
11885 - MINOR: sample: export the generic sample conversion parser
11886 - MINOR: sample: export sample_casts
11887 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
11888 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
11889 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
11890 - MINOR: tools: Add a function to convert buffer to an ipv6 address
11891 - MINOR: acl: export acl arrays
11892 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
11893 - MINOR: acl: Extract the pattern matching function
11894 - MINOR: sample: Define new struct sample_storage
11895 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
11896 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
11897 - MEDIUM: pattern: create pattern expression
11898 - MEDIUM: pattern: rename "acl" prefix to "pat"
11899 - MEDIUM: sample: let the cast functions set their output type
11900 - MINOR: sample: add a private field to the struct sample_conv
11901 - MINOR: map: Define map types
11902 - MEDIUM: sample: add the "map" converter
11903 - MEDIUM: http: The redirect strings follows the log format rules.
11904 - BUG/MINOR: acl: acl parser does not recognize empty converter list
11905 - BUG/MINOR: map: The map list was declared in the map.h file
11906 - MINOR: map: Cleanup the initialisation of map descriptors.
11907 - MEDIUM: map: merge identical maps
11908 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
11909 - BUG/MEDIUM: map: Bad map file parser
11910 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
11911 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
11912 - MINOR: map: export map_get_reference() function
11913 - MINOR: pattern: Each pattern sets the expected input type
11914 - MEDIUM: acl: Last patch change the output type
11915 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
11916 - MINOR: standard: The function parse_binary() can use preallocated buffer
11917 - MINOR: regex: Change the struct containing regex
11918 - MINOR: regex: Copy the original regex expression into string.
11919 - MINOR: pattern: add support for compiling patterns for lookups
11920 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
11921 - MINOR: map: export parse output sample functions
11922 - MINOR: pattern: add function to lookup a specific entry in pattern list
11923 - MINOR: pattern/map: Each pattern must free the associated sample
11924 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
11925 - MEDIUM: map: dynamic manipulation of maps
11926 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
11927 - BUG/MINOR: log: junk at the end of syslog packet
11928 - MINOR: Makefile: provide cscope rule
11929 - DOC: compression: chunk are not compressed anymore
11930 - MEDIUM: session: disable lingering on the server when the client aborts
11931 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
11932 - DOC: remove the comment saying that SSL certs are not checked on the server side
11933 - BUG: counters: third counter was not stored if others unset
11934 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
11935 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
11936 - BUG/MAJOR: http: sample prefetch code was not properly migrated
11937 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
11938 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
11939 - OPTIM: splicing: use splice() for the last block when relevant
11940 - MEDIUM: sample: handle comma-delimited converter list
11941 - MINOR: sample: fix sample_process handling of unstable data
11942 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
11943 - MINOR: sample: add a new "date" fetch to return the current date
11944 - MINOR: samples: add the http_date([<offset>]) sample converter.
11945 - DOC: minor improvements to the part on the stats socket.
11946 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
11947 - MINOR: payload: split smp_fetch_rdp_cookie()
11948 - MINOR: counters: factor out smp_fetch_sc*_tracked
11949 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
11950 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
11951 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
11952 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
11953 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
11954 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
11955 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
11956 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
11957 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
11958 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
11959 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
11960 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
11961 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
11962 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
11963 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
11964 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
11965 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
11966 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
11967 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
11968 - MINOR: session: make the number of stick counter entries more configurable
11969 - MEDIUM: counters: support passing the counter number as a fetch argument
11970 - MEDIUM: counters: support looking up a key in an alternate table
11971 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
11972 - MINOR: cli: make it possible to enter multiple values at once with "set table"
11973 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
11974 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
11975 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
11976 - MINOR: config: warn when a server with no specific port uses rdp-cookie
11977 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
11978 - DOC: add a mention about the limited chunk size
11979 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
11980 - MEDIUM: stick-tables: flush old entries upon soft-stop
11981 - MINOR: tcp: add new "close" action for tcp-response
11982 - MINOR: payload: provide the "res.len" fetch method
11983 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
11984 - MINOR: http: compute response time before processing headers
11985 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
11986 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
11987 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
11988 - BUG/MEDIUM: session: risk of crash on out of memory conditions
11989 - BUG/MINOR: peers: set the accept date in outgoing connections
11990 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
11991 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
11992 - MINOR: acl: add a warning when an ACL keyword is used without any value
11993 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
11994 - BUG/MINOR: acl: remove patterns from the tree before freeing them
11995 - MEDIUM: backend: add support for the wt6 hash
11996 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
11997 - OPTIM/MINOR: mark the source address as already known on accept()
11998 - BUG/MINOR: stats: don't count tarpitted connections twice
11999 - CLEANUP: http: homogenize processing of denied req counter
12000 - CLEANUP: http: merge error handling for req* and http-request *
12001 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
12002 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
12003 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
12004 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
12005 - MINOR: stats: report correct throttling percentage for servers in slowstart
12006 - OPTIM: connection: fold the error handling with handshake handling
12007 - MINOR: peers: accept to learn strings of different lengths
12008 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
12009 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
12010 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
12011 - BUG/MINOR: connection: fix typo in error message report
12012 - BUG/MINOR: backend: fix target address retrieval in transparent mode
12013 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
12014 - BUG/MINOR: log: fix log-format parsing errors
12015 - DOC: add some information about how to apply converters to samples
12016 - MINOR: acl/pattern: use types different from int to clarify who does what.
12017 - MINOR: pattern: import acl_find_match_name() into pattern.h
12018 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
12019 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
12020 - BUG/MINOR: http: usual deinit stuff in last commit
12021 - BUILD: log: silent a warning about isblank() with latest patches
12022 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
12023 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
12024 - BUG/MINOR: checks: don't consider errno and use conn->err_code
12025 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
12026 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
12027 - BUG/MINOR: tcp: check that no error is pending during a connect probe
12028 - BUG/MINOR: connection: check EINTR when sending a PROXY header
12029 - MEDIUM: connection: set the socket shutdown flags on socket errors
12030 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
12031 - MINOR: connection: clear errno prior to checking for errors
12032 - BUG/MINOR: checks: do not trust errno in write event before any syscall
12033 - MEDIUM: checks: centralize error reporting
12034 - OPTIM: checks: don't poll on recv when using plain TCP connects
12035 - OPTIM: checks: avoid setting SO_LINGER twice
12036 - MINOR: tools: add a generic binary hex string parser
12037 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
12038 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
12039 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
12040 - BUG/MINOR: acl: fix sample expression error reporting
12041 - BUG/MINOR: checks: tcp-check actions are enums, not flags
12042 - MEDIUM: checks: make tcp-check perform multiple send() at once
12043 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
12044 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
12045 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
12046 - CLEANUP: stream_interface: remove unused field err_loc
12047 - MEDIUM: stats: don't use conn->xprt_st anymore
12048 - MINOR: session: add a simple function to retrieve a session from a task
12049 - MEDIUM: stats: don't use conn->xprt_ctx anymore
12050 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
12051 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
12052 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
12053 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
12054 - MAJOR: stats: move the HTTP stats handling to its applet
12055 - MEDIUM: stats: move request argument processing to the final step
12056 - MEDIUM: session: detect applets from the session by using s->target
12057 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
12058 - MAJOR: session: pass applet return traffic through the response analysers
12059 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
12060 - MINOR: stream-int: make the shutr/shutw functions void
12061 - MINOR: obj: provide a safe and an unsafe access to pointed objects
12062 - MINOR: connection: add a field to store an object type
12063 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
12064 - MEDIUM: stream interface: move the peers' ptr into the applet context
12065 - MINOR: stream-interface: move the applet context to its own struct
12066 - MINOR: obj: introduce a new type appctx
12067 - MINOR: stream-int: rename ->applet to ->appctx
12068 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
12069 - MINOR: stream-int: add a new pointer to the end point
12070 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
12071 - MAJOR: stream interface: remove the ->release function pointer
12072 - MEDIUM: stream-int: make ->end point to the connection or the appctx
12073 - CLEANUP: stream-int: remove obsolete si_ctrl function
12074 - MAJOR: stream-int: stop using si->conn and use si->end instead
12075 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
12076 - MEDIUM: session: attach incoming connection to target on embryonic sessions
12077 - MINOR: connection: add conn_init() to (re)initialize a connection
12078 - MINOR: checks: call conn_init() to properly initialize the connection.
12079 - MINOR: peers: make use of conn_init() to initialize the connection
12080 - MINOR: session: use conn_init() to initialize the connections
12081 - MINOR: http: use conn_init() to reinitialize the server connection
12082 - MEDIUM: connection: replace conn_prepare with conn_assign
12083 - MINOR: get rid of si_takeover_conn()
12084 - MINOR: connection: add conn_new() / conn_free()
12085 - MAJOR: connection: add two new flags to indicate readiness of control/transport
12086 - MINOR: stream-interface: introduce si_reset() and si_set_state()
12087 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
12088 - MINOR: connection: replace conn_assign with conn_attach
12089 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
12090 - MAJOR: stream interface: dynamically allocate the outgoing connection
12091 - MEDIUM: connection: move the send_proxy offset to the connection
12092 - MINOR: connection: check for send_proxy during the connect(), not the SI
12093 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
12094 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
12095 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
12096 - MAJOR: stream-interface: dynamically allocate the applet context
12097 - MEDIUM: session: automatically register the applet designated by the target
12098 - MEDIUM: stats: delay appctx initialization
12099 - CLEANUP: peers: use less confusing state/status code names
12100 - MEDIUM: peers: delay appctx initialization
12101 - MINOR: stats: provide some appctx information in "show sess all"
12102 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
12103 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
12104 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
12105 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
12106 - DIET/MINOR: session: reduce the struct session size by 8 bytes
12107 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
12108 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
12109 - MINOR: http: switch the http state to an enum
12110 - MINOR: http: use an enum for the auth method in http_auth_data
12111 - DIET/MINOR: task: reduce struct task size by 8 bytes
12112 - MINOR: stream_interface: add reporting of ressouce allocation errors
12113 - MINOR: session: report lack of resources using the new stream-interface's error code
12114 - BUILD: simplify the date and version retrieval in the makefile
12115 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
12116 - BUILD: use format tags in VERDATE and SUBVERS files
12117 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
12118 - CLEANUP: check: server port is unsigned
12119 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
12120 - MINOR: tools: buf2ip6 must not modify output on failure
12121 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
12122 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
12123 - MINOR: arg: improve wording on error reporting
12124 - BUG/MEDIUM: sample: simplify and fix the argument parsing
12125 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
12126 - MEDIUM: acl: fix the initialization order of the ACL expression
12127 - CLEANUP: acl: remove useless blind copy-paste from sample converters
12128 - TESTS: add regression tests for ACL and sample expression parsers
12129 - BUILD: time: adapt the type of TV_ETERNITY to the local system
12130 - MINOR: chunks: allocate the trash chunks before parsing the config
12131 - BUILD: definitely silence some stupid GCC warnings
12132 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
12133 - MINOR: checks: improve handling of the servers tracking chain
12134 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
12135 - MINOR: checks: use an enum instead of flags to report a check result
12136 - MINOR: checks: rename the state flags
12137 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
12138 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
12139 - MINOR: checks: fix agent check interval computation
12140 - MINOR: checks: add a PAUSED state for the checks
12141 - MINOR: checks: create the agent tasks even when no check is configured
12142 - MINOR: checks: add a flag to indicate what check is an agent
12143 - MEDIUM: checks: enable agent checks even if health checks are disabled
12144 - BUG/MEDIUM: checks: ensure we can enable a server after boot
12145 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
12146 - BUG/MAJOR: session: repair tcp-request connection rules
12147 - BUILD: fix SUBVERS extraction in the Makefile
12148 - BUILD: pattern: silence a warning about uninitialized value
12149 - BUILD: log: fix build warning on Solaris
12150 - BUILD: dumpstats: fix build error on Solaris
12151 - DOC: move option pgsql-check to the correct place
12152 - DOC: move option tcp-check to the proper place
12153 - MINOR: connection: add simple functions to report connection readiness
12154 - MEDIUM: connection: centralize handling of nolinger in fd management
12155 - OPTIM: http: set CF_READ_DONTWAIT on response message
12156 - OPTIM: http: do not re-enable reading on client side while closing the server side
12157 - MINOR: config: add option http-keep-alive
12158 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
12159 - MAJOR: stream-int: handle the connection reuse in si_connect()
12160 - MAJOR: http: add the keep-alive transition on the server side
12161 - MAJOR: backend: enable connection reuse
12162 - MINOR: http: add option prefer-last-server
12163 - MEDIUM: http: do not report connection errors for second and further requests
12164
Willy Tarreaueab1dc62013-06-17 15:10:25 +0200121652013/06/17 : 1.5-dev19
12166 - MINOR: stats: remove the autofocus on the scope input field
12167 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
12168 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
12169 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
12170 - MEDIUM: ssl: improve crt-list format to support negation
12171 - BUG: ssl: fix crt-list for clients not supporting SNI
12172 - MINOR: stats: show soft-stopped servers in different color
12173 - BUG/MINOR: config: "source" does not work in defaults section
12174 - BUG: regex: fix pcre compile error when using JIT
12175 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
12176 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
12177 - MINOR: show PCRE version and JIT status in -vv
12178 - BUG/MINOR: jit: don't rely on USE flag to detect support
12179 - DOC: readme: add suggestion to link against static openssl
12180 - DOC: examples: provide simplified ssl configuration
12181 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
12182 - MINOR: tproxy: add support for FreeBSD
12183 - MINOR: tproxy: add support for OpenBSD
12184 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
12185 - CLEANUP: fix minor typo in error message.
12186 - CLEANUP: fix missing include <string.h> in proto/listener.h
12187 - CLEANUP: protect checks.h from multiple inclusions
12188 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
12189 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
12190 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
12191 - BUG/MEDIUM: splicing is broken since 1.5-dev12
12192 - BUG/MAJOR: acl: add implicit arguments to the resolve list
12193 - BUG/MINOR: tcp: fix error reporting for TCP rules
12194 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
12195 - MINOR: stick-table: allow to allocate an entry without filling it
12196 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
12197 - MINOR: session: only call http_send_name_header() when changing the server
12198 - MINOR: tcp: report the erroneous word in tcp-request track*
12199 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
12200 - BUG/MEDIUM: log: fix regression on log-format handling
12201 - MEDIUM: log: report file name, line number, and directive name with log-format errors
12202 - BUG/MINOR: cli: "clear table" did not work anymore without a key
12203 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
12204 - BUG/MAJOR: http: compression still has defects on chunked responses
12205 - BUG/MINOR: stats: fix confirmation links on the stats interface
12206 - BUG/MINOR: stats: the status bar does not appear anymore after a change
12207 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
12208 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
12209 - BUG/MINOR: fix unterminated ACL array in compression
12210 - BUILD: last fix broke non-linux platforms
12211 - MINOR: init: indicate the SSL runtime version on -vv.
12212 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
12213 - BUILD: stdbool is not portable (again)
12214 - DOC: readme: add a small reminder about restrictions to respect in the code
12215 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
12216 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
12217 - DOC: fix wrong copy-paste in the rspdel example
12218 - MINOR: counters: make it easier to extend the amount of tracked counters
12219 - MEDIUM: counters: add support for tracking a third counter
12220 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
12221 - BUG/MAJOR: http: always ensure response buffer has some room for a response
12222 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
12223 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
12224 - MINOR: log: add a new flag 'L' for locally processed requests
12225 - MINOR: http: add full-length header fetch methods
12226 - MEDIUM: protocol: implement a "drain" function in protocol layers
12227 - MEDIUM: http: add a new "http-response" ruleset
12228 - MEDIUM: http: add the "set-nice" action to http-request and http-response
12229 - MEDIUM: log: add a log level override value in struct session
12230 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
12231 - MEDIUM: http: add support for "set-tos" in http-request/http-response
12232 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
12233 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
12234 - MEDIUM: acl: automatically detect the type of certain fetches
12235 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
12236 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
12237 - DOC: major reorg of ACL + sample fetch
12238 - CLEANUP: http: remove the bogus urlp_ip ACL match
12239 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
12240 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
12241 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
12242 - DOC: update ROADMAP file
12243 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
12244 - MEDIUM: stats: add proxy name filtering on the statistic page
12245
Willy Tarreau289dd922013-04-03 02:26:31 +0200122462013/04/03 : 1.5-dev18
12247 - DOCS: Add explanation of intermediate certs to crt paramater
12248 - DOC: typo and minor fixes in compression paragraph
12249 - MINOR: config: http-request configuration error message misses new keywords
12250 - DOC: minor typo fix in documentation
12251 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
12252 - MEDIUM: ssl: add bind-option "strict-sni"
12253 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
12254 - MEDIUM: regex: Use PCRE JIT in acl
12255 - DOC: simplify bind option "interface" explanation
12256 - DOC: tfo: bump required kernel to linux-3.7
12257 - BUILD: add explicit support for TFO with USE_TFO
12258 - MEDIUM: New cli option -Ds for systemd compatibility
12259 - MEDIUM: add haproxy-systemd-wrapper
12260 - MEDIUM: add systemd service
12261 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
12262 - BUG/MEDIUM: remove supplementary groups when changing gid
12263 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
12264 - BUG/MINOR: Correct logic in cut_crlf()
12265 - CLEANUP: checks: Make desc argument to set_server_check_status const
12266 - CLEANUP: dumpstats: Make cli_release_handler() static
12267 - MEDIUM: server: Break out set weight processing code
12268 - MEDIUM: server: Allow relative weights greater than 100%
12269 - MEDIUM: server: Tighten up parsing of weight string
12270 - MEDIUM: checks: Add agent health check
12271 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
12272 - BUG/MINOR: time: frequency counters are not totally accurate
12273 - BUG/MINOR: http: don't process abortonclose when request was sent
12274 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
12275 - BUG/MEDIUM: checks: ignore late resets after valid responses
12276 - DOC: fix bogus recommendation on usage of gpc0 counter
12277 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
12278 - MINOR: signal: don't block SIGPROF by default
12279 - OPTIM: epoll: make use of EPOLLRDHUP
12280 - OPTIM: splice: detect shutdowns and avoid splice() == 0
12281 - OPTIM: splice: assume by default that splice is working correctly
12282 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
12283 - BUG/MEDIUM: peers: only the last peers section was used by tables
12284 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
12285 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
12286 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
12287 - BUG/MINOR: config: free peer's address when exiting upon parsing error
12288 - BUG/MINOR: config: check the proper variable when parsing log minlvl
12289 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
12290 - BUG/MINOR: cli: show sess should always validate s->listener
12291 - BUG/MINOR: log: improper NULL return check on utoa_pad()
12292 - CLEANUP: http: remove a useless null check
12293 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
12294 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
12295 - BUG/MEDIUM: tools: off-by-one in quote_arg()
12296 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
12297 - BUG/MINOR: unix: remove the 'level' field from the ux struct
12298 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
12299 - CLEANUP: config: slowstart is never negative
12300 - CLEANUP: config: maxcompcpuusage is never negative
12301 - BUG/MEDIUM: log: emit '-' for empty fields again
12302 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
12303 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
12304 - BUILD: improve the makefile's support for libpcre
12305 - MEDIUM: halog: add support for counting per source address (-ic)
12306 - MEDIUM: tools: make str2sa_range support all address syntaxes
12307 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
12308 - MEDIUM: config: use str2sa_range() to parse server addresses
12309 - MEDIUM: config: use str2sa_range() to parse peers addresses
12310 - MINOR: tests: add a config file to ease address parsing tests.
12311 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
12312 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
12313 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
12314 - MINOR: config: report missing peers section name
12315 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
12316 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
12317 - MINOR: tools: prepare str2sa_range() to return an error message
12318 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
12319 - MINOR: tools: prepare str2sa_range() to accept a prefix
12320 - MEDIUM: tools: make str2sa_range() parse unix addresses too
12321 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
12322 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
12323 - MEDIUM: config: use str2sa_range() to parse log addresses
12324 - CLEANUP: tools: remove str2sun() which is not used anymore.
12325 - MEDIUM: config: add complete support for str2sa_range() in dispatch
12326 - MEDIUM: config: add complete support for str2sa_range() in server addr
12327 - MEDIUM: config: add complete support for str2sa_range() in 'server'
12328 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
12329 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
12330 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
12331 - CLEANUP: config: do not use multiple errmsg at once
12332 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
12333 - MAJOR: listener: support inheriting a listening fd from the parent
12334 - MAJOR: tools: support environment variables in addresses
12335 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
12336 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
12337 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
12338 - DOC: mention the new HTTP 307 and 308 redirect statues
12339 - MEDIUM: poll: do not use FD_* macros anymore
12340 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
12341 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
12342 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
12343 - BUILD: fix usual isdigit() warning on solaris
12344 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
12345 - OPTIM: buffer: remove one jump in buffer_count()
12346 - OPTIM: http: improve branching in chunk size parser
12347 - OPTIM: http: optimize the response forward state machine
12348 - BUILD: enable poll() by default in the makefile
12349 - BUILD: add explicit support for Mac OS/X
12350 - BUG/MAJOR: http: use a static storage for sample fetch context
12351 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
12352 - BUG/MAJOR: http: fix regression introduced by commit a890d072
12353 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
12354 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
12355 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
12356 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
12357 - MINOR: log: indicate it when some unreliable sample fetches are logged
12358 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
12359 - MINOR: backend: rename sample fetch functions and declare the sample keywords
12360 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
12361 - MINOR: listener: rename sample fetch functions and declare the sample keywords
12362 - MEDIUM: http: unify acl and sample fetch functions
12363 - MINOR: session: rename sample fetch functions and declare the sample keywords
12364 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
12365 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
12366 - MAJOR: acl: remove fetch argument validation from the ACL struct
12367 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
12368 - MINOR: payload: add new direction-explicit sample fetches
12369 - CLEANUP: acl: remove ACL hooks which were never used
12370 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
12371 - MINOR: sample: provide a function to report the name of a sample check point
12372 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
12373 - CLEANUP: acl: remove unused references to ACL_USE_*
12374 - MINOR: http: replace acl_parse_ver with acl_parse_str
12375 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
12376 - MAJOR: acl: add option -m to change the pattern matching method
12377 - MINOR: acl: remove the use_count in acl keywords
12378 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
12379 - MEDIUM: acl: support using sample fetches directly in ACLs
12380 - MEDIUM: http: remove val_usr() to validate user_lists
12381 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
12382 - MINOR: ssl: add support for the "alpn" bind keyword
12383 - MINOR: http: status code 303 is HTTP/1.1 only
12384 - MEDIUM: http: implement redirect 307 and 308
12385 - MINOR: http: status 301 should not be marked non-cacheable
12386
Willy Tarreaua3ecbd92012-12-28 15:04:05 +0100123872012/12/28 : 1.5-dev17
12388 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
12389 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
12390 - BUG/MINOR: stats: last fix was still wrong
12391 - BUG/MINOR: stats: http-request rules still don't cope with stats
12392 - BUG/MINOR: http: http-request add-header emits a corrupted header
12393 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
12394 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
12395 - BUILD: log: unused variable svid
12396 - CLEANUP: http: rename the misleading http_check_access_rule
12397 - MINOR: http: move redirect rule processing to its own function
12398 - REORG: config: move the http redirect rule parser to proto_http.c
12399 - MEDIUM: http: add support for "http-request redirect" rules
12400 - MEDIUM: http: add support for "http-request tarpit" rule
12401
Willy Tarreau69eda352012-12-24 16:48:14 +0100124022012/12/24 : 1.5-dev16
12403 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
12404 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
12405 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
12406 - MINOR: contrib: make the iprange tool grep for addresses
12407 - CLEANUP: polling: gcc doesn't always optimize constants away
12408 - OPTIM: poll: optimize fd management functions for low register count CPUs
12409 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
12410 - OPTIM: epoll: use a temp variable for intermediary flag computations
12411 - OPTIM: epoll: current fd does not count as a new one
12412 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
12413 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
12414 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
12415 - BUG/MINOR: stream_interface: don't return when the fd is already set
12416 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
12417 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
12418 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
12419 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
12420 - BUG/MINOR: http: don't abort client connection on premature responses
12421 - BUILD: no need to clean up when making git-tar
12422 - MINOR: log: add a tag for amount of bytes uploaded from client to server
12423 - BUG/MEDIUM: log: fix possible segfault during config parsing
12424 - MEDIUM: log: change a few log tokens to make them easier to remember
12425 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
12426 - MEDIUM: log-format: make the format parser more robust and more extensible
12427 - MINOR: sample: support cast from bool to string
12428 - MINOR: samples: add a function to fetch and convert any sample to a string
12429 - MINOR: log: add lf_text_len
12430 - MEDIUM: log: add the ability to include samples in logs
12431 - REORG: stats: massive code reorg and cleanup
12432 - REORG: stats: move the HTTP header injection to proto_http
12433 - REORG: stats: functions are now HTTP/CLI agnostic
12434 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
12435 - MINOR: chunks: centralize the trash chunk allocation
12436 - MEDIUM: stats: use hover boxes instead of title to report details
12437 - MEDIUM: stats: use multi-line tips to display detailed counters
12438 - MINOR: tools: simplify the use of the int to ascii macros
12439 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
12440 - MINOR: http: prepare to support more http-request actions
12441 - MINOR: log: make parse_logformat_string() take a const char *
12442 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
12443
Willy Tarreau0cae4b32012-12-12 00:39:52 +0100124442012/12/12 : 1.5-dev15
12445 - DOC: add a few precisions on compression
12446 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
12447 - BUG/MINOR: ssl: One free session in cache remains unused.
12448 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
12449 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
12450 - MINOR: acl: add fetch for server session rate
12451 - BUG/MINOR: compression: Content-Type is case insensitive
12452 - MINOR: compression: disable on multipart or status != 200
12453 - BUG/MINOR: http: don't report client aborts as server errors
12454 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
12455 - MINOR: http: factor out the content-type checks
12456 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
12457 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
12458 - BUG/MINOR: http: disable compression when message has no body
12459 - MINOR: compression: make the stats a bit more robust
12460 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
12461 - MINOR: connection: don't remove failed handshake flags
12462 - MEDIUM: connection: add an error code in connections
12463 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
12464 - MEDIUM: connection: add error reporting for the PROXY protocol header
12465 - MEDIUM: connection: add error reporting for the SSL
12466 - DOC: document the connection error format in logs
12467 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
12468 - BUILD: stdbool is not portable
12469 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
12470 - BUG/MAJOR: raw_sock: must check error code on hangup
12471 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
12472 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
12473 - MINOR: stats: add a few more information on session dump
12474 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
12475 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
12476 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
12477 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
12478 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
12479 - CLEANUP: proto_tcp: use the same code to bind servers and backends
12480 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
12481 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
12482 - MEDIUM: proto_tcp: add support for tracking L7 information
12483 - MEDIUM: counters: add sc1_trackers/sc2_trackers
12484 - MINOR: http: add the "base32" pattern fetch function
12485 - MINOR: http: add the "base32+src" fetch method.
12486 - CLEANUP: session: use an array for the stick counters
12487 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
12488 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
12489 - BUG/MAJOR: connection: always recompute polling status upon I/O
12490 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
12491 - MINOR: config: improve error checking on TCP stick-table tracking
12492 - DOC: add some clarifications to the readme
12493
Willy Tarreaufee48ce2012-11-26 03:11:05 +0100124942012/11/26 : 1.5-dev14
12495 - DOC: fix minor typos
12496 - BUG/MEDIUM: compression: does not forward trailers
12497 - MINOR: buffer_dump with ASCII
12498 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
12499 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
12500 - BUG/MINOR: checks: don't mark the FD as closed before transport close
12501 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
12502 - MINOR: cli: report the msg state in full text in "show sess $PTR"
12503 - CLEANUP: checks: rename some server check flags
12504 - MAJOR: checks: rework completely bogus state machine
12505 - BUG/MINOR: checks: slightly clean the state machine up
12506 - MEDIUM: checks: avoid waking the application up for pure TCP checks
12507 - MEDIUM: checks: close the socket as soon as we have a response
12508 - BUG/MAJOR: checks: close FD on all timeouts
12509 - MINOR: checks: fix recv polling after connect()
12510 - MEDIUM: connection: provide a common conn_full_close() function
12511 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
12512 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
12513 - MINOR: listeners: make the accept loop more robust when maxaccept==0
12514 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
12515 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
12516 - BUG/MINOR: stats: fix inversion of the report of a check in progress
12517 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
12518 - BUG/MEDIUM: connection: always disable polling upon error
12519 - MINOR: connection: abort earlier when errors are detected
12520 - BUG/MEDIUM: checks: report handshake failures
12521 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
12522 - MINOR: tcp: add support for the "v6only" bind option
12523 - MINOR: stats: also report the computed compression savings in html stats
12524 - MINOR: stats: report the total number of compressed responses per front/back
12525 - MINOR: tcp: add support for the "v4v6" bind option
12526 - DOC: stats: document the comp_rsp stats column
12527 - BUILD: buffer: fix another isprint() warning on solaris
12528 - MINOR: cli: add support for the "show sess all" command
12529 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
12530 - MINOR: cli: improve output format for show sess $ptr
12531
Willy Tarreauad15d122012-11-22 01:11:33 +0100125322012/11/22 : 1.5-dev13
12533 - BUILD: fix build issue without USE_OPENSSL
12534 - BUILD: fix compilation error with DEBUG_FULL
12535 - DOC: ssl: remove prefer-server-ciphers documentation
12536 - DOC: ssl: surround keywords with quotes
12537 - DOC: fix minor typo on http-send-name-header
12538 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
12539 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
12540 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
12541 - BUILD: report zlib support in haproxy -vv
12542 - DOC: compression: add some details and clean up the formatting
12543 - DOC: Change is_ssl acl to ssl_fc acl in example
12544 - DOC: make it clear what the HTTP request size is
12545 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
12546 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
12547 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
12548 - DOC: ssl: add 'ecdhe' statement on 'bind'
12549 - MEDIUM: ssl: add client certificate authentication support
12550 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
12551 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
12552 - DOC: ssl: add fetch and ACL 'client_cert'
12553 - MINOR: ssl: add ignore verify errors options
12554 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
12555 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
12556 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
12557 - MINOR: ssl: add fetches and ACLs to return verify errors
12558 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
12559 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
12560 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
12561 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12562 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
12563 - MEDIUM: config: authorize frontend and listen without bind.
12564 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
12565 - DOC: ssl: add 'no-tls-tickets' statement documentation.
12566 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
12567 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
12568 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
12569 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
12570 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
12571 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
12572 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
12573 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
12574 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
12575 - MINOR: ssl: use bit fields to store ssl options instead of one int each
12576 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
12577 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
12578 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
12579 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
12580 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
12581 - MEDIUM: ssl: reject ssl server keywords in default-server statement
12582 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
12583 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
12584 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
12585 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
12586 - MINOR: acl: add parse and match primitives to use binary type on ACLs
12587 - MINOR: sample: export 'sample_get_trash_chunk(void)'
12588 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
12589 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
12590 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
12591 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
12592 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
12593 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
12594 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
12595 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
12596 - MINOR: ssl: add 'crt' statement on server.
12597 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
12598 - BUG/MEDIUM: ssl: review polling on reneg.
12599 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
12600 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
12601 - MINOR: build: allow packagers to specify the ssl cache size
12602 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
12603 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
12604 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
12605 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
12606 - DOC: duplicate ssl_sni section
12607 - MEDIUM: HTTP compression (zlib library support)
12608 - CLEANUP: use struct comp_ctx instead of union
12609 - BUILD: remove dependency to zlib.h
12610 - MINOR: compression: memlevel and windowsize
12611 - MEDIUM: use pool for zlib
12612 - MINOR: compression: try init in cfgparse.c
12613 - MINOR: compression: init before deleting headers
12614 - MEDIUM: compression: limit RAM usage
12615 - MINOR: compression: tune.comp.maxlevel
12616 - MINOR: compression: maximum compression rate limit
12617 - MINOR: log-format: check number of arguments in cfgparse.c
12618 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
12619 - BUG/MINOR: compression: deinit zlib only when required
12620 - MEDIUM: compression: don't compress when no data
12621 - MEDIUM: compression: use pool for comp_ctx
12622 - MINOR: compression: rate limit in 'show info'
12623 - MINOR: compression: report zlib memory usage
12624 - BUG/MINOR: compression: dynamic level increase
12625 - DOC: compression: unsupported cases.
12626 - MINOR: compression: CPU usage limit
12627 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
12628 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
12629 - MINOR: config: add a function to indent error messages
12630 - REORG: split "protocols" files into protocol and listener
12631 - MEDIUM: config: replace ssl_conf by bind_conf
12632 - CLEANUP: listener: remove unused conf->file and conf->line
12633 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
12634 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
12635 - MEDIUM: move bind SSL parsing to ssl_sock
12636 - MINOR: config: improve error reporting for "bind" lines
12637 - MEDIUM: config: move the common "bind" settings to listener.c
12638 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
12639 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
12640 - MINOR: listener: add a scope field in the bind keyword lists
12641 - MINOR: config: pass the file and line to config keyword parsers
12642 - MINOR: stats: fill the file and line numbers in the stats frontend
12643 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
12644 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
12645 - REORG: listener: move unix perms from the listener to the bind_conf
12646 - BUG: backend: balance hdr was broken since 1.5-dev11
12647 - MINOR: standard: make memprintf() support a NULL destination
12648 - MINOR: config: make str2listener() use memprintf() to report errors.
12649 - MEDIUM: stats: remove the stats_sock struct from the global struct
12650 - MINOR: ssl: set the listeners' data layer to ssl during parsing
12651 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
12652 - DOC: move bind options to their own section
12653 - DOC: stats: refer to "bind" section for "stats socket" settings
12654 - DOC: fix index to reference bind and server options
12655 - BUG: http: do not print garbage on invalid requests in debug mode
12656 - BUG/MINOR: config: check the proper pointer to report unknown protocol
12657 - CLEANUP: connection: offer conn_prepare() to set up a connection
12658 - CLEANUP: config: fix typo inteface => interface
12659 - BUG: stats: fix regression introduced by commit 4348fad1
12660 - MINOR: cli: allow to set frontend maxconn to zero
12661 - BUG/MAJOR: http: chunk parser was broken with buffer changes
12662 - MEDIUM: monitor: simplify handling of monitor-net and mode health
12663 - MINOR: connection: add a pointer to the connection owner
12664 - MEDIUM: connection: make use of the owner instead of container_of
12665 - BUG/MINOR: ssl: report the L4 connection as established when possible
12666 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
12667 - BUG/MINOR: config: use a copy of the file name in proxy configurations
12668 - BUG/MEDIUM: listener: don't pause protocols that do not support it
12669 - MEDIUM: proxy: add the global frontend to the list of normal proxies
12670 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
12671 - MINOR: signal: really ignore signals configured with no handler
12672 - MINOR: buffers: add a few functions to write chars, strings and blocks
12673 - MINOR: raw_sock: always report asynchronous connection errors
12674 - MEDIUM: raw_sock: improve connection error reporting
12675 - REORG: connection: rename the data layer the "transport layer"
12676 - REORG: connection: rename app_cb "data"
12677 - MINOR: connection: provide a generic data layer wakeup callback
12678 - MINOR: connection: split conn_prepare() in two functions
12679 - MINOR: connection: add an init callback to the data_cb struct
12680 - MEDIUM: session: use a specific data_cb for embryonic sessions
12681 - MEDIUM: connection: use a generic data-layer init() callback
12682 - MEDIUM: connection: reorganize connection flags
12683 - MEDIUM: connection: only call the data->wake callback on activity
12684 - MEDIUM: connection: make it possible for data->wake to return an error
12685 - MEDIUM: session: register a data->wake callback to process errors
12686 - MEDIUM: connection: don't call the data->init callback upon error
12687 - MEDIUM: connection: it's not the data layer's role to validate the connection
12688 - MEDIUM: connection: automatically disable polling on error
12689 - REORG: connection: move the PROXY protocol management to connection.c
12690 - MEDIUM: connection: add a new local send-proxy transport callback
12691 - MAJOR: checks: make use of the connection layer to send checks
12692 - REORG: server: move the check-specific parts into a check subsection
12693 - MEDIUM: checks: use real buffers to store requests and responses
12694 - MEDIUM: check: add the ctrl and transport layers in the server check structure
12695 - MAJOR: checks: completely use the connection transport layer
12696 - MEDIUM: checks: add the "check-ssl" server option
12697 - MEDIUM: checks: enable the PROXY protocol with health checks
12698 - CLEANUP: checks: remove minor warnings for assigned but not used variables
12699 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
12700 - BUG: connection: fix regression from commit 9e272bf9
12701 - CLEANUP: cttproxy: remove a warning on undeclared close()
12702 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
12703 - MEDIUM: listener: add support for linux's accept4() syscall
12704 - MINOR: halog: sort output by cookie code
12705 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
12706 - BUG/MINOR: halog: fix help message for -ut/-uto
12707 - MINOR: halog: add a parameter to limit output line count
12708 - BUILD: accept4: move the socketcall declaration outside of accept4()
12709 - MINOR: server: add minimal infrastructure to parse keywords
12710 - MINOR: standard: make indent_msg() support empty messages
12711 - MEDIUM: server: check for registered keywords when parsing unknown keywords
12712 - MEDIUM: server: move parsing of keyword "id" to server.c
12713 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
12714 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
12715 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
12716 - MEDIUM: connection: always unset the transport layer upon close
12717 - BUG/MINOR: session: fix some leftover from debug code
12718 - BUG/MEDIUM: session: enable the conn_session_update() callback
12719 - MEDIUM: connection: add a flag to hold the transport layer
12720 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
12721 - MINOR: log: make lf_text use a const char *
12722 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
12723 - REORG: http: rename msg->buf to msg->chn since it's a channel
12724 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
12725 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
12726 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
12727 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
12728 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
12729 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
12730 - OPTIM: channel: reorganize struct members to improve cache efficiency
12731 - CLEANUP: session: remove term_trace which is not used anymore
12732 - OPTIM: session: reorder struct session fields
12733 - OPTIM: connection: pack the struct target
12734 - DOC: document relations between internal entities
12735 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
12736 - BUILD: ssl: fix shctx build on older compilers
12737 - MEDIUM: ssl: add support for the "npn" bind keyword
12738 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
12739 - MINOR: chunk: provide string compare functions
12740 - MINOR: sample: accept fetch keywords without parenthesis
12741 - MEDIUM: sample: pass an empty list instead of a null for fetch args
12742 - MINOR: ssl: improve socket behaviour upon handshake abort.
12743 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
12744 - MEDIUM: listener: provide a fallback for accept4() when not supported
12745 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
12746 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
12747 - OPTIM: channel: inline channel_forward's fast path
12748 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
12749 - OPTIM: tools: inline hex2i()
12750 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
12751 - MINOR: compression: automatically disable compression for older browsers
12752 - MINOR: compression: optimize memLevel to improve byte rate
12753 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
12754 - BUILD: fix coexistence of openssl and zlib
12755 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
12756 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
12757 - MINOR: tools: add a clear_addr() function to unset an address
12758 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
12759 - CLEANUP: remove trashlen
12760 - MAJOR: session: detach the connections from the stream interfaces
12761 - DOC: update document describing relations between internal entities
12762 - BUILD: make it possible to specify ZLIB path
12763 - MINOR: compression: add an offload option to remove the Accept-Encoding header
12764 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
12765 - CLEANUP: completely remove trashlen
12766 - MINOR: chunk: add a function to reset a chunk
12767 - CLEANUP: replace chunk_printf() with chunk_appendf()
12768 - MEDIUM: make the trash be a chunk instead of a char *
12769 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
12770 - MEDIUM: stick-table: allocate the table key of size buffer size
12771 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
12772 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
12773 - OPTIM: session: don't process the whole session when only timers need a refresh
12774 - BUG/MINOR: session: mark the handshake as complete earlier
12775 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
12776 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
12777 - MAJOR: sepoll: make the poller totally event-driven
12778 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
12779 - BUILD: compression: remove a build warning
12780 - MEDIUM: fd: don't unset fdtab[].updated upon delete
12781 - REORG: fd: move the speculative I/O management from ev_sepoll
12782 - REORG: fd: move the fd state management from ev_sepoll
12783 - REORG: fd: centralize the processing of speculative events
12784 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
12785 - BUILD: stream_interface: remove si_fd() and its references
12786 - BUILD: compression: enable build in BSD and OSX Makefiles
12787 - MAJOR: ev_select: make the poller support speculative events
12788 - MAJOR: ev_poll: make the poller support speculative events
12789 - MAJOR: ev_kqueue: make the poller support speculative events
12790 - MAJOR: polling: replace epoll with sepoll and remove sepoll
12791 - MAJOR: polling: remove unused callbacks from the poller struct
12792 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
12793 - CLEANUP: channel: remove any reference of the hijackers
12794 - CLEANUP: stream_interface: remove the external task type target
12795 - MAJOR: connection: replace struct target with a pointer to an enum
12796 - BUG: connection: fix typo in previous commit
12797 - BUG: polling: don't skip polled events in the spec list
12798 - MINOR: splice: disable it when the system returns EBADF
12799 - MINOR: build: allow packagers to specify the default maxzlibmem
12800 - BUG: halog: fix broken output limitation
12801 - BUG: proxy: fix server name lookup in get_backend_server()
12802 - BUG: compression: do not always increment the round counter on allocation failure
12803 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
12804 - MINOR: global: don't prevent nbproc from being redefined
12805 - MINOR: config: support process ranges for "bind-process"
12806 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
12807 - MINOR: ssl: rename and document the tune.ssl.cachesize option
12808 - DOC: update the PROXY protocol spec to support v2
12809 - MINOR: standard: add a simple popcount function
12810 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
12811 - BUG: compression: properly disable compression when content-type does not match
12812 - MINOR: cli: report connection status in "show sess xxx"
12813 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
12814 - BUILD: cli: fix build when SSL is enabled
12815 - MINOR: cli: report the fd state in "show sess xxx"
12816 - MINOR: cli: report an error message on missing argument to compression rate
12817 - MINOR: http: add some debugging functions to pretty-print msg state names
12818 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
12819 - DOC: documentation on http header capture is wrong
12820 - MINOR: http: allow the cookie capture size to be changed
12821 - DOC: http header capture has not been limited in size for a long time
12822 - DOC: update readme with build methods for BSD
12823 - BUILD: silence a warning on Solaris about usage of isdigit()
12824 - MINOR: stats: report HTTP compression stats per frontend and per backend
12825 - MINOR: log: add '%Tl' to log-format
12826 - MINOR: samples: update the url_param fetch to match parameters in the path
12827
Willy Tarreau16216822012-09-10 09:46:55 +0200128282012/09/10 : 1.5-dev12
12829 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
12830 - MEDIUM: ssl: add support for prefer-server-ciphers option
12831 - MINOR: IPv6 support for transparent proxy
12832 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
12833 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
12834 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
12835 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
12836 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
12837 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
12838 - MEDIUM: ssl: protect against client-initiated renegociation
12839 - BUILD: add optional support for SSL via the USE_OPENSSL flag
12840 - MEDIUM: ssl: add shared memory session cache implementation.
12841 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
12842 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
12843 - MEDIUM: ssl: add support for SNI and wildcard certificates
12844 - DOC: Typos cleanup
12845 - DOC: fix name for "option independant-streams"
12846 - DOC: specify the default value for maxconn in the context of a proxy
12847 - BUG/MINOR: to_log erased with unique-id-format
12848 - LICENSE: add licence exception for OpenSSL
12849 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
12850 - BUILD: add an AIX 5.2 (and later) target.
12851 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
12852 - MINOR: halog: use the more recent dual-mode fgets2 implementation
12853 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
12854 - CLEANUP: halog: make clean should also remove .o files
12855 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
12856 - OPTIM: halog: improve cold-cache behaviour when loading a file
12857 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
12858 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
12859 - MEDIUM: pattern: add the "base" sample fetch method
12860 - OPTIM: i386: make use of kernel-mode-linux when available
12861 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
12862 - BUG/MINOR: polling: some events were not set in various pollers
12863 - MINOR: http: add the urlp_val ACL match
12864 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
12865 - MINOR: stats/cli: add plans to support more stick-table actions
12866 - MEDIUM: stats/cli: add support for "set table key" to enter values
12867 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
12868 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
12869 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
12870 - REORG/MINOR: connection: move declaration to its own include file
12871 - REORG/MINOR: checks: put a struct connection into the server
12872 - MINOR: connection: add flags to the connection struct
12873 - MAJOR: get rid of fdtab[].state and use connection->flags instead
12874 - MINOR: fd: add a new I/O handler to fdtab
12875 - MEDIUM: polling: prepare to call the iocb() function when defined.
12876 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
12877 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
12878 - MINOR: connection: add a handler for fd-based connections
12879 - MAJOR: connection: replace direct I/O callbacks with the connection callback
12880 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
12881 - MEDIUM: connection: remove the FD_POLL_* flags only once
12882 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
12883 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
12884 - CLEANUP: remove the now unused fdtab direct I/O callbacks
12885 - MAJOR: remove the stream interface and task management code from sock_*
12886 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
12887 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
12888 - MAJOR: connection: add a new CO_FL_CONNECTED flag
12889 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
12890 - MAJOR: connection: call data layer handshakes from the handler
12891 - MEDIUM: fd: remove the EV_FD_COND_* primitives
12892 - MINOR: sock_raw: move calls to si_data_close upper
12893 - REORG: connection: replace si_data_close() with conn_data_close()
12894 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
12895 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
12896 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
12897 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
12898 - MEDIUM: connection: add definitions for dual polling mechanisms
12899 - MEDIUM: connection: make use of the new polling functions
12900 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
12901 - MEDIUM: checks: don't use FD_WAIT_* anymore
12902 - MINOR: fd: get rid of FD_WAIT_*
12903 - MEDIUM: stream_interface: offer a generic function for connection updates
12904 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
12905 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
12906 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
12907 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
12908 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
12909 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
12910 - REORG/MAJOR: extract "struct buffer" from "struct channel"
12911 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
12912 - REORG: sock_raw: rename the files raw_sock*
12913 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
12914 - MAJOR: raw_sock: temporarily disable splicing
12915 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
12916 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
12917 - MAJOR: connection: split the send call into connection and stream interface
12918 - MAJOR: stream-interface: restore splicing mechanism
12919 - MAJOR: stream-interface: make conn_notify_si() more robust
12920 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
12921 - MAJOR: stream-interface: don't commit polling changes in every callback
12922 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
12923 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
12924 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
12925 - REORG: buffers: split buffers into chunk,buffer,channel
12926 - MAJOR: channel: remove the BF_OUT_EMPTY flag
12927 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
12928 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
12929 - MINOR: buffer: provide a new buffer_full() function
12930 - MAJOR: channel: stop relying on BF_FULL to take action
12931 - MAJOR: channel: remove the BF_FULL flag
12932 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
12933 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
12934 - CLEANUP: channel: use "channel" instead of "buffer" in function names
12935 - REORG: connection: move the target pointer from si to connection
12936 - MAJOR: connection: move the addr field from the stream_interface
12937 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
12938 - MEDIUM: proto_tcp: remove any dependence on stream_interface
12939 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
12940 - MEDIUM: connection: add an ->init function to data layer
12941 - MAJOR: session: introduce embryonic sessions
12942 - MAJOR: connection: make the PROXY decoder a handshake handler
12943 - CLEANUP: frontend: remove the old proxy protocol decoder
12944 - MAJOR: connection: rearrange the polling flags.
12945 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
12946 - MEDIUM: connection: complete the polling cleanups
12947 - MEDIUM: connection: avoid calling handshakes when polling is required
12948 - MAJOR: stream_interface: continue to update data polling flags during handshakes
12949 - CLEANUP: fd: remove fdtab->flags
12950 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
12951 - CLEANUP: includes: fix includes for a number of users of fd.h
12952 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
12953 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
12954 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
12955 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
12956 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
12957 - BUILD: ssl: fix shctx build on RHEL with futex
12958 - BUILD: include sys/socket.h to fix build failure on FreeBSD
12959 - BUILD: fix build error without SSL (ssl_cert)
12960 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
12961 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
12962 - MEDIUM: config: support per-listener backlog and maxconn
12963 - MINOR: session: do not send an HTTP/500 error on SSL sockets
12964 - MEDIUM: config: implement maxsslconn in the global section
12965 - BUG: tcp: close socket fd upon connect error
12966 - MEDIUM: connection: improve error handling around the data layer
12967 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
12968 - BUILD: shut a gcc warning introduced by commit 269ab31
12969 - MEDIUM: config: centralize handling of SSL config per bind line
12970 - BUILD: makefile: report USE_OPENSSL status in build options
12971 - BUILD: report openssl build settings in haproxy -vv
12972 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
12973 - DOC: add a special acknowledgement for the stud project
12974 - DOC: add missing SSL options for servers and listeners
12975 - BUILD: automatically add -lcrypto for SSL
12976 - DOC: add some info about openssl build in the README
12977
Willy Tarreau02c7c142012-06-04 00:43:45 +0200129782012/06/04 : 1.5-dev11
12979 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
12980 - BUG/MAJOR: trash must always be the size of a buffer
12981 - DOC: fix minor regex example issue and improve doc on stats
12982 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
12983 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
12984 - MINOR: checks: add on-marked-up option
12985 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
12986 - MEDIUM: stream_interface: remove the si->init
12987 - MINOR: buffers: add a rewind function
12988 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
12989 - MAJOR: http: stop using msg->sol outside the parsers
12990 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
12991 - MEDIUM: http: get rid of msg->som which is not used anymore
12992 - MEDIUM: http: msg->sov and msg->sol will never wrap
12993 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
12994 - BUG/MINOR: stop connect timeout when connect succeeds
12995 - REORG: move the send-proxy code to tcp_connect_write()
12996 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
12997 - MINOR: stream_interface: introduce a new "struct connection" type
12998 - REORG/MINOR: stream_interface: move si->fd to struct connection
12999 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
13000 - MINOR: stream_interface: add a data channel close function
13001 - MEDIUM: stream_interface: call si_data_close() before releasing the si
13002 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
13003 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
13004 - MINOR: add a new function call tracer for debugging purposes
13005 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
13006 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
13007 - BUG/MEDIUM: register peer sync handler in the proper order
13008 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
13009 - BUG/MINOR: fix option httplog validation with TCP frontends
13010 - BUG/MINOR: log: don't report logformat errors in backends
13011 - REORG/MINOR: use dedicated proxy flags for the cookie handling
13012 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
13013 - MINOR: http: add support for "httponly" and "secure" cookie attributes
13014 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
13015 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
13016 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
13017 - MEDIUM: stats: add the ability to kill sessions from the admin interface
13018 - BUILD: add support for linux kernels >= 2.6.28
13019
Willy Tarreauffb89472012-05-14 07:26:56 +0200130202012/05/14 : 1.5-dev10
13021 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
13022 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
13023 - CLEANUP: auth: make the code build again with DEBUG_AUTH
13024 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
13025 - REORG: use the name sock_raw instead of stream_sock
13026 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
13027 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
13028 - CLEANUP: sock_raw: remove last references to stream_sock
13029 - CLEANUP: stream_interface: stop exporting socket layer functions
13030 - MINOR: stream_interface: add an init callback to sock_ops
13031 - MEDIUM: stream_interface: derive the socket operations from the target
13032 - MAJOR: fd: remove the need for the socket layer to recheck the connection
13033 - MINOR: session: call the socket layer init function when a session establishes
13034 - MEDIUM: session: add support for tunnel timeouts
13035 - MINOR: standard: add a new debug macro : fddebug()
13036 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
13037 - OPTIM: proto_http: don't enable quick-ack on empty buffers
13038 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
13039 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
13040
Willy Tarreaua0564f32012-05-08 21:56:27 +0200130412012/05/08 : 1.5-dev9
13042 - MINOR: Add release callback to si_applet
13043 - CLEANUP: Fix some minor typos
13044 - MINOR: Add TO/FROM_SET flags to struct stream_interface
13045 - CLEANUP: Fix some minor whitespace issues
13046 - MINOR: stats admin: allow unordered parameters in POST requests
13047 - CLEANUP: fix typo in findserver() log message
13048 - MINOR: stats admin: use the backend id instead of its name in the form
13049 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
13050 - DOC: cleanup indentation, alignment, columns and chapters
13051 - DOC: fix some keywords arguments documentation
13052 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
13053 - BUG/MAJOR: log: possible segfault with logformat
13054 - MEDIUM: log: split of log_format generation
13055 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
13056 - MEDIUM: log: Unique ID
13057 - MINOR: log: log-format: usable without httplog and tcplog
13058 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
13059 - MINOR: contrib/iprange: add a network IP range to mask converter
13060 - MEDIUM: session: implement the "use-server" directive
13061 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
13062 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
13063 - MEDIUM: http: add cookie and scookie ACLs
13064 - CLEANUP: lb_first: add reference to a paper describing the original idea
13065 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
13066 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
13067 - BUILD: http: make extract_cookie_value() return an int not size_t
13068 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
13069 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
13070 - MINOR: standard: add a memprintf() function to build formatted error messages
13071 - CLEANUP: remove a few warning about unchecked return values in debug code
13072 - MEDIUM: move message-related flags from transaction to message
13073 - DOC: add a diagram to explain how circular buffers work
13074 - MAJOR: buffer rework: replace ->send_max with ->o
13075 - MAJOR: buffer: replace buf->l with buf->{o+i}
13076 - MINOR: buffers: provide simple pointer normalization functions
13077 - MINOR: buffers: remove unused function buffer_contig_data()
13078 - MAJOR: buffers: replace buf->w with buf->p - buf->o
13079 - MAJOR: buffers: replace buf->r with buf->p + buf->i
13080 - MAJOR: http: move buffer->lr to http_msg->next
13081 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
13082 - CLEANUP: http: remove unused http_msg->col
13083 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
13084 - MEDIUM: http: add a pointer to the buffer in http_msg
13085 - MAJOR: http: make http_msg->sol relative to buffer's origin
13086 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
13087 - MEDIUM: http: remove buffer arg in a few header manipulation functions
13088 - MEDIUM: http: remove buffer arg in http_capture_bad_message
13089 - MEDIUM: http: remove buffer arg in http_msg_analyzer
13090 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
13091 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
13092 - MEDIUM: http: remove buffer arg in chunk parsing functions
13093 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
13094 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
13095 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
13096 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
13097 - MEDIUM: buffers: rename a number of buffer management functions
13098 - MEDIUM: http: add a prefetch function for ACL pattern fetch
13099 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
13100 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
13101 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
13102 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
13103 - MEDIUM: add a new typed argument list parsing framework
13104 - MAJOR: acl: make use of the new argument parsing framework
13105 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
13106 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
13107 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
13108 - MAJOR: acl: ensure that implicit table and proxies are valid
13109 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
13110 - MEDIUM: pattern: replace type pattern_arg with type arg
13111 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
13112 - MEDIUM: pattern: use the standard arg parser
13113 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
13114 - MEDIUM: pattern: report the precise argument parsing error when known.
13115 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
13116 - MINOR: pattern: add a new 'sample' type to store fetched data
13117 - MEDIUM: pattern: add new sample types to replace pattern types
13118 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
13119 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
13120 - MEDIUM: acl: get rid of the SET_RES flags
13121 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
13122 - MINOR: pattern: replace struct pattern with struct sample
13123 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
13124 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
13125 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
13126 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
13127 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
13128 - MEDIUM: acl/pattern: use the same direction scheme
13129 - MEDIUM: acl/pattern: start merging common sample fetch functions
13130 - MEDIUM: pattern: ensure that sample types always cast into other types.
13131 - MEDIUM: acl/pattern: factor out the src/dst address fetches
13132 - MEDIUM: acl: implement payload and payload_lv
13133 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
13134 - MINOR: stick_table: centralize the handling of empty keys
13135 - MINOR: pattern: centralize handling of unstable data in pattern_process()
13136 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
13137 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
13138 - MINOR: acl: add a val_args field to keywords
13139 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
13140 - MEDIUM: http: merge acl and pattern header fetch functions
13141 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
13142 - MEDIUM: acl: report parsing errors to the caller
13143 - MINOR: arg: improve error reporting on invalid arguments
13144 - MINOR: acl: report errors encountered when loading patterns from files
13145 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
13146 - REORG: use the name "sample" instead of "pattern" to designate extracted data
13147 - REORG: rename "pattern" files
13148 - MINOR: acl: add types to ACL patterns
13149 - MINOR: standard: add an IPv6 parsing function (str62net)
13150 - MEDIUM: acl: support IPv6 address matching
13151 - REORG: stream_interface: create a struct sock_ops to hold socket operations
13152 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
13153 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
13154 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
13155 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
13156 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
13157 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
13158 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
13159 - MEDIUM: http: improve error capture reports
13160 - MINOR: acl: add the cook_val() match to match a cookie against an integer
13161 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
13162 - MEDIUM: memory: add the ability to poison memory at run time
13163 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
13164 - MINOR: cfgparse: use a common errmsg pointer for all parsers
13165 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
13166 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
13167 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
13168
Willy Tarreau9eeb57b2012-03-26 06:15:29 +0200131692012/03/26 : 1.5-dev8
13170 - MINOR: patch for minor typo (ressources/resources)
13171 - MEDIUM: http: add support for sending the server's name in the outgoing request
13172 - DOC: mention that default checks are TCP connections
13173 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
13174 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
13175 - CLEANUP: Fix HCHK spelling errors
13176 - BUG/MINOR: fix typo in processing of http-send-name-header
13177 - MEDIUM: log: Use linked lists for loggers
13178 - BUILD: fix declaration inside a scope block
13179 - REORG: log: split send_log function
13180 - MINOR: config: Parse the string of the log-format config keyword
13181 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
13182 - MINOR: Date and time fonctions that don't use snprintf
13183 - MEDIUM: log: make http_sess_log use log_format
13184 - DOC: log-format documentation
13185 - MEDIUM: log: use log_format for mode tcplog
13186 - MEDIUM: log-format: backend source address %Bi %Bp
13187 - BUG/MINOR: log-format: fix %o flag
13188 - BUG/MEDIUM: bad length in log_format and __send_log
13189 - MINOR: logformat %st is signed
13190 - BUILD/MINOR: fix the source URL in the spec file
13191 - DOC: acl is http_first_req, not http_req_first
13192 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
13193 - MINOR: acl: add new matches for header/path/url length
13194 - BUILD: halog: make halog build on solaris
13195 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
13196 - MINOR: remove the client/server side distinction in SI addresses
13197 - MINOR: halog: add support for matching queued requests
13198 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
13199 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
13200 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
13201 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
13202 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
13203 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
13204 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
13205 - CLEANUP: rename possibly confusing struct field "tracked"
13206 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
13207 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
13208 - MEDIUM: buffers: add some new primitives and rework existing ones
13209 - BUG: buffers: don't return a negative value on buffer_total_space_res()
13210 - MINOR: buffers: make buffer_pointer() support negative pointers too
13211 - CLEANUP: kill buffer_replace() and use an inline instead
13212 - BUG: tcp: option nolinger does not work on backends
13213 - CLEANUP: ebtree: remove a few annoying signedness warnings
13214 - CLEANUP: ebtree: clarify licence and update to 6.0.6
13215 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
13216 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
13217 - BUG: ebtree: ebst_lookup() could return the wrong entry
13218 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
13219 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
13220 - MINOR: acl: add support for TLS server name matching using SNI
13221 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
13222 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
13223 - MINOR: pattern: export the global temporary pattern
13224 - CLEANUP: patterns: get rid of pattern_data_setstring()
13225 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
13226 - MINOR: acl: include pattern.h to make pattern migration more transparent
13227 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
13228 - MEDIUM: acl: use temp_pattern to store any integer-type information
13229 - MEDIUM: acl: use temp_pattern to store any address-type information
13230 - CLEANUP: acl: integer part of acl_test is not used anymore
13231 - MEDIUM: acl: use temp_pattern to store any string-type information
13232 - CLEANUP: acl: remove last data fields from the acl_test struct
13233 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
13234 - MEDIUM: patterns: the hdr() pattern is now of type string
13235 - DOC: add minimal documentation on how ACLs work internally
13236 - DOC: add a coding-style file
13237 - OPTIM: halog: keep a fast path for the lines-count only
13238 - CLEANUP: silence a warning when building on sparc
13239 - BUG: http: tighten the list of allowed characters in a URI
13240 - MEDIUM: http: block non-ASCII characters in URIs by default
13241 - DOC: add some documentation from RFC3986 about URI format
13242 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
13243 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
13244 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
13245 - MINOR: halog: add some help on the command line
13246 - BUILD: fix build error on FreeBSD
13247 - BUG: fix double free in peers config error path
13248 - MEDIUM: improve config check return codes
13249 - BUILD: make it possible to look for pcre in the default system paths
13250 - MINOR: config: emit a warning when 'default_backend' masks servers
13251 - MINOR: backend: rework the LC definition to support other connection-based algos
13252 - MEDIUM: backend: add the 'first' balancing algorithm
13253 - BUG: fix httplog trailing LF
13254 - MEDIUM: increase chunk-size limit to 2GB-1
13255 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
13256 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
13257 - BUG: checks: fix server maintenance exit sequence
13258 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
13259 - DOC: enumerate valid status codes for "observe layer7"
13260 - MINOR: buffer: switch a number of buffer args to const
13261 - CLEANUP: silence signedness warning in acl.c
13262 - BUG: stream_sock: si->release was not called upon shutw()
13263 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
13264 - BUG/CRITICAL: log: fix risk of crash in development snapshot
13265 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
13266 - MINOR: config: disable header captures in TCP mode and complain
13267
Willy Tarreau60612eb2011-09-10 23:43:11 +0200132682011/09/10 : 1.5-dev7
13269 - [BUG] fix binary stick-tables
13270 - [MINOR] http: *_dom matching header functions now also split on ":"
13271 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
13272 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
13273 - [MINOR] check: add redis check support
13274 - [DOC] small fixes to clearly distinguish between keyword and variables
13275 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
13276 - [DOC] Minor spelling fixes and grammatical enhancements
13277 - [CLEANUP] dumpstats: make symbols static where possible
13278 - [MINOR] Break out dumping table
13279 - [MINOR] Break out processing of clear table
13280 - [MINOR] Allow listing of stick table by key
13281 - [MINOR] Break out all stick table socat command parsing
13282 - [MINOR] More flexible clearing of stick table
13283 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
13284 - [MINOR] Allow showing and clearing by key of integer stick tables
13285 - [MINOR] Allow showing and clearing by key of string stick tables
13286 - [CLEANUP] Remove assigned but unused variables
13287 - [CLEANUP] peers.h: fix declarations
13288 - [CLEANUP] session.c: Make functions static where possible
13289 - [MINOR] Add active connection list to server
13290 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
13291 - [MINOR] Add down termination condition
13292 - [MINOR] Make appsess{,ion}_refresh static
13293 - [MINOR] Add rdp_cookie pattern fetch function
13294 - [CLEANUP] Remove unnecessary casts
13295 - [MINOR] Add non-stick server option
13296 - [MINOR] Consistently use error in tcp_parse_tcp_req()
13297 - [MINOR] Consistently free expr on error in cfg_parse_listen()
13298 - [MINOR] Free rdp_cookie_name on denint()
13299 - [MINOR] Free tcp rules on denint()
13300 - [MINOR] Free stick table pool on denint()
13301 - [MINOR] Free stick rules on denint()
13302 - [MEDIUM] Fix stick-table replication on soft-restart
13303 - [MEDIUM] Correct ipmask() logic
13304 - [MINOR] Correct type in table dump examples
13305 - [MINOR] Fix build error in stream_int_register_handler()
13306 - [MINOR] Use DPRINTF in assign_server()
13307 - [BUG] checks: http-check expect could fail a check on multi-packet responses
13308 - [DOC] fix minor typo in the "dispatch" doc
13309 - [BUG] proto_tcp: fix address binding on remote source
13310 - [MINOR] http: don't report the "haproxy" word on the monitoring response
13311 - [REORG] http: move HTTP error codes back to proto_http.h
13312 - [MINOR] http: make the "HTTP 200" status code configurable.
13313 - [MINOR] http: partially revert the chunking optimization for now
13314 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
13315 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
13316 - [MEDIUM] http: add support for "http-no-delay"
13317 - [OPTIM] http: optimize chunking again in non-interactive mode
13318 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
13319 - [OPTIM] stream_sock: don't use splice on too small payloads
13320 - [MINOR] config: make it possible to specify a cookie even without a server
13321 - [BUG] stats: support url-encoded forms
13322 - [MINOR] config: automatically compute a default fullconn value
13323 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
13324 - [DOC] add missing entry or stick store-response
13325 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
13326 - [BUG] halog: correctly handle truncated last line
13327 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
13328 - [MINOR] halog: add support for HTTP log matching (-H)
13329 - [MINOR] halog: gain back performance before SKIP_CHAR fix
13330 - [OPTIM] halog: cache some common fields positions
13331 - [OPTIM] halog: check once for correct line format and reuse the pointer
13332 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
13333 - [OPTIM] halog: remove support for tab delimiters in input data
13334 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
13335 - [MINOR] session: try to emit a 500 response on memory allocation errors
13336 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
13337 - [BUG] stream_sock: disable listener when system resources are exhausted
13338 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
13339 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
13340 - [MINOR] listeners: add listen_full() to mark a listener full
13341 - [MINOR] listeners: add support for queueing resource limited listeners
13342 - [MEDIUM] listeners: put listeners in queue upon resource shortage
13343 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
13344 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
13345 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
13346 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
13347 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
13348 - [MINOR] proxy: make session rate-limit more accurate
13349 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
13350 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
13351 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
13352 - [MINOR] task: new function task_schedule() to schedule a wake up
13353 - [MAJOR] proxy: finally get rid of maintain_proxies()
13354 - [BUG] proxy: stats frontend and peers were missing many initializers
13355 - [MEDIUM] listeners: add a global listener management task
13356 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
13357 - [DOC] fix typos, "#" is a sharp, not a dash
13358 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
13359 - [MEDIUM] checks: group health checks methods by values and save option bits
13360 - [MINOR] session-counters: add the ability to clear the counters
13361 - [BUG] check: http-check expect + regex would crash in defaults section
13362 - [MEDIUM] http: make x-forwarded-for addition conditional
13363 - [REORG] build: move syscall redefinition to specific places
13364 - [CLEANUP] update the year in the copyright banner
13365 - [BUG] possible crash in 'show table' on stats socket
13366 - [BUG] checks: use the correct destination port for sending checks
13367 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
13368 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
13369 - [DOC] fixed a few "sensible" -> "sensitive" errors
13370 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
13371 - [BUG] http: trailing white spaces must also be trimmed after headers
13372 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
13373 - [MINOR] http: take a capture of too large requests and responses
13374 - [MINOR] http: take a capture of truncated responses
13375 - [MINOR] http: take a capture of bad content-lengths.
13376 - [DOC] add a few old and uncommitted docs
13377 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
13378 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
13379 - [MINOR] halog: support backslash-escaped quotes
13380 - [CLEANUP] remove dirty left-over of a debugging message
13381 - [MEDIUM] stats: disable complex socket reservation for stats socket
13382 - [CLEANUP] remove a useless test in manage_global_listener_queue()
13383 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
13384 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
13385 - [MINOR] stats: report the current and max global connection rates
13386 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
13387 - [BUG] peers: don't pre-allocate 65000 connections to each peer
13388 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
13389 - [BUG] peers: the peer frontend must not emit any log
13390 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
13391 - [BUG] peers: don't keep a peers section which has a NULL frontend
13392 - [BUG] peers: ensure the peers are resumed if they were paused
13393 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
13394 - [MEDIUM] session: make session_shutdown() an independant function
13395 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
13396 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
13397 - [MEDIUM] stats: offer the possibility to kill sessions by server
13398 - [MINOR] halog: do not consider byte 0x8A as end of line
13399 - [MINOR] frontend: ensure debug message length is always initialized
13400 - [OPTIM] halog: make fgets parse more bytes by blocks
13401 - [OPTIM] halog: add assembly version of the field lookup code
13402 - [MEDIUM] poll: add a measurement of idle vs work time
13403 - [CLEANUP] startup: report only the basename in the usage message
13404 - [MINOR] startup: add an option to change to a new directory
13405 - [OPTIM] task: don't scan the run queue if we know it's empty
13406 - [BUILD] stats: stdint is not present on solaris
13407 - [DOC] update the README file to reflect new naming rules for patches
13408 - [MINOR] stats: report the number of requests intercepted by the frontend
13409 - [DOC] update ROADMAP file
13410
Willy Tarreau04df1122011-04-08 00:56:41 +0200134112011/04/08 : 1.5-dev6
13412 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
13413 - [BUG] TCP source tracking was broken with IPv6 changes
13414 - [BUG] stick-tables did not work when converting IPv6 to IPv4
13415 - [CRITICAL] fix risk of crash when dealing with space in response cookies
13416
Willy Tarreaub06ed2c2011-03-29 01:10:33 +0200134172011/03/29 : 1.5-dev5
13418 - [BUG] standard: is_addr return value for IPv4 was inverted
13419 - [MINOR] update comment about IPv6 support for server
13420 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
13421 - [DOC] update IPv6 support for bind
13422 - [DOC] document IPv6 support for server
13423 - [DOC] fix a minor typo
13424 - [MEDIUM] IPv6 support for syslog
13425 - [DOC] document IPv6 support for syslog
13426 - [MEDIUM] IPv6 support for stick-tables
13427 - [DOC] document IPv6 support for stick-tables
13428 - [DOC] update ROADMAP file
13429 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
13430 - [MINOR] frontend: add a make_proxy_line function
13431 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
13432 - [MEDIUM] server: add support for the "send-proxy" option
13433 - [DOC] update the spec on the proxy protocol
13434 - [BUILD] proto_tcp: fix build issue with CTTPROXY
13435 - [DOC] update ROADMAP file
13436 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
13437 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
13438 - [BUILD] add the USE_GETADDRINFO build option
13439 - [TESTS] provide a test case for various address formats
13440 - [BUG] session: conn_retries was not always initialized
13441 - [BUG] log: retrieve the target from the session, not the SI
13442 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
13443 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
13444 - [BUG] http: fix content-length handling on 32-bit platforms
13445 - [OPTIM] buffers: uninline buffer_forward()
13446 - [BUG] stream_sock: fix handling for server side PROXY protocol
13447 - [MINOR] acl: add support for table_cnt and table_avl matches
13448 - [DOC] update ROADMAP file
13449
Willy Tarreaue0052cc2011-03-13 22:15:02 +0100134502011/03/13 : 1.5-dev4
13451 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
13452 - [MINOR] unix sockets : inherits the backlog size from the listener
13453 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
13454 - [DOC] fix a minor typo
13455 - [DOC] fix ignore-persist documentation
13456 - [MINOR] add warnings on features not compatible with multi-process mode
13457 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
13458 - [MINOR] stats: add support for several packets in stats admin
13459 - [BUG] stats: admin commands must check the proxy state
13460 - [BUG] stats: admin web interface must check the proxy state
13461 - [MINOR] http: add pattern extraction method to stick on query string parameter
13462 - [MEDIUM] add internal support for IPv6 server addresses
13463 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
13464 - [MINOR] log: add support for passing the forwarded hostname
13465 - [MINOR] log: ability to override the syslog tag
13466 - [MINOR] checks: add PostgreSQL health check
13467 - [DOC] update ROADMAP file
13468 - [BUILD] pattern: use 'int' instead of 'int32_t'
13469 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
13470 - [BUG] debug: report the correct poller list in verbose mode
13471 - [BUG] capture: do not capture a cookie if there is no memory left
13472 - [BUG] appsession: fix possible double free in case of out of memory
13473 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
13474 - [BUG] http: correctly update the header list when removing two consecutive headers
13475 - [BUILD] add the CPU=native and ARCH=32/64 build options
13476 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
13477 - [CLEANUP] hash: move the avalanche hash code globally available
13478 - [MEDIUM] hash: add support for an 'avalanche' hash-type
13479 - [DOC] update roadmap file
13480 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
13481 - [OPTIM] http: don't send each chunk in a separate packet
13482 - [DOC] fix minor typos reported recently in the peers section
13483 - [DOC] fix another typo in the doc
13484 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
13485 - [BUG] http chunking: don't report a parsing error on connection errors
13486 - [BUG] stream_interface: truncate buffers when sending error messages
13487 - [MINOR] http: support wrapping messages in error captures
13488 - [MINOR] http: capture incorrectly chunked message bodies
13489 - [MINOR] stats: add global event ID and count
13490 - [BUG] http: analyser optimizations broke pipelining
13491 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
13492 - [BUG] http: fix incorrect error reporting during data transfers
13493 - [CRITICAL] session: correctly leave turn-around and queue states on abort
13494 - [BUG] session: release slot before processing pending connections
13495 - [MINOR] tcp: add support for dynamic MSS setting
13496 - [BUG] stick-table: correctly terminate string keys during lookups
13497 - [BUG] acl: fix handling of empty lines in pattern files
13498 - [BUG] stick-table: use the private buffer when padding strings
13499 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
13500 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
13501 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
13502 - [REVERT] undo the stick-table string key lookup fixes
13503 - [MINOR] http: improve url_param pattern extraction to ignore empty values
13504 - [BUILD] frontend: shut a warning with TCP_MAXSEG
13505 - [BUG] http: update the header list's tail when removing the last header
13506 - [DOC] fix minor typo in the proxy protocol doc
13507 - [DOC] fix typos (http-request instead of http-check)
13508 - [BUG] http: use correct ACL pointer when evaluating authentication
13509 - [BUG] cfgparse: correctly count one socket per port in ranges
13510 - [BUG] startup: set the rlimits before binding ports, not after.
13511 - [BUG] acl: srv_id must return no match when the server is NULL
13512 - [MINOR] acl: add ability to check for internal response-only parameters
13513 - [MINOR] acl: srv_id is only valid in responses
13514 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
13515 - [BUG] acl: fd leak when reading patterns from file
13516 - [DOC] fix minor typo in "usesrc"
13517 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
13518 - [BUG] http: fix computation of message body length after forwarding has started
13519 - [BUG] http: balance url_param did not work with first parameters on POST
13520 - [TESTS] update the url_param regression test to test check_post too
13521 - [DOC] update ROADMAP
13522 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
13523 - [BUG] config: don't crash on empty pattern files.
13524 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
13525 - [REORG] stream_interface: move the st0, st1 and private members to the applet
13526 - [REORG] stream_interface: split the struct members in 3 parts
13527 - [REORG] session: move client and server address to the stream interface
13528 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
13529 - [MEDIUM] stream_interface: store the target pointer and type
13530 - [CLEANUP] stream_interface: remove the applet.handler pointer
13531 - [MEDIUM] log: take the logged server name from the stream interface
13532 - [CLEANUP] session: remove data_source from struct session
13533 - [CLEANUP] stats: make all dump functions only rely on the stream interface
13534 - [REORG] session: move the data_ctx struct to the stream interface's applet
13535 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
13536 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
13537 - [MINOR] session: add a pointer to the new target into the session
13538 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
13539 - [CLEANUP] stream_interface: use inline functions to manipulate targets
13540 - [MAJOR] session: remove the ->srv pointer from struct session
13541 - [MEDIUM] stats: split frontend and backend stats
13542 - [MEDIUM] http: always evaluate http-request rules before stats http-request
13543 - [REORG] http: move the http-request rules to proto_http
13544 - [BUG] http: stats were not incremented on http-request deny
13545 - [MINOR] checks: report it if checks fail due to socket creation error
13546
Willy Tarreau442e8342010-11-11 23:29:35 +0100135472010/11/11 : 1.5-dev3
13548 - [DOC] fix http-request documentation
13549 - [MEDIUM] enable/disable servers from the stats web interface
13550 - [MEDIUM] stats: add an admin level
13551 - [DOC] stats: document the "stats admin" statement
13552 - [MINOR] startup: print the proxy socket which caused an error
13553 - [CLEANUP] Remove unneeded chars allocation
13554 - [MINOR] config: detect options not supported due to compilation options
13555 - [MINOR] Add pattern's fetchs payload and payload_lv
13556 - [MINOR] frontend: improve accept-proxy header parsing
13557 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
13558 - [MEDIUM] Enhance message errors management on binds
13559 - [MINOR] Manage unix socket source field on logs
13560 - [MINOR] Manage unix socket source field on session dump on sock stats
13561 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
13562 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
13563 - [MINOR] Manage socket type unix for some logs
13564 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
13565 - [MINOR] Support listener's sockets unix on http logs.
13566 - [MEDIUM] Add supports of bind on unix sockets.
13567 - [BUG] stick table purge failure if size less than 255
13568 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
13569 - [MEDIUM] Implement tcp inspect response rules
13570 - [DOC] tcp-response content and inspect
13571 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
13572 - [DOC] acls rep_ssl_hello and req_ssl_hello
13573 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
13574 - [DOC] new type binary in stick-table
13575 - [DOC] stick store-response and new patterns payload and payload_lv
13576 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
13577 - [MEDIUM] Create updates tree on stick table to manage sync.
13578 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
13579 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
13580 - [MEDIUM] Manage soft stop on peers proxy
13581 - [DOC] add documentation for peers section
13582 - [MINOR] checks: add support for LDAPv3 health checks
13583 - [MINOR] add better support to "mysql-check"
13584 - [BUG] Restore info about available active/backup servers
13585 - [CONTRIB] Update haproxy.pl
13586 - [CONTRIB] Update Cacti Tempates
13587 - [CONTRIB] add templates for Cacti.
13588 - [BUG] http: don't consider commas as a header delimitor within quotes
13589 - [MINOR] support a global jobs counter
13590 - [DOC] add a summary about cookie incompatibilities between specs and browsers
13591 - [DOC] fix description of cookie "insert" and "indirect" modes
13592 - [MEDIUM] http: fix space handling in the request cookie parser
13593 - [MEDIUM] http: fix space handling in the response cookie parser
13594 - [DOC] fix typo in the queue() definition (backend, not frontend)
13595 - [BUG] deinit: unbind listeners before freeing them
13596 - [BUG] stream_interface: only call si->release when both dirs are closed
13597 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
13598 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
13599 - [MINOR] halog: add '-tc' to sort by termination codes
13600 - [MINOR] halog: skip non-traffic logs for -st and -tc
13601 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
13602 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
13603 - [DOC] bind option is "defer-accept", not "defer_accept"
13604 - [DOC] missing index entry for http-check send-state
13605 - [DOC] tcp-request inspect-delay is for backends too
13606 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
13607 - [BUG] stream_sock: try to flush any extra pending request data after a POST
13608 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
13609 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
13610 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
13611 - [MEDIUM] checks: add support for HTTP contents lookup
13612 - [TESTS] add test-check-expect to test various http-check methods
13613 - [MINOR] global: add "tune.chksize" to change the default check buffer size
13614 - [MINOR] cookie: add options "maxidle" and "maxlife"
13615 - [MEDIUM] cookie: support client cookies with some contents appended to their value
13616 - [MINOR] http: make some room in the transaction flags to extend cookies
13617 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
13618 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
13619 - [MINOR] add encode/decode function for 30-bit integers from/to base64
13620 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
13621 - [MEDIUM] cookie: set the date in the cookie if needed
13622 - [DOC] document the cookie maxidle and maxlife parameters
13623 - [BUG] checks: don't log backend down for all zero-weight servers
13624 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
13625 - [BUG] config: report correct keywords for "observe"
13626 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
13627 - [MINOR] acl: add the http_req_first match
13628 - [DOC] fix typos about bind-process syntax
13629 - [BUG] cookie: correctly unset default cookie parameters
13630 - [MINOR] cookie: add support for the "preserve" option
13631 - [BUG] ebtree: fix duplicate strings insertion
13632 - [CONTRIB] halog: report per-url counts, errors and times
13633 - [CONTRIB] halog: minor speed improvement in timer parser
13634 - [MINOR] buffers: add a new request analyser flag for PROXY mode
13635 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
13636 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
13637 - [MINOR] standard: change arg type from const char* to char*
13638 - [MINOR] frontend: add a new analyser to parse a proxied connection
13639 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
13640 - [DOC] add the proxy protocol's specifications
13641 - [DOC] document the 'accept-proxy' bind option
13642 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
13643 - [DOC] add references to unix socket handling
13644 - [MINOR] move MAXPATHLEN definition to compat.h
13645 - [MEDIUM] unix sockets: cleanup the error reporting path
13646 - [BUG] session: don't stop forwarding of data upon last packet
13647 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
13648 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
13649 - [BUG] accept: don't close twice upon error
13650 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
13651 - [OPTIM] stream_sock: don't clear FDs that are already cleared
13652 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
13653
Willy Tarreau37242fa2010-08-28 19:21:00 +0200136542010/08/28 : 1.5-dev2
13655 - [MINOR] startup: release unused structs after forking
13656 - [MINOR] startup: don't wait for nothing when no old pid remains
13657 - [CLEANUP] reference product branch 1.5
13658 - [MEDIUM] signals: add support for registering functions and tasks
13659 - [MEDIUM] signals: support redistribution of signal zero when stopping
13660 - [BUG] http: don't set auto_close if more data are expected
13661
Willy Tarreaufc815fd2010-08-25 10:56:53 +0200136622010/08/25 : 1.5-dev1
13663 - [BUG] stats: session rate limit gets garbaged in the stats
13664 - [DOC] mention 'option http-server-close' effect in Tq section
13665 - [DOC] summarize and highlight persistent connections behaviour
13666 - [DOC] add configuration samples
13667 - [BUG] http: dispatch and http_proxy modes were broken for a long time
13668 - [BUG] http: the transaction must be initialized even in TCP mode
13669 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
13670 - [BUG] consistent hash: balance on all servers, not only 2 !
13671 - [CONTRIB] halog: report per-server status codes, errors and response times
13672 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
13673 - [BUG] client: always ensure to zero rep->analysers
13674 - [BUG] session: clear BF_READ_ATTACHED before next I/O
13675 - [BUG] http: automatically close response if req is aborted
13676 - [BUG] proxy: connection rate limiting was eating lots of CPU
13677 - [BUG] http: report correct flags in case of client aborts during body
13678 - [TESTS] refine non-regression tests and add 4 new tests
13679 - [BUG] debug: wrong pointer was used to report a status line
13680 - [BUG] debug: correctly report truncated messages
13681 - [DOC] document the "dispatch" keyword
13682 - [BUG] stick_table: fix possible memory leak in case of connection error
13683 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
13684 - [MINOR] accept: count the incoming connection earlier
13685 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
13686 - [CLEANUP] client: move some ACLs away to their respective locations
13687 - [CLEANUP] rename client -> frontend
13688 - [MEDIUM] separate protocol-level accept() from the frontend's
13689 - [MINOR] proxy: add a list to hold future layer 4 rules
13690 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
13691 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
13692 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
13693 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
13694 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
13695 - [CLEANUP] buffer->cto is not used anymore
13696 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
13697 - [MEDIUM] session: initialize server-side timeouts after connect()
13698 - [MEDIUM] backend: initialize the server stream_interface upon connect()
13699 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
13700 - [MEDIUM] session: move the conn_retries attribute to the stream interface
13701 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
13702 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
13703 - [MAJOR] frontend: reorder the session initialization upon accept
13704 - [MINOR] proxy: add an accept() callback for the application layer
13705 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
13706 - [MEDIUM] stats: rely on the standard session_accept() function
13707 - [MINOR] buffer: refine the flags that may wake an analyser up.
13708 - [MINOR] stream_sock: don't dereference a non-existing frontend
13709 - [MINOR] session: differenciate between accepted connections and received connections
13710 - [MEDIUM] frontend: count the incoming connection earlier
13711 - [MINOR] frontend: count denied TCP requests separately
13712 - [CLEANUP] stick_table: add/clarify some comments
13713 - [BUILD] memory: add a few missing parenthesis to the pool management macros
13714 - [MINOR] stick_table: add support for variable-sized data
13715 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
13716 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
13717 - [MEDIUM] stick_table: add room for extra data types
13718 - [MINOR] stick_table: add support for "conn_cum" data type.
13719 - [MEDIUM] stick_table: don't overwrite data when storing an entry
13720 - [MINOR] config: initialize stick tables after all the parsing
13721 - [MINOR] stick_table: provide functions to return stksess data from a type
13722 - [MEDIUM] stick_table: move the server ID to a generic data type
13723 - [MINOR] stick_table: enable it for frontends too
13724 - [MINOR] stick_table: export the stick_table_key
13725 - [MINOR] tcp: add per-source connection rate limiting
13726 - [MEDIUM] stick_table: separate storage and update of session entries
13727 - [MEDIUM] stick-tables: add a reference counter to each entry
13728 - [MINOR] session: add a pointer to the tracked counters for the source
13729 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
13730 - [BUG] config: report the correct proxy type in tcp-request errors
13731 - [MINOR] config: provide a function to quote args in a more friendly way
13732 - [BUG] stick_table: the fix for the memory leak caused a regression
13733 - [MEDIUM] backend: support servers on 0.0.0.0
13734 - [BUG] stick-table: correctly refresh expiration timers
13735 - [MEDIUM] stream-interface: add a ->release callback
13736 - [MINOR] proxy: add a "parent" member to the structure
13737 - [MEDIUM] session: make it possible to call an I/O handler on both SI
13738 - [MINOR] tools: add a fast div64_32 function
13739 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
13740 - [MINOR] errors: provide new status codes for config parsing functions
13741 - [BUG] http: denied requests must not be counted as denied resps in listeners
13742 - [MINOR] tools: add a get_std_op() function to parse operators
13743 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
13744 - [MAJOR] stream_sock: better wakeup conditions on read()
13745 - [BUG] session: analysers must be checked when SI state changes
13746 - [MINOR] http: reset analysers to listener's, not frontend's
13747 - [MEDIUM] session: support "tcp-request content" rules in backends
13748 - [BUILD] always match official tags when doing git-tar
13749 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
13750 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
13751 - [MINOR] tcp: src_count acl does not have a permanent result
13752 - [MAJOR] session: add track-counters to track counters related to the session
13753 - [MINOR] stick-table: provide a table lookup function
13754 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
13755 - [MEDIUM] session: move counter ACL fetches from proto_tcp
13756 - [MEDIUM] session: add concurrent connections counter
13757 - [MEDIUM] session: add data in and out volume counters
13758 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
13759 - [MEDIUM] session-counters: automatically update tracked connection count
13760 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
13761 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
13762 - [MEDIUM] session: add a counter on the cumulated number of sessions
13763 - [MINOR] config: support a comma-separated list of store data types in stick-table
13764 - [MEDIUM] stick-tables: add support for arguments to data_types
13765 - [MEDIUM] stick-tables: add stored data argument type checking
13766 - [MEDIUM] session counters: add conn_rate and sess_rate counters
13767 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
13768 - [MINOR] stktable: add a stktable_update_key() function
13769 - [MINOR] session-counters: add a general purpose counter (gpc0)
13770 - [MEDIUM] session-counters: add HTTP req/err tracking
13771 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
13772 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
13773 - [CLEANUP] stick-table: declare stktable_data_types as extern
13774 - [MEDIUM] stick-table: make use of generic types for stored data
13775 - [MINOR] stats: correctly report errors on "show table" and "clear table"
13776 - [MEDIUM] stats: add the ability to dump table entries matching criteria
13777 - [DOC] configuration: document all the new tracked counters
13778 - [DOC] stats: document "show table" and "clear table"
13779 - [MAJOR] session-counters: split FE and BE track counters
13780 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
13781 - [MEDIUM] session counters: automatically remove expired entries.
13782 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
13783 - [MEDIUM] session-counters: make it possible to count connections from frontend
13784 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
13785 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
13786 - [CLEANUP] stats: use stksess_kill() to remove table entries
13787 - [DOC] update the references to session counters and to tcp-request connection
13788 - [DOC] cleanup: split a few long lines
13789 - [MEDIUM] http: forward client's close when abortonclose is set
13790 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
13791 - [BUG] stats: global stats timeout may be specified before stats socket.
13792 - [BUG] conf: add tcp-request content rules to the correct list
13793
Willy Tarreau21475e32010-05-23 08:46:08 +0200137942010/05/23 : 1.5-dev0
13795 - exact copy of 1.4.6
13796
Willy Tarreau5fdd77d2010-05-16 22:34:28 +0200137972010/05/16 : 1.4.6
13798 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
13799 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
13800 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
13801 - [DOC] add a few precisions about the use of RDP cookies
13802
Willy Tarreau9d4d9e32010-05-13 22:17:08 +0200138032010/05/13 : 1.4.5
13804 - [DOC] report minimum kernel version for tproxy in the Makefile
13805 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
13806 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
13807 - [DOC] fix ignore-persist/force-persist documentation
13808 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
13809 - [DOC] doc/configuration.txt: fix typos
13810 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
13811 - [MINOR] fix possible crash in debug mode with invalid responses
13812 - [MINOR] halog: add support for statisticts on status codes
13813 - [OPTIM] halog: use a faster zero test in fgets()
13814 - [OPTIM] halog: minor speedup by using unlikely()
13815 - [OPTIM] halog: speed up fgets2-64 by about 10%
13816 - [DOC] refresh the README file and merge the CONTRIB file into it
13817 - [MINOR] acl: support loading values from files
13818 - [MEDIUM] ebtree: upgrade to version 6.0
13819 - [MINOR] acl trees: add flags and union members to store values in trees
13820 - [MEDIUM] acl: add ability to insert patterns in trees
13821 - [MEDIUM] acl: add tree-based lookups of exact strings
13822 - [MEDIUM] acl: add tree-based lookups of networks
13823 - [MINOR] acl: ignore empty lines and comments in pattern files
13824 - [MINOR] stick-tables: add support for "stick on hdr"
13825
Willy Tarreau9508c1c2010-04-07 23:12:24 +0200138262010/04/07 : 1.4.4
13827 - [BUG] appsession should match the whole cookie name
13828 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
13829 - [MEDIUM] backend: move the transparent proxy address selection to backend
13830 - [MINOR] add very fast IP parsing functions
13831 - [MINOR] add new tproxy flags for dynamic source address binding
13832 - [MEDIUM] add ability to connect to a server from an IP found in a header
13833 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
13834 - [MINOR] http: make it possible to pretend keep-alive when doing close
13835 - [MINOR] config: report "default-server" instead of "(null)" in error messages
13836
Willy Tarreau75934a12010-03-30 09:50:08 +0200138372010/03/30 : 1.4.3
13838 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
13839 - [MEDIUM] session: better fix for connection to servers with closed input
13840 - [DOC] indicate in the doc how to bind to port ranges
13841 - [BUG] backend: L7 hashing must not be performed on incomplete requests
13842 - [TESTS] add a simple program to test connection resets
13843 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
13844 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
13845 - [MINOR] config: allow "slowstart 0s"
13846 - [BUILD] 'make tags' did not consider files ending in '.c'
13847 - [MINOR] checks: add the ability to disable a server in the config
13848
Willy Tarreauda618cb2010-03-17 23:41:57 +0100138492010/03/17 : 1.4.2
13850 - [CLEANUP] product branch update
13851 - [DOC] Some more documentation cleanups
13852 - [BUG] clf logs segfault when capturing a non existant header
13853 - [OPTIM] config: only allocate check buffer when checks are enabled
13854 - [MEDIUM] checks: support multi-packet health check responses
13855 - [CLEANUP] session: remove duplicate test
13856 - [BUG] http: don't wait for response data to leave buffer is client has left
13857 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
13858 - [MINOR] stats: don't send empty lines in "show errors"
13859 - [MINOR] stats: make the data dump function reusable for other purposes
13860 - [MINOR] stats socket: add show sess <id> to dump details about a session
13861 - [BUG] stats: connection reset counters must be plain ascii, not HTML
13862 - [BUG] url_param hash may return a down server
13863 - [MINOR] force null-termination of hostname
13864 - [MEDIUM] connect to servers even when the input has already been closed
13865 - [BUG] don't merge anonymous ACLs !
13866 - [BUG] config: fix endless loop when parsing "on-error"
13867 - [MINOR] http: don't mark a server as failed when it returns 501/505
13868 - [OPTIM] checks: try to detect the end of response without polling again
13869 - [BUG] checks: don't report an error when recv() returns an error after data
13870 - [BUG] checks: don't abort when second poll returns an error
13871 - [MINOR] checks: make shutdown() silently fail
13872 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
13873 - [BUG] init: unconditionally catch SIGPIPE
13874 - [BUG] checks: don't wait for a close to start parsing the response
13875
Willy Tarreauc5e60c32010-03-04 23:39:19 +0100138762010/03/04 : 1.4.1
13877 - [BUG] Clear-cookie path issue
13878 - [DOC] fix typo on stickiness rules
13879 - [BUILD] fix BSD and OSX makefiles for missing files
13880 - [BUILD] includes order breaks OpenBSD build
13881 - [BUILD] fix some build warnings on Solaris with is* macros
13882 - [BUG] logs: don't report "last data" when we have just closed after an error
13883 - [BUG] logs: don't report "proxy request" when server closes early
13884 - [BUILD] fix platform-dependant build issues related to crypt()
13885 - [STATS] count transfer aborts caused by client and by server
13886 - [STATS] frontend requests were not accounted for failed requests
13887 - [MINOR] report total number of processed connections when stopping a proxy
13888 - [DOC] be more clear about the limitation to one single monitor-net entry
13889
Willy Tarreaue18fdfd2010-02-26 14:55:22 +0100138902010/02/26 : 1.4.0
13891 - [MINOR] stats: report maint state for tracking servers too
13892 - [DOC] fix summary to add pattern extraction
13893 - [DOC] Documentation cleanups
13894 - [BUG] cfgparse memory leak and missing free calls in deinit()
13895 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
13896 - [EXAMPLES] add auth.cfg
13897 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
13898 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
13899 - [BUILD] auth: don't use unnamed unions
13900 - [BUG] config: report unresolvable host names as errors
13901 - [BUILD] fix build breakage with DEBUG_FULL
13902 - [DOC] fix a typo about timeout check and clarify the explanation.
13903 - [MEDIUM] http: don't use trash to realign large buffers
13904 - [STATS] report HTTP requests (total and rate) in frontends
13905 - [STATS] separate frontend and backend HTTP stats
13906 - [MEDIUM] http: revert to use a swap buffer for realignment
13907 - [MINOR] stats: report the request rate in frontends as cell titles
13908 - [MINOR] stats: mark areas with an underline when tooltips are available
13909 - [DOC] reorder some entries to maintain the alphabetical order
13910 - [DOC] cleanup of the keyword matrix
13911
Willy Tarreaub05613d2010-02-02 10:18:28 +0100139122010/02/02 : 1.4-rc1
13913 - [MEDIUM] add a maintenance mode to servers
13914 - [MINOR] http-auth: last fix was wrong
13915 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
13916 - [MINOR] Base64 decode
13917 - [MINOR] generic auth support with groups and encrypted passwords
13918 - [MINOR] add ACL_TEST_F_NULL_MATCH
13919 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
13920 - [MINOR] acl: add http_auth and http_auth_group
13921 - [MAJOR] use the new auth framework for http stats
13922 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
13923 - [STATS] make it possible to change a CLI connection timeout
13924 - [BUG] patterns: copy-paste typo in type conversion arguments
13925 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
13926 - [MINOR] standard: str2mask: string to netmask converter
13927 - [MINOR] pattern: add support for argument parsers for converters
13928 - [MINOR] pattern: add the "ipmask()" converting function
13929 - [MINOR] config: off-by-one in "stick-table" after list of converters
13930 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
13931 - [BUG] restore accidentely removed line in last patch !
13932 - [MINOR] checks: make the HTTP check code add the CRLF itself
13933 - [MINOR] checks: add the server's status in the checks
13934 - [BUILD] halog: make without arch-specific optimizations
13935 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
13936 - [MINOR] http: disable keep-alive when process is going down
13937 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
13938 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
13939 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
13940 - [MINOR] prepare req_*/rsp_* to receive a condition
13941 - [CLEANUP] config: specify correct const char types to warnif_* functions
13942 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
13943 - [MEDIUM] http: make the request filter loop check for optional conditions
13944 - [MEDIUM] http: add support for conditional request filter execution
13945 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
13946 - [MEDIUM] http: add support for conditional request header addition
13947 - [MEDIUM] http: add support for conditional response header rewriting
13948 - [DOC] add some missing ACLs about response header matching
13949 - [MEDIUM] http: add support for proxy authentication
13950 - [MINOR] http-auth: make the 'unless' keyword work as expected
13951 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
13952 - [MEDIUM] add support for anonymous ACLs
13953 - [MEDIUM] http: switch to tunnel mode after status 101 responses
13954 - [MEDIUM] http: stricter processing of the CONNECT method
13955 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
13956 - [MINOR] config: fix too large ssl-hello-check message.
13957 - [BUG] fix error response in case of server error
13958
Willy Tarreau2eba6aa2010-01-25 23:28:05 +0100139592010/01/25 : 1.4-dev8
13960 - [CLEANUP] Keep in sync "defaults" support between documentation and code
13961 - [MEDIUM] http: add support for Proxy-Connection header
13962 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
13963 - [MINOR] http: remove a copy-paste typo in transaction cleaning
13964 - [BUG] http: trim any excess buffer data when recycling a connection
13965
Willy Tarreau6939b552010-01-25 01:54:37 +0100139662010/01/25 : 1.4-dev7
13967 - [BUG] appsession: possible memory leak in case of out of memory condition
13968 - [MINOR] config: don't accept 'appsession' in defaults section
13969 - [MINOR] Add function to parse a size in configuration
13970 - [MEDIUM] Add stick table (persistence) management functions and types
13971 - [MEDIUM] Add pattern fetch management types and functions
13972 - [MEDIUM] Add src dst and dport pattern fetches.
13973 - [MEDIUM] Add stick table configuration and init.
13974 - [MEDIUM] Add stick and store rules analysers.
13975 - [MINOR] add option "mysql-check" to use MySQL health checks
13976 - [BUG] health checks: fix requeued message
13977 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
13978 - [BUG] checks: fix newline termination
13979 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
13980 - [BUG] appsession's sessid must be reset at end of transaction
13981 - [BUILD] appsession did not build anymore under gcc-2.95
13982 - [BUG] server redirection used an uninitialized string.
13983 - [MEDIUM] http: fix handling of message pointers
13984 - [MINOR] http: fix double slash prefix with server redirect
13985 - [MINOR] http redirect: add the ability to append a '/' to the URL
13986 - [BUG] stream_interface: fix retnclose and remove cond_close
13987 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
13988 - [MINOR] http: move appsession 'sessid' from session to http_txn
13989 - [OPTIM] reorder http_txn to optimize cache lines placement
13990 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
13991 - [MINOR] http: add a separate "http-keep-alive" timeout
13992 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
13993 - [DOC] fix various too large lines
13994 - [DOC] remove several trailing spaces
13995 - [DOC] add the doc about stickiness
13996 - [BUILD] remove a warning in standard.h on AIX
13997 - [BUG] checks: chars are unsigned on AIX, check was always true
13998 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
13999 - [BUG] check: we must not check for error before reading a response
14000 - [BUG] buffers: remove remains of wrong obsolete length check
14001 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
14002 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
14003 - [MEDIUM] http: don't switch to tunnel mode upon close
14004 - [DOC] add documentation about connection header processing
14005 - [MINOR] http: add http_remove_header2() to remove a header value.
14006 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
14007 - [MAJOR] http: rework request Connection header handling
14008 - [MAJOR] http: rework response Connection header handling
14009 - [MINOR] add the ability to force kernel socket buffer size.
14010 - [BUG] http_server_error() must not purge a previous pending response
14011 - [OPTIM] http: don't delay response if next request is incomplete
14012 - [MINOR] add the "force-persist" statement to force persistence on down servers
14013 - [MINOR] http: logs must report persistent connections to down servers
14014 - [BUG] buffer_replace2 must never change the ->w entry
14015
Willy Tarreau11f8f542010-01-08 07:49:44 +0100140162010/01/08 : 1.4-dev6
14017 - [BUILD] warning in stream_interface.h
14018 - [BUILD] warning ultoa_r returns char *
14019 - [MINOR] hana: only report stats if it is enabled
14020 - [MINOR] stats: add "a link" & "a href" for sockets
14021 - [MINOR]: stats: add show-legends to report additional informations
14022 - [MEDIUM] default-server support
14023 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
14024 - [MINOR] stats: add href to tracked server
14025 - [BUG] stats: show UP/DOWN status also in tracking servers
14026 - [DOC] Restore ability to search a keyword at the beginning of a line
14027 - [BUG] stats: cookie should be reported under backend not under proxy
14028 - [BUG] cfgparser/stats: fix error message
14029 - [BUG] http: disable auto-closing during chunk analysis
14030 - [BUG] http: fix hopefully last closing issue on data forwarding
14031 - [DEBUG] add an http_silent_debug function to debug HTTP states
14032 - [MAJOR] http: fix again the forward analysers
14033 - [BUG] http_process_res_common() must not skip the forward analyser
14034 - [BUG] http: some possible missed close remain in the forward chain
14035 - [BUG] http: redirect needed to be updated after recent changes
14036 - [BUG] http: don't set no-linger on response in case of forced close
14037 - [MEDIUM] http: restore the original behaviour of option httpclose
14038 - [TESTS] add a file to test various connection modes
14039 - [BUG] http: check options before the connection header
14040 - [MAJOR] session: fix the order by which the analysers are run
14041 - [MEDIUM] session: also consider request analysers added during response
14042 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
14043 - [BUG] http: memory leak with captures when using keep-alive
14044 - [BUG] http: fix for capture memory leak was incorrect
14045 - [MINOR] http redirect: use proper call to return last response
14046 - [MEDIUM] http: wait for some flush of the response buffer before a new request
14047 - [MEDIUM] session: limit the number of analyser loops
14048
Willy Tarreau1f445892010-01-03 23:23:36 +0100140492010/01/03 : 1.4-dev5
14050 - [MINOR] server tracking: don't care about the tracked server's mode
14051 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
14052 - [MEDIUM] appsession: add the "request-learn" option
14053 - [BUG] Configuration parser bug when escaping characters
14054 - [MINOR] CSS & HTML fun
14055 - [MINOR] Collect & provide http response codes received from servers
14056 - [BUG] Fix silly typo: hspr_other -> hrsp_other
14057 - [MINOR] Add "a name" to stats page
14058 - [MINOR] add additional "a href"s to stats page
14059 - [MINOR] Collect & provide http response codes for frontends, fix backends
14060 - [DOC] some small spell fixes and unifications
14061 - [MEDIUM] Decrease server health based on http responses / events, version 3
14062 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
14063 - [BUG] config: fix erroneous check on cookie domain names, again
14064 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
14065 - [DOC] trivial fix for man page
14066 - [MINOR] config: report all supported options for the "bind" keyword
14067 - [MINOR] tcp: add support for the defer_accept bind option
14068 - [MINOR] unix socket: report the socket path in case of bind error
14069 - [CONTRIB] halog: support searching by response time
14070 - [DOC] add a reminder about obsolete documents
14071 - [DOC] point to 1.4 doc, not 1.3
14072 - [DOC] option tcp-smart-connect was missing from index
14073 - [MINOR] http: detect connection: close earlier
14074 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
14075 - [OPTIM] move some rarely used fields out of fdtab
14076 - [MEDIUM] fd: merge fd_list into fdtab
14077 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
14078 - [MINOR] http: add new transaction flags for keep-alive and content-length
14079 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
14080 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
14081 - [MINOR] http request: simplify the test of no-data
14082 - [MEDIUM] http request: simplify POST length detection
14083 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
14084 - [MAJOR] http: create the analyser which waits for a response
14085 - [MINOR] http: pre-set the persistent flags in the transaction
14086 - [MEDIUM] http response: check body length and set transaction flags
14087 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
14088 - [MINOR] http: remove the last call to stream_int_return
14089 - [IMPORT] import ebtree v5.0 into directory ebtree/
14090 - [MEDIUM] build: switch ebtree users to use new ebtree version
14091 - [CLEANUP] ebtree: remove old unused files
14092 - [BUG] definitely fix regparm issues between haproxy core and ebtree
14093 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
14094 - [BUILD] missing #ifndef in ebmbtree.h
14095 - [BUILD] missing #ifndef in ebsttree.h
14096 - [MINOR] tools: add hex2i() function to convert hex char to int
14097 - [MINOR] http: create new MSG_BODY sub-states
14098 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
14099 - [DOC] option is "defer-accept", not "defer_accept"
14100 - [MINOR] http: keep pointer to beginning of data
14101 - [BUG] x-original-to: name was not set in default instance
14102 - [MINOR] http: detect tunnel mode and set it in the session
14103 - [BUG] config: fix error message when config file is not found
14104 - [BUG] config: fix wrong handling of too large argument count
14105 - [BUG] config: disable 'option httplog' on TCP proxies
14106 - [BUG] config: fix erroneous check on cookie domain names
14107 - [BUG] config: cookie domain was ignored in defaults sections
14108 - [MINOR] config: support passing multiple "domain" statements to cookies
14109 - [MINOR] ebtree: add functions to lookup non-null terminated strings
14110 - [MINOR] config: don't report error on all subsequent files on failure
14111 - [BUG] second fix for the printf format warning
14112 - [BUG] check_post: limit analysis to the buffer length
14113 - [MEDIUM] http: process request body in a specific analyser
14114 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
14115 - [MAJOR] http: completely process the "connection" header
14116 - [MINOR] http: only consider chunk encoding with HTTP/1.1
14117 - [MAJOR] buffers: automatically compute the maximum buffer length
14118 - [MINOR] http: move the http transaction init/cleanup code to proto_http
14119 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
14120 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
14121 - [MEDIUM] http: rework chunk-size parser
14122 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
14123 - [MINOR] buffers: add buffer_ignore() to skip some bytes
14124 - [BUG] http: offsets are relative to the buffer, not to ->som
14125 - [MEDIUM] http: automatically re-aling request buffer
14126 - [BUG] http: body parsing must consider the start of message
14127 - [MINOR] new function stream_int_cond_close()
14128 - [MAJOR] http: implement body parser
14129 - [BUG] http: typos on several unlikely() around header insertion
14130 - [BUG] stream_sock: wrong max computation on recv
14131 - [MEDIUM] http: rework the buffer alignment logic
14132 - [BUG] buffers: wrong size calculation for displaced data
14133 - [MINOR] stream_sock: prepare for closing when all pending data are sent
14134 - [MEDIUM] http: add two more states for the closing period
14135 - [MEDIUM] http: properly handle "option forceclose"
14136 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
14137 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
14138 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
14139 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
14140 - [MINOR] config: option forceclose is valid in frontends too
14141 - [BUILD] halog: insufficient include path in makefile
14142 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
14143 - [MEDIUM] http: make the parsers able to wait for a buffer flush
14144 - [MAJOR] http: add support for option http-server-close
14145 - [BUG] http: ensure we abort data transfer on write error
14146 - [BUG] last fix was overzealous and disabled server-close
14147 - [BUG] http: fix erroneous trailers size computation
14148 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
14149 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
14150 - [BUG] http: redirects were broken by chunk changes
14151 - [BUG] http: the request URI pointer is relative to the buffer
14152 - [OPTIM] http: don't immediately enable reading on request
14153 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
14154 - [BUG] http: take care of errors, timeouts and aborts during the data phase
14155 - [MINOR] http: don't wait for sending requests to the server
14156 - [MINOR] http: make the conditional redirect support keep-alive
14157 - [BUG] http: fix cookie parser to support spaces and commas in values
14158 - [MINOR] config: some options were missing for "redirect"
14159 - [MINOR] redirect: add support for unconditional rules
14160 - [MINOR] config: centralize proxy struct initialization
14161 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
14162 - [MEDIUM] config: remove the limitation of 10 config files
14163 - [CLEANUP] http: remove a remaining impossible condition
14164 - [OPTIM] http: optimize a bit the construct of the forward loops
14165
Willy Tarreauc82a9e52009-10-12 06:40:53 +0200141662009/10/12 : 1.4-dev4
14167 - [DOC] add missing rate_lim and rate_max
14168 - [MAJOR] struct chunk rework
14169 - [MEDIUM] Health check reporting code rework + health logging, v3
14170 - [BUG] check if rise/fall has an argument and it is > 0
14171 - [MINOR] health checks logging unification
14172 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
14173 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
14174 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
14175 - [MINOR] Introduce include/types/counters.h
14176 - [CLEANUP] Move counters to dedicated structures
14177 - [MINOR] Add "clear counters" to clear statistics counters
14178 - [MEDIUM] Collect & provide separate statistics for sockets, v2
14179 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
14180 - [MINOR] acl: don't report valid acls as potential mistakes
14181 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
14182 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
14183 - [MINOR] Capture & display more data from health checks, v2
14184 - [BUG] task.c: don't assing last_timer to node-less entries
14185 - [BUG] http stats: large outputs sometimes got some parts chopped off
14186 - [MINOR] backend: export some functions to recount servers
14187 - [MINOR] backend: uninline some LB functions
14188 - [MINOR] include time.h from freq_ctr.h as is uses "now".
14189 - [CLEANUP] backend: move LB algos to individual files
14190 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
14191 - [CLEANUP] proxy: move last lb-specific bits to their respective files
14192 - [MINOR] backend: separate declarations of LB algos from their lookup method
14193 - [MINOR] backend: reorganize the LB algorithm selection
14194 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
14195 - [MINOR] report list of supported pollers with -vv
14196 - [DOC] log-health-checks is an option, not a directive
14197 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
14198 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
14199 - [MINOR] stats: strip CR and LF from the input command line
14200 - [BUG] don't refresh timeouts late after detected activity
14201 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
14202 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
14203 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
14204 - [MEDIUM] stats: don't use s->ana_state anymore
14205 - [MINOR] remove now obsolete ana_state from the session struct
14206 - [MEDIUM] stats: make HTTP stats use an I/O handler
14207 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
14208 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
14209 - [MINOR] config: reference file and line with any listener/proxy/server declaration
14210 - [MINOR] config: report places of duplicate names or IDs
14211 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
14212 - [MINOR] tools: add a new get_next_id() function
14213 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
14214 - [OPTIM] counters: move some max numbers to the counters struct
14215 - [BUG] counters: fix segfault on missing counters for a listener
14216 - [MEDIUM] backend: implement consistent hashing variation
14217 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
14218 - [MINOR] stats: use 'clear counters all' to clear all values
14219 - [MEDIUM] add access restrictions to the stats socket
14220 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
14221 - [MINOR] proxy: provide function to retrieve backend/server pointers
14222 - [MINOR] add the "initial weight" to the server struct.
14223 - [MEDIUM] stats: add the "get weight" command to report a server's weight
14224 - [MEDIUM] stats: add the "set weight" command
14225 - [BUILD] add a 'make tags' target
14226 - [MINOR] stats: add support for numeric IDs in set weight/get weight
14227 - [MINOR] stats: use a dedicated state to output static data
14228 - [OPTIM] stats: check free space before trying to print
14229
Willy Tarreau9f389e02009-09-24 00:12:50 +0200142302009/09/24 : 1.4-dev3
14231 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
14232 - [MEDIUM] Collect & show information about last health check, v3
14233 - [MINOR] export the hostname variable so that all the code can access it
14234 - [MINOR] stats: add a new node-name setting
14235 - [MEDIUM] remove old experimental tcpsplice option
14236 - [BUILD] fix build for systems without SOL_TCP
14237 - [MEDIUM] move connection establishment from backend to the SI.
14238 - [MEDIUM] make the global stats socket part of a frontend
14239 - [MEDIUM] session: account per-listener connections
14240 - [MINOR] session: switch to established state if no connect function
14241 - [MEDIUM] make the unix stats sockets use the generic session handler
14242 - [CLEANUP] unix: remove uxst_process_session()
14243 - [CLEANUP] move remaining stats sockets code to dumpstats
14244 - [MINOR] move the initial task's nice value to the listener
14245 - [MINOR] cleanup set_session_backend by using pre-computed analysers
14246 - [MINOR] set s->srv_error according to the analysers
14247 - [MEDIUM] set rep->analysers from fe and be analysers
14248 - [MEDIUM] replace BUFSIZE with buf->size in computations
14249 - [MEDIUM] make it possible to change the buffer size in the configuration
14250 - [MEDIUM] report error on buffer writes larger than buffer size
14251 - [MEDIUM] stream_interface: add and use ->update function to resync
14252 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
14253 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
14254 - [BUG] tarpit did not work anymore
14255 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
14256 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
14257 - [MINOR] buffers: provide more functions to handle buffer data
14258 - [MEDIUM] buffers: provide new buffer_feed*() function
14259 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
14260 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
14261 - [BUG] buffer_forward() would not correctly consider data already scheduled
14262 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
14263 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
14264 - [MAJOR] http: add support for HTTP 1xx informational responses
14265 - [MINOR] buffers: inline buffer_si_putchar()
14266 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
14267 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
14268 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
14269 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
14270 - [MEDIUM] add support for infinite forwarding
14271 - [BUILD] stream_interface: fix conflicting declaration
14272 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
14273 - [BUG] variable buffer size ignored at initialization time
14274 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
14275 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
14276 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
14277 - [MINOR] stream_interface: add iohandler callback
14278 - [MINOR] stream_interface: add functions to support running as internal/external tasks
14279 - [MEDIUM] session: call iohandler for embedded tasks (applets)
14280 - [MINOR] add a ->private member to the stream_interface
14281 - [MEDIUM] stats: prepare the connection for closing before dumping
14282 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
14283
Willy Tarreau68dcd252009-08-09 22:57:09 +0200142842009/08/09 : 1.4-dev2
14285 - [BUG] task: fix possible crash when some timeouts are not configured
14286 - [BUG] log: option tcplog would log to global if no logger was defined
14287
Willy Tarreaub03d2982009-07-29 22:38:32 +0200142882009/07/29 : 1.4-dev1
14289 - [MINOR] acl: add support for matching of RDP cookies
14290 - [MEDIUM] add support for RDP cookie load-balancing
14291 - [MEDIUM] add support for RDP cookie persistence
14292 - [MINOR] add a new CLF log format
14293 - [MINOR] startup: don't imply -q with -D
14294 - [BUG] ensure that we correctly re-start old process in case of error
14295 - [MEDIUM] add support for binding to source port ranges during connect
14296 - [MINOR] config: track "no option"/"option" changes
14297 - [MINOR] config: support resetting options do default values
14298 - [MEDIUM] implement option tcp-smart-accept at the frontend
14299 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
14300 - [MEDIUM] implement tcp-smart-connect option at the backend
14301 - [MEDIUM] add support for TCP MSS adjustment for listeners
14302 - [MEDIUM] support setting a server weight to zero
14303 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
14304 - [MAJOR] session: don't clear buffer status flags anymore
14305 - [MAJOR] session: only check for timeouts when they have just occurred.
14306 - [MAJOR] session: simplify buffer error handling
14307 - [MEDIUM] config: split parser and checker in two functions
14308 - [MEDIUM] config: support loading multiple configuration files
14309 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
14310 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
14311 - [MEDIUM] splice: set the capability on each stream_interface
14312 - [BUG] http: redirect rules were processed too early
14313 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
14314 - [MEDIUM] http: split request waiter from request processor
14315 - [MEDIUM] session: tell analysers what bit they were called for
14316 - [MAJOR] http: complete splitting of the remaining stages
14317 - [MINOR] report in the proxies the requirements for ACLs
14318 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
14319 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
14320 - [MINOR] prepare callers of session_set_backend to handle errors
14321 - [BUG] default ACLs did not properly set the ->requires flag
14322 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
14323 - [MINOR] ensure we can jump from swiching rules to http without data
14324 - [MINOR] http: take http request timeout from the backend
14325 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
14326 - [BUILD] report commit date and not author's date as build date
14327 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
14328 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
14329 - [BUG] stream_sock: don't stop reading when the poller reports an error
14330 - [BUG] config: tcp-request content only accepts "if" or "unless"
14331 - [BUG] task: fix possible timer drift after update
14332 - [MINOR] apply tcp-smart-connect option for the checks too
14333 - [MINOR] stats: better displaying in MSIE
14334 - [MINOR] config: improve error reporting in global section
14335 - [MINOR] config: improve error reporting in listen sections
14336 - [MINOR] config: the "capture" keyword is not allowed in backends
14337 - [MINOR] config: improve error reporting when checking configuration
14338 - [BUILD] fix a minor build warning on AIX
14339 - [BUILD] use "git cmd" instead of "git-cmd"
14340 - [CLEANUP] report 2009 not 2008 in the copyright banner.
14341 - [MINOR] print usage on the stats sockets upon invalid commands
14342 - [MINOR] acl: detect and report potential mistakes in ACLs
14343 - [BUILD] fix incorrect printf arg count with tcp_splice
14344 - [BUG] fix random pauses on last segment of a series
14345 - [BUILD] add support for build under Cygwin
14346
Willy Tarreau79158882009-06-09 11:59:08 +0200143472009/06/09 : 1.4-dev0
14348 - exact copy of 1.3.18
14349
Willy Tarreaubeb05ae2009-05-10 20:27:47 +0200143502009/05/10 : 1.3.18
14351 - [MEDIUM] add support for "balance hdr(name)"
14352 - [CLEANUP] give a little bit more information in error message
14353 - [MINOR] add X-Original-To: header
14354 - [BUG] x-original-to: fix missing initialization to default value
14355 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
14356 - [MINOR] improve reporting of misplaced acl/reqxxx rules
14357 - [MEDIUM] http: add options to ignore invalid header names
14358 - [MEDIUM] http: capture invalid requests/responses even if accepted
14359 - [BUILD] add format(printf) to printf-like functions
14360 - [MINOR] fix several printf formats and missing arguments
14361 - [BUG] stats: total and lbtot are unsigned
14362 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
14363 - [CLEANUP] remove unused make option from haproxy.spec
14364 - [BUILD] make it possible to pass alternative arch at build time
14365 - [MINOR] switch all stat counters to 64-bit
14366 - [MEDIUM] ensure we don't recursively call pool_gc2()
14367 - [CRITICAL] uninitialized response field can sometimes cause crashes
14368 - [BUG] fix wrong pointer arithmetics in HTTP message captures
14369 - [MINOR] rhel init script : support the reload operation
14370 - [MINOR] add basic signal handling functions
14371 - [BUILD] add signal.o to all makefiles
14372 - [MEDIUM] call signal_process_queue from run_poll_loop
14373 - [MEDIUM] pollers: don't wait if a signal is pending
14374 - [MEDIUM] convert all signals to asynchronous signals
14375 - [BUG] O(1) pollers should check their FD before closing it
14376 - [MINOR] don't close stdio fds twice
14377 - [MINOR] add options dontlog-normal and log-separate-errors
14378 - [DOC] minor fixes and rearrangements
14379 - [BUG] fix parser crash on unconditional tcp content rules
14380 - [DOC] rearrange the configuration manual and add a summary
14381 - [MINOR] standard: provide a new 'my_strndup' function
14382 - [MINOR] implement per-logger log level limitation
14383 - [MINOR] compute the max of sessions/s on fe/be/srv
14384 - [MINOR] stats: report max sessions/s and limit in CSV export
14385 - [MINOR] stats: report max sessions/s and limit in HTML stats
14386 - [MINOR] stats/html: use the arial font before helvetica
14387
Willy Tarreauf459b422009-03-29 15:26:57 +0200143882009/03/29 : 1.3.17
14389 - Update specfile to build for v2.6 kernel.
14390 - [BUG] reset the stream_interface connect timeout upon connect or error
14391 - [BUG] reject unix accepts when connection limit is reached
14392 - [MINOR] show sess: report number of calls to each task
14393 - [BUG] don't call epoll_ctl() on closed sockets
14394 - [BUG] stream_sock: disable I/O on fds reporting an error
14395 - [MINOR] sepoll: don't count two events on the same FD.
14396 - [MINOR] show sess: report a lot more information about sessions
14397 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
14398 - [BUG] don't set an expiration date directly from now_ms
14399 - [MINOR] implement ulltoh() to write HTML-formatted numbers
14400 - [MINOR] stats/html: group digits by 3 to clarify numbers
14401 - [BUILD] remove haproxy-small.spec
14402 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
14403
Willy Tarreau8019ffa2009-03-22 23:46:12 +0100144042009/03/22 : 1.3.16
14405 - [BUILD] Fixed Makefile for linking pcre
14406 - [CONTRIB] selinux policy for haproxy
14407 - [MINOR] show errors: encode backslash as well as non-ascii characters
14408 - [MINOR] cfgparse: some cleanups in the consistency checks
14409 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
14410 - [MINOR] tcp-inspect: permit the use of no-delay inspection
14411 - [MEDIUM] reverse internal proxy declaration order to match configuration
14412 - [CLEANUP] config: catch and report some possibly wrong rule ordering
14413 - [BUG] connect timeout is in the stream interface, not the buffer
14414 - [BUG] session: errors were not reported in termination flags in TCP mode
14415 - [MINOR] tcp_request: let the caller take care of errors and timeouts
14416 - [CLEANUP] http: remove some commented out obsolete code in process_response
14417 - [MINOR] update ebtree to version 4.1
14418 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
14419 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
14420 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
14421 - [MINOR] sched: permit a task to stay up between calls
14422 - [MINOR] task: keep a task count and clean up task creators
14423 - [MINOR] stats: report number of tasks (active and running)
14424 - [BUG] server check intervals must not be null
14425 - [OPTIM] stream_sock: don't retry to read after a large read
14426 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
14427 - [MEDIUM] session: don't resync FSMs on non-interesting changes
14428 - [BUG] check for global.maxconn before doing accept()
14429 - [OPTIM] sepoll: do not re-check whole list upon accepts
14430
Willy Tarreau8185ced2009-03-09 22:45:53 +0100144312009/03/09 : 1.3.16-rc2
14432 - [BUG] stream_sock: write timeout must be updated when forwarding !
14433
Willy Tarreauff63b432009-03-09 01:03:42 +0100144342009/03/09 : 1.3.16-rc1
14435 - appsessions: cleanup DEBUG_HASH and initialize request_counter
14436 - [MINOR] acl: add new keyword "connslots"
14437 - [MINOR] cfgparse: fix off-by 2 in error message size
14438 - [BUILD] fix build with gcc 4.3
14439 - [BUILD] fix MANDIR default location to match documentation
14440 - [TESTS] add a debug patch to help trigger the stats bug
14441 - [BUG] Flush buffers also where there are exactly 0 bytes left
14442 - [MINOR] Allow to specify a domain for a cookie
14443 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
14444 - [MEDIUM] Fix memory freeing at exit
14445 - [MEDIUM] Fix memory freeing at exit, part 2
14446 - [BUG] Fix listen & more of 2 couples <ip>:<port>
14447 - [DOC] remove buggy comment for use_backend
14448 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
14449 - [MEDIUM] add support for URI hash depth and length limits
14450 - [MINOR] permit renaming of x-forwarded-for header
14451 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
14452 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
14453 - [MEDIUM] upgrade to ebtree v4.0
14454 - [DOC] update the README file with new build options
14455 - [MEDIUM] reduce risk of event starvation in ev_sepoll
14456 - [MEDIUM] detect streaming buffers and tag them as such
14457 - [MEDIUM] add support for conditional HTTP redirection
14458 - [BUILD] make install should depend on haproxy not "all"
14459 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
14460 - [BUG] event pollers must not wait if a task exists in the run queue
14461 - [BUG] queue management: wake oldest request in queues
14462 - [BUG] log: reported queue position was offed-by-one
14463 - [BUG] fix the dequeuing logic to ensure that all requests get served
14464 - [DOC] documentation for the "retries" parameter was missing.
14465 - [MEDIUM] implement a monotonic internal clock
14466 - [MEDIUM] further improve monotonic clock by check forward jumps
14467 - [OPTIM] add branch prediction hints in list manipulations
14468 - [MAJOR] replace ultree with ebtree in wait-queues
14469 - [BUG] we could segfault during exit while freeing uri_auths
14470 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
14471 - [MINOR] introduce now_ms, the current date in milliseconds
14472 - [BUG] disable buffer read timeout when reading stats
14473 - [MEDIUM] rework the wait queue mechanism
14474 - [BUILD] change declaration of base64tab to fix build with Intel C++
14475 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
14476 - [MAJOR] use an ebtree instead of a list for the run queue
14477 - [MEDIUM] introduce task->nice and boot access to statistics
14478 - [OPTIM] task_queue: assume most consecutive timers are equal
14479 - [BUILD] silent a warning in unlikely() with gcc 4.x
14480 - [MAJOR] convert all expiration timers from timeval to ticks
14481 - [BUG] use_backend would not correctly consider "unless"
14482 - [TESTS] added test-acl.cfg to test some ACL combinations
14483 - [MEDIUM] add support for configuration keyword registration
14484 - [MEDIUM] modularize the global "stats" keyword configuration parser
14485 - [MINOR] cfgparse: add support for warnings in external functions
14486 - [MEDIUM] modularize the "timeout" keyword configuration parser
14487 - [MAJOR] implement tcp request content inspection
14488 - [MINOR] acl: add a new parsing function: parse_dotted_ver
14489 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
14490 - [CLEANUP] remove unused include/types/client.h
14491 - [CLEANUP] remove many #include <types/xxx> from C files
14492 - [CLEANUP] remove dependency on obsolete INTBITS macro
14493 - [DOC] document the new "tcp-request" keyword and associated ACLs
14494 - [MINOR] acl: add REQ_CONTENT to the list of default acls
14495 - [MEDIUM] acl: permit fetch() functions to set the result themselves
14496 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
14497 - [MINOR] acl: add the "wait_end" acl verb
14498 - [MEDIUM] acl: enforce ACL type checking
14499 - [MEDIUM] acl: set types on all currently known ACL verbs
14500 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
14501 - [CLEANUP] remove 65 useless NULL checks before free
14502 - [MEDIUM] memory: update pool_free2() to support NULL pointers
14503 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
14504 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
14505 - [MEDIUM] process_srv: don't rely at all on client state
14506 - [MEDIUM] process_cli: don't rely at all on server state
14507 - [BUG] fix segfault with url_param + check_post
14508 - [BUG] server timeout was not considered in some circumstances
14509 - [BUG] client timeout incorrectly rearmed while waiting for server
14510 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
14511 - [MAJOR] get rid of SV_STANALYZE (step 2)
14512 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
14513 - [MAJOR] completely separate HTTP and TCP states on the request path
14514 - [BUG] fix recently introduced loop when client closes early
14515 - [MAJOR] get rid of the SV_STHEADERS state
14516 - [MAJOR] better separation of response processing and server state
14517 - [MAJOR] clearly separate HTTP response processing from TCP server state
14518 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
14519 - [MINOR] term_trace: add better instrumentations to trace the code
14520 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
14521 - [BUG] process_response must not enable the read FD
14522 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
14523 - [BUG] process_response: do not touch srv_state
14524 - [BUG] maintain_proxies must not disable backends
14525 - [CLEANUP] get rid of BF_SHUT*_PENDING
14526 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
14527 - [MAJOR] process_session: rely only on buffer flags
14528 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
14529 - [MEDIUM] centralize buffer timeout checks at the top of process_session
14530 - [MINOR] ensure the termination flags are set by process_xxx
14531 - [MEDIUM] session: move the analysis bit field to the buffer
14532 - [OPTIM] process_cli/process_srv: reduce the number of tests
14533 - [BUG] regparm is broken on gcc < 3
14534 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
14535 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
14536 - [BUG] process_cli/process_srv: don't call shutdown when already done
14537 - [BUG] process_request: HTTP body analysis must return zero if missing data
14538 - [TESTS] test-fsm: 22 regression tests for state machines
14539 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
14540 - [BUG] fix harmless but wrong fd insertion sequence
14541 - [MEDIUM] make it possible for analysers to follow the whole session
14542 - [MAJOR] rework of the server FSM
14543 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
14544 - [MEDIUM] massive cleanup of process_srv()
14545 - [MEDIUM] second level of code cleanup for process_srv_data
14546 - [MEDIUM] third cleanup and optimization of process_srv_data()
14547 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
14548 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
14549 - [MAJOR] make the client side use stream_sock_process_data()
14550 - [MEDIUM] split stream_sock_process_data
14551 - [OPTIM] stream_sock_read must check for null-reads more often
14552 - [MINOR] only call flow analysers when their read side is connected.
14553 - [MEDIUM] reintroduce BF_HIJACK with produce_content
14554 - [MINOR] re-arrange buffer flags and rename some of them
14555 - [MINOR] do not check for BF_SHUTR when computing write timeout
14556 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
14557 - [OPTIM] reduce the number of calls to task_wakeup()
14558 - [OPTIM] force inlining of large functions with gcc >= 3
14559 - [MEDIUM] indicate a reason for a task wakeup
14560 - [MINOR] change type of fdtab[]->owner to void*
14561 - [MAJOR] make stream sockets aware of the stream interface
14562 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
14563 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
14564 - [MEDIUM] process_session: make use of the new buffer flags
14565 - [CLEANUP] process_session: move debug outputs out of the critical loop
14566 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
14567 - [OPTIM] add compiler hints in tick_is_expired()
14568 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
14569 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
14570 - [MINOR] add an expiration flag to the stream_sock_interface
14571 - [MAJOR] migrate the connection logic to stream interface
14572 - [MAJOR] add a connection error state to the stream_interface
14573 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
14574 - [MEDIUM] continue layering cleanups.
14575 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
14576 - [MEDIUM] remove stream_sock_update_data()
14577 - [MINOR] maintain a global session list in order to ease debugging
14578 - [BUG] shutw must imply close during a connect
14579 - [MEDIUM] process shutw during connection attempt
14580 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
14581 - [MAJOR] complete layer4/7 separation
14582 - [CLEANUP] move the session-related functions to session.c
14583 - [MINOR] call session->do_log() for logging
14584 - [MINOR] replace the ambiguous client_return function by stream_int_return
14585 - [MINOR] replace client_retnclose() with stream_int_retnclose()
14586 - [MINOR] replace srv_close_with_err() with http_server_error()
14587 - [MEDIUM] make the http server error function a pointer in the session
14588 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
14589 - [MINOR] stream_sock_data_finish() should not expose fd
14590 - [MEDIUM] extract TCP request processing from HTTP
14591 - [MEDIUM] extract the HTTP tarpit code from process_request().
14592 - [MEDIUM] move the HTTP request body analyser out of process_request().
14593 - [MEDIUM] rename process_request to http_process_request
14594 - [BUG] fix forgotten server session counter
14595 - [MINOR] declare process_session in session.h, not proto_http.h
14596 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
14597 - [MINOR] add an analyser code for UNIX stats request
14598 - [MINOR] pre-set analyser flags on the listener at registration time
14599 - [BUG] do not forward close from cons to prod with analysers
14600 - [MEDIUM] ensure that sock->shutw() also closes read for init states
14601 - [MINOR] add an analyser state in struct session
14602 - [MAJOR] make unix sockets work again with stats
14603 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
14604 - [MINOR] move the listener reference from fd to session
14605 - [MEDIUM] reference the current hijack function in the buffer itself
14606 - [MINOR] slightly rebalance stats_dump_{raw,http}
14607 - [MINOR] add a new back-reference type : struct bref
14608 - [MINOR] add back-references to sessions for later use by a dumper.
14609 - [MEDIUM] add support for "show sess" in unix stats socket
14610 - [BUG] do not release the connection slot during a retry
14611 - [BUG] dynamic connection throttling could return a max of zero conns
14612 - [BUG] do not try to pause backends during reload
14613 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
14614 - [BUG] acl-related keywords are not allowed in defaults sections
14615 - [BUG] cookie capture is declared in the frontend but checked on the backend
14616 - [BUG] critical errors should be reported even in daemon mode
14617 - [MINOR] redirect: add support for the "drop-query" option
14618 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
14619 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
14620 - [BUG] do not dequeue requests on a dead server
14621 - [BUG] do not dequeue the backend's pending connections on a dead server
14622 - [MINOR] stats: indicate if a task is running in "show sess"
14623 - [BUG] check timeout must not be changed if timeout.check is not set
14624 - [BUG] "option transparent" is for backend, not frontend !
14625 - [MINOR] transfer errors were not reported anymore in data phase
14626 - [MEDIUM] add a send limit to a buffer
14627 - [MEDIUM] don't report buffer timeout when there is I/O activity
14628 - [MEDIUM] indicate when we don't care about read timeout
14629 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
14630 - [MEDIUM] enable inter-stream_interface wakeup calls
14631 - [MAJOR] implement autonomous inter-socket forwarding
14632 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
14633 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
14634 - [MEDIUM] i/o: rework ->to_forward and ->send_max
14635 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
14636 - [OPTIM] buffer: replace rlim by max_len
14637 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
14638 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
14639 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
14640 - [MEDIUM] split stream_sock_write() into callback and core functions
14641 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
14642 - [MINOR] stream_sock: fix a few wrong empty calculations
14643 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
14644 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
14645 - [MEDIUM] splice: add configuration options and set global.maxpipes
14646 - [MINOR] introduce structures required to support Linux kernel splicing
14647 - [MEDIUM] add definitions for Linux kernel splicing
14648 - [MAJOR] complete support for linux 2.6 kernel splicing
14649 - [BUG] reserve some pipes for backends with splice enabled
14650 - [MEDIUM] splice: add hints to support older buggy kernels
14651 - [MEDIUM] introduce pipe pools
14652 - [MEDIUM] splice: make use of pipe pools
14653 - [STATS] report pipe usage in the statistics
14654 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
14655 - [BUILD] fix snapshot date extraction with negative timezones
14656 - [MEDIUM] move global tuning options to the global structure
14657 - [MEDIUM] splice: add the global "nosplice" option
14658 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
14659 - [BUG] we must not exit if protocol binding only returns a warning
14660 - [MINOR] add support for bind interface name
14661 - [BUG] inform the user when root is expected but not set
14662 - [MEDIUM] add support for source interface binding
14663 - [MEDIUM] add support for source interface binding at the server level
14664 - [MEDIUM] implement bind-process to limit service presence by process
14665 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
14666 - [DOC] filled the logging section of the configuration manual
14667 - [DOC] document HTTP status codes
14668 - [DOC] document a few missing info about errorfile
14669 - [BUG] fix random memory corruption using "show sess"
14670 - [BUG] fix unix socket processing of interrupted output
14671 - [DOC] add diagrams of queuing and future ACL design
14672 - [BUILD] proto_http did not build on gcc-2.95
14673 - [BUG] the "source" keyword must first clear optional settings
14674 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
14675 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
14676 - [MEDIUM] store a complete dump of request and response errors in proxies
14677 - [MEDIUM] implement error dump on unix socket with "show errors"
14678 - [DOC] document "show errors"
14679 - [MINOR] errors dump must use user-visible date, not internal date.
14680 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
14681 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
14682 - [MEDIUM] measure and report session rate on frontend, backends and servers
14683 - [BUG] the "connslots" keyword was matched as "connlots"
14684 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
14685 - [MEDIUM] implement "rate-limit sessions" for the frontend
14686 - [BUG] interface binding: length must include the trailing zero
14687 - [BUG] typo in timeout error reporting : report *res and not *err
14688 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
14689 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
14690 - [BUG] switch server-side stream interface to close in case of abort
14691 - [CLEANUP] remove last references to term_trace
14692 - [OPTIM] freq_ctr: do not rotate the counters when reading
14693 - [BUG] disable any analysers for monitoring requests
14694 - [BUG] rate-limit in defaults section was ignored
14695 - [BUG] task: fix handling of duplicate keys
14696 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
14697 - [OPTIM] displace tasks in the wait queue only if absolutely needed
14698 - [MEDIUM] minor update to the task api: let the scheduler queue itself
14699 - [BUG] event_accept() must always wake the task up, even in health mode
14700 - [CLEANUP] task: distinguish between clock ticks and timers
14701 - [OPTIM] task: reduce the number of calls to task_queue()
14702 - [OPTIM] do not re-check req buffer when only response has changed
14703 - [CLEANUP] don't enable kernel splicing when socket is closed
14704 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
14705 - [MINOR] buffers: implement buffer_flush()
14706 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
14707 - [BUILD] build fixes for Solaris
14708 - [BUILD] proto_http did not build on gcc-2.95 (again)
14709 - [CONTRIB] halog: fast log parser for haproxy
14710 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
14711
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +0200147122008/04/19 : 1.3.15
14713 - [BUILD] Added support for 'make install'
14714 - [BUILD] Added 'install-man' make target for installing the man page
14715 - [BUILD] Added 'install-bin' make target
14716 - [BUILD] Added 'install-doc' make target
14717 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
14718 - [BUILD] Changed 'install' target to install the binaries first
14719 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
14720 - [MEDIUM]: Inversion for options
14721 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
14722 - [BUG]: Restore clearing t->logs.bytes
14723 - [MEDIUM]: rework checks handling
14724 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
14725 - [MEDIUM] Implement "track [<backend>/]<server>"
14726 - [MINOR] Implement persistent id for proxies and servers
14727 - [BUG] Don't increment server connections too much + fix retries
14728 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
14729 - [MAJOR] proto_uxst rework -> SNMP support
14730 - [BUG] appsession lookup in URL does not work
14731 - [BUG] transparent proxy address was ignored in backend
14732 - [BUG] hot reconfiguration failed because of a wrong error check
14733 - [DOC] big update to the configuration manual
14734 - [DOC] large update to the configuration manual
14735 - [DOC] document more options
14736 - [BUILD] major rework of the GNU Makefile
14737 - [STATS] add support for "show info" on the unix socket
14738 - [DOC] document options forwardfor to logasap
14739 - [MINOR] add support for the "backlog" parameter
14740 - [OPTIM] introduce global parameter "tune.maxaccept"
14741 - [MEDIUM] introduce "timeout http-request" in frontends
14742 - [MINOR] tarpit timeout is also allowed in backends
14743 - [BUG] increment server connections for each connect()
14744 - [MEDIUM] add a turn-around state of one second after a connection failure
14745 - [BUG] fix typo in redispatched connection
14746 - [DOC] document options nolinger to ssl-hello-chk
14747 - [DOC] added documentation for "option tcplog" to "use_backend"
14748 - [BUG] connect_server: server might not exist when sending error report
14749 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
14750 - [MEDIUM] add non-local bind to connect() on Linux
14751 - [MINOR] add transparent proxy support for balabit's Tproxy v4
14752 - [BUG] use backend's source and not server's source with tproxy
14753 - [BUG] fix overlapping server flags
14754 - [MEDIUM] fix server health checks source address selection
14755 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
14756 - [DOC] added "server", "source" and "stats" keywords
14757 - [DOC] all server parameters have been documented
14758 - [DOC] document all req* and rsp* keywords.
14759 - [DOC] added documentation about HTTP header manipulations
14760 - [BUG] log response byte count, not request
14761 - [BUILD] code did not build in full debug mode
14762 - [BUG] fix truncated responses with sepoll
14763 - [MINOR] use s->frt_addr as the server's address in transparent proxy
14764 - [MINOR] fix configuration hint about timeouts
14765 - [DOC] minor cleanup of the doc and notice to contributors
14766 - [MINOR] report correct section type for unknown keywords.
14767 - [BUILD] update MacOS Makefile to build on newer versions
14768 - [DOC] fix erroneous "useallbackups" option in the doc
14769 - [DOC] applied small fixes from early readers
14770 - [MINOR] add configuration support for "redir" server keyword
14771 - [MEDIUM] completely implement the server redirection method
14772 - [TESTS] add a test case for the server redirection mechanism
14773 - [DOC] add a configuration entry for "server ... redir <prefix>"
14774 - [BUILD] backend.c and checks.c did not build without tproxy !
14775 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
14776 - [BUILD] backend.c and checks.c did not build without tproxy !
14777 - [OPTIM] used unsigned ints for HTTP state and message offsets
14778 - [OPTIM] GCC4's builtin_expect() is suboptimal
14779 - [BUG] failed conns were sometimes incremented in the frontend!
14780 - [BUG] timeout.check was not pre-set to eternity
14781 - [TESTS] add test-pollers.cfg to easily report pollers in use
14782 - [BUG] do not apply timeout.connect in checks if unset
14783 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
14784 - [MINOR] silent gcc for a wrong warning
14785 - [CLEANUP] update .gitignore to ignore more temporary files
14786 - [CLEANUP] report dlmalloc's source path only if explictly specified
14787 - [BUG] str2sun could leak a small buffer in case of error during parsing
14788 - [BUG] option allbackups was not working anymore in roundrobin mode
14789 - [MAJOR] implementation of the "leastconn" load balancing algorithm
14790 - [BUILD] ensure that users don't build without setting the target anymore.
14791 - [DOC] document the leastconn LB algo
14792 - [MEDIUM] fix stats socket limitation to 16 kB
14793 - [DOC] fix unescaped space in httpchk example.
14794 - [BUG] fix double-decrement of server connections
14795 - [TESTS] add a test case for port mapping
14796 - [TESTS] add a benchmark for integer hashing
14797 - [TESTS] add new methods in ip-hash test file
14798 - [MAJOR] implement parameter hashing for POST requests
14799
Willy Tarreaue5b77e82007-12-06 01:25:44 +0100148002007/12/06 : 1.3.14
14801 - New option http_proxy (Alexandre Cassen)
14802 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
14803 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
14804 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
14805 - use backends only with use_backend directive (Krzysztof Oledzki)
14806 - Handle long lines properly (Krzysztof Oledzki)
14807 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
14808 - continous statistics (Krzysztof Oledzki)
14809 - add support for logging via a UNIX socket (Robert Tsai)
14810 - fix error checking in strl2ic/strl2uic()
14811 - fix calls to localtime()
14812 - provide easier-to-use ultoa_* functions
14813 - provide easy-to-use limit_r and LIM2A* macros
14814 - add a simple test for the status page
14815 - move error codes to common/errors.h
14816 - silent warning about LIST_* being redefined on OpenBSD
14817 - add socket address length to the protocols
14818 - group PR_O_BALANCE_* bits into a checkable value
14819 - externalize the "balance" option parser to backend.c
14820 - introduce the "url_param" balance method
14821 - make default_backend work in TCP mode too
14822 - disable warning about localtime_r on Solaris
14823 - adjust error messages about conflicting proxies
14824 - avoid calling some layer7 functions if not needed
14825 - simplify error path in event_accept()
14826 - add an options field to the listeners
14827 - added a new state to listeners
14828 - unbind_listener() must use fd_delete() and not close()
14829 - add a generic unbind_listener() primitive
14830 - add a generic delete_listener() primitive
14831 - add a generic unbind_all_listeners() primitive
14832 - create proto_tcp and move initialization of proxy listeners
14833 - stats: report numerical process ID, proxy ID and server ID
14834 - relative_pid was not initialized
14835 - missing header names in raw stats output
14836 - fix missing parenthesis in check_response_for_cacheability
14837 - small optimization on session_process_counters()
14838 - merge ebtree version 3.0
14839 - make ebtree headers multiple-include compatible
14840 - ebtree: include config.h for REGPRM*
14841 - differentiate between generic LB params and map-specific ones
14842 - add a weight divisor to the struct proxy
14843 - implement the Fast Weighted Round Robin (FWRR) algo
14844 - include filltab25.c to experiment on FWRR for dynamic weights
14845 - merge test-fwrr.cfg to validate dynamic weights
14846 - move the load balancing algorithm to be->lbprm.algo
14847 - change server check result to a bit field
14848 - implement "http-check disable-on-404" for graceful shutdown
14849 - secure the calling conditions of ->set_server_status_{up,down}
14850 - report disabled servers as "NOLB" when they are still UP
14851 - document the "http-check disable-on-404" option
14852 - http-check disable-on-404 is not limited to HTTP mode
14853 - add a test file for disable-on-404
14854 - use distinct bits per load-balancing algorithm type
14855 - implement the slowstart parameter for servers
14856 - document the server's slowstart parameter
14857 - stats: report the server warm up status in a "throttle" column
14858 - fix 2 minor issues on AIX
14859 - add the "nbsrv" ACL verb
14860 - add the "fail" condition to monitor requests
14861 - remove a warning from gcc due to htons() in standard.c
14862 - fwrr: ensure that we never overflow in placements
14863 - store the build options to report with -vv
14864 - fix the status return of the init script (R.I. Pienaar)
14865 - stats: real time monitoring script for unix socket (Prizee)
14866 - document "nbsrv" and "monitor fail"
14867 - restrict the set of allowed characters for identifiers
14868 - implement a time parsing function
14869 - add support for time units in the configuration
14870 - add a bit of documentation about timers
14871 - introduce separation between contimeout, and tarpit + queue
14872 - introduce the "timeout" keyword
14873 - grouped all timeouts in one structure
14874 - slowstart is in ms, not seconds
14875 - slowstart: ensure we don't start with a null weight
14876 - report the number of times each server was selected
14877 - fix build on AIX due to recent log changes
14878 - fix build on Solaris due to recent log changes
14879
Willy Tarreaue855f422007-10-18 22:38:22 +0200148802007/10/18 : 1.3.13
14881 - replace the code under O'Reilly license (Arnaud Cornet)
14882 - add a small man page (Arnaud Cornet)
14883 - stats: report haproxy's version by default (Krzysztof Oledzki)
14884 - stats: count server retries and redispatches (Krzysztof Oledzki)
14885 - core: added easy support for Doug Lea's malloc (dlmalloc)
14886 - core: fade out memory usage when stopping proxies
14887 - core: moved the sockaddr pointer to the fdtab structure
14888 - core: add generic protocol support
14889 - core: implement client-side support for PF_UNIX sockets
14890 - stats: implement the CSV output
14891 - stats: add a link to the CSV export HTML page
14892 - stats: implement the statistics output on a unix socket
14893 - config: introduce the "stats" keyword in global section
14894 - build: centralize version and date into one file for each
14895 - tests: added a new hash algorithm
14896
148972007/10/18 : 1.3.12.3
14898 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
14899 - fix double-free during clean exit (Krzysztof Oledzki)
14900 - prevent the system from sending an RST when closing health-checks
14901 (Krzysztof Oledzki)
14902 - do not add a cache-control header when on non-cacheable responses
14903 (Krzysztof Oledzki)
14904 - spread health checks even more (Krzysztof Oledzki)
14905 - stats: scope "." must match the backend and not the frontend
14906 - fixed call to chroot() during startup
14907 - fix wrong timeout computation in event_accept()
14908 - remove condition for exit() under fork() failure
14909
149102007/09/20 : 1.3.12.2
14911 - fix configuration sanity checks for TCP listeners
14912 - set the log socket receive window to zero bytes
14913 - pre-initialize timeouts to infinity, not zero
14914 - fix the SIGHUP message not to alert on server-less proxies
14915 - timeouts and retries could be ignored when switching backend
14916 - added a file to check that "retries" works.
14917 - O'Reilly has clarified its license
14918
149192007/09/05 : 1.3.12.1
14920 - spec I/O: fix allocations of spec entries for an FD
14921 - ensure we never overflow in chunk_printf()
14922 - improve behaviour with large number of servers per proxy
14923 - add support for "stats refresh <interval>"
14924 - stats page: added links for 'refresh' and 'hide down'
14925 - fix backend's weight in the stats page.
14926 - the "stats" keyword is not allowed in a pure frontend.
14927 - provide a test configuration file for stats and checks
14928
Willy Tarreaub21152b2007-06-17 23:41:40 +0200149292007/06/17 : 1.3.12
14930 - fix segfault at exit when using captures
14931 - bug: negation in ACL conds was not cleared between terms
14932 - errorfile: use a local file to feed error messages
14933 - acl: support '-i' to ignore case when matching
14934 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
14935 - acl: support maching on 'path' component
14936 - acl: implement matching on header values
14937 - acl: distinguish between request and response headers
14938 - acl: permit to return any header when no name specified
14939 - acl: provide default ACLs
14940 - added the 'use_backend' keyword for full content-switching
14941 - acl: specify the direction during fetches
14942 - acl: provide the argument length for fetch functions
14943 - acl: provide a reference to the expr to fetch()
14944 - improve memory freeing upon exit
14945 - str2net() must not change the const char *
14946 - shut warnings 'is*' macros from ctype.h on solaris
14947
Willy Tarreaua3503e02007-06-03 17:27:07 +0200149482007/06/03 : 1.3.11.4
14949 - do not re-arm read timeout in SHUTR state !
14950 - optimize I/O by detecting system starvation
14951 - the epoll FD must not be shared between processes
14952 - limit the number of events returned by *poll*
14953
Willy Tarreau3c6fc072007-05-14 14:40:25 +0200149542007/05/14 : 1.3.11.3
14955 - pre-initialize timeouts with tv_eternity during parsing
14956
Willy Tarreaufc273c22007-05-14 03:42:47 +0200149572007/05/14 : 1.3.11.2
14958 - fixed broken health-checks since switch to timeval
14959
Willy Tarreau3c5340c2007-05-14 03:18:43 +0200149602007/05/14 : 1.3.11.1
14961 - fixed ev_kqueue which was forgotten during the switch to timeval
14962 - allowed null timeouts for past events in select
14963
Willy Tarreau544eb402007-05-14 02:42:33 +0200149642007/05/14 : 1.3.11
14965 - fixed ev_sepoll again by rewriting the state machine
14966 - switched all timeouts to timevals instead of milliseconds
14967 - improved memory management using mempools v2.
14968 - several minor optimizations
14969
Willy Tarreau9ca931f2007-05-10 07:51:17 +0200149702007/05/09 : 1.3.10.2
14971 - fixed build on OpenBSD (missing types.h)
14972
Willy Tarreau13398d32007-05-09 22:58:28 +0200149732007/05/09 : 1.3.10.1
14974 - fixed sepoll transition matrix (two states were missing)
14975
Willy Tarreau61beedf2007-05-09 01:44:58 +0200149762007/05/08 : 1.3.10
14977 - several fixes in ev_sepoll
14978 - fixed some expiration dates on some tasks
14979 - fixed a bug in connection establishment detection due to speculative I/O
14980 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
14981 - implemented URI hashing algorithm (Guillaume Dallaire)
14982 - implemented SMTP health checks (Peter van Dijk)
14983 - replaced the rbtree with ul2tree from old scheduler project
14984 - new framework for generic ACL support
14985 - added the 'acl' and 'block' keywords to the config language
14986 - added several ACL criteria and matches (IP, port, URI, ...)
14987 - cleaned up and better modularization for some time functions
14988 - fixed list macros
14989 - fixed useless memory allocation in str2net()
14990 - store the original destination address in the session
14991
Willy Tarreau6e0433f2007-04-16 01:18:12 +0200149922007/04/15 : 1.3.9
14993 - modularized the polling mechanisms and use function pointers instead
14994 of macros at many places
14995 - implemented support for FreeBSD's kqueue() polling mechanism
14996 - fixed a warning on OpenBSD : MIN/MAX redefined
14997 - change socket registration order at startup to accomodate kqueue.
14998 - several makefile cleanups to support old shells
14999 - fix build with limits.h once for all
15000 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
15001 - fdtab now holds the results of polling
15002 - implemented support for speculative I/O processing with epoll()
15003 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
15004 - auto-registering of pollers at load time
15005
Willy Tarreau42c76592007-04-03 20:30:13 +0200150062007/04/03 : 1.3.8.2
15007 - rewriting either the status line or request line could crash the
15008 process due to a pointer which ought to be reset before parsing.
15009 - rewriting the status line in the response did not work, it caused
15010 a 502 Bad Gateway due to an erroneous state during parsing
15011
Willy Tarreauef6d7612007-04-01 11:06:22 +0200150122007/04/01 : 1.3.8.1
15013 - fix reqadd when no option httpclose is used.
15014 - removed now unused fiprm and beprm from proxies
15015 - split logs into two versions : TCP and HTTP
15016 - added some docs about http headers storage and acls
15017 - added a VIM script for syntax color highlighting (Bruno Michel)
15018
Willy Tarreaud661cc02007-03-26 00:24:56 +0200150192007/03/25 : 1.3.8
15020 - fixed several bugs which might have caused a crash with bad configs
15021 - several optimizations in header processing
15022 - many progresses towards transaction-based processing
15023 - option forwardfor may be used in frontends
15024 - completed HTTP response processing
15025 - some code refactoring between request and response processing
15026 - new HTTP header manipulation functions
15027 - optimizations on the recv() patch to reduce CPU usage under very
15028 high data rates.
15029 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
15030 - username/groupname support from Marcus Rueckert
15031 - added the "except" keyword to the "forwardfor" option (Bryan German)
15032 - support for health-checks on other addresses (Fabrice Dulaunoy)
15033 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
15034 - do not insert "Connection: close" in HTTP/1.0 messages
15035
Willy Tarreau9cabf702007-01-26 23:49:01 +0100150362007/01/26 : 1.3.7
15037 - fix critical bug introduced with 1.3.6 : an empty request header
15038 may lead to a crash due to missing pointer assignment
15039 - hdr_idx might be left uninitialized in debug mode
15040 - fixed build on FreeBSD due to missing fd_set declaration
15041
Willy Tarreaue7a24382007-01-22 08:57:44 +0100150422007/01/22 : 1.3.6.1
15043 - change in the header chaining broke cookies and authentication
15044
Willy Tarreau49e1ee82007-01-22 00:56:46 +0100150452007/01/22 : 1.3.6
15046 - stats now support the HEAD method too
15047 - extracted http request from the session
15048 - huge rework of the HTTP parser which is now a 28-state FSM.
15049 - linux-style likely/unlikely macros for optimization hints
15050 - do not create a server socket when there's no server
15051 - imported lots of docs
15052
Willy Tarreau5871f8e2007-01-07 02:47:01 +0100150532007/01/07 : 1.3.5
15054 - stats: swap color sets for active and backup servers
15055 - try to guess server check port when unset
15056 - added complete support and doc for TCP Splicing
15057 - replace the wait-queue linked list with an rbtree.
15058 - a few bugfixes and cleanups
15059
Willy Tarreau85270da2007-01-02 00:59:39 +0100150602007/01/02 : 1.3.4
15061 - support for cttproxy on the server side to present the client
15062 address to the server.
15063 - added support for SO_REUSEPORT on Linux (needs kernel patch)
15064 - new RFC2616-compliant HTTP request parser with header indexing
15065 - split proxies in frontends, rulesets and backends
15066 - implemented the 'req[i]setbe' to select a backend depending
15067 on the contents
15068 - added the 'default_backend' keyword to select a default BE.
15069 - new stats page featuring FEs and BEs + bytes in both dirs
15070 - improved log format to indicate the backend and the time in ms.
15071 - lots of cleanups
15072
Willy Tarreau9c9fea42006-10-16 00:03:35 +0200150732006/10/15 : 1.3.3
15074 - fix broken redispatch option in case the connection has already
15075 been marked "in progress" (ie: nearly always).
15076 - support regparm on x86 to speed up some often called functions
15077 - removed a few useless calls to gettimeofday() in log functions.
15078 - lots of 'const char*' cleanups
15079 - turn every FD_* into functions which are faster on recent CPUs
15080
Willy Tarreau690f9aa2006-09-03 11:23:06 +0200150812006/09/03 : 1.3.2
15082 - started the changes towards I/O completion callbacks. stream_sock* have
15083 replaced event_*.
15084 - added the new "reqtarpit" and "reqitarpit" protection features
15085
Willy Tarreau8f2b8552006-07-09 17:11:39 +0200150862006/07/09 : 1.3.1 (1.2.15)
15087 - now, haproxy warns about missing timeout during startup to try to
15088 eliminate all those buggy configurations.
15089 - added "Content-Type: text/html" in responses wherever appropriate, as
15090 suggested by Cameron Simpson.
15091 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
15092 test server's health
15093 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
15094 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
15095 at once.
15096
Willy Tarreaub9e98b62006-07-03 10:32:46 +0200150972006/06/29 : 1.3.0
15098 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +020015099 difference is expected at all.
15100 - fixed a bug by which neither stats nor error messages could be returned if
15101 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +020015102
willy tarreau7e6328d2006-05-21 23:26:20 +0200151032006/05/21 : 1.2.14
15104 - new HTML status report with the 'stats' keyword.
15105 - added the 'abortonclose' option to better resist traffic surges
15106 - implemented dynamic traffic regulation with the 'minconn' option
15107 - show request time on denied requests
15108 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
15109 - now a proxy instance is allowed to run without servers, which is
15110 useful to dedicate one instance to stats
15111 - added lots of error counters
15112 - a missing parenthesis preventd matching of cacheable cookies
15113 - a missing parenthesis in poll_loop() might have caused missed events.
15114
Willy TARREAU4404b7e2006-05-14 10:00:09 +0200151152006/05/14 : 1.2.13.1
15116 - an uninitialized field in the struct session could cause a crash when
15117 the session was freed. This has been encountered on Solaris only.
15118 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
15119 be nice to them by performing a soft stop if pause fails.
15120
willy tarreauc3a2e072006-05-13 18:51:38 +0200151212006/05/13 : 1.2.13
15122 - 'maxconn' server parameter to do per-server session limitation
15123 - queueing to support non-blocking session limitation
15124 - fixed removal of cookies for cookie-less servers such as backup servers
15125 - two separate wait queues for expirable and non-expirable tasks provide
15126 better performance with lots of sessions.
15127 - some code cleanups and performance improvements
15128 - made state dumps a bit more verbose
15129 - fixed missing checks for NULL srv in dispatch mode
15130 - load balancing on backup servers was not possible in source hash mode.
15131 - two session flags shared the same bit, but fortunately they were not
15132 compatible.
15133
willy tarreauc0d4bbd2006-04-15 21:47:50 +0200151342006/04/15 : 1.2.12
15135 Very few changes preparing for more important changes to support per-server
15136 session limitations and queueing :
15137 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
15138 - added the 'weight' parameter to the servers, limited to 1..256. It applies
15139 to roundrobin and source hash.
15140 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
15141
willy tarreaue0dd2692006-03-30 16:27:34 +0200151422006/03/30 : 1.2.11.1
15143 - under some conditions, it might have been possible that when the
15144 last dead server became available, it would not have been used
15145 till another one would have changed state. Could not be reproduced
15146 at all, however seems possible from the code.
15147
willy tarreaud2058dc2006-03-25 20:35:41 +0100151482006/03/25 : 1.2.11
15149 - added the '-db' command-line option to disable backgrounding.
15150 - added the -sf/-st command-line arguments which are used to specify
15151 a list of pids to send a FINISH or TERMINATE signal upon startup.
15152 They will also be asked to release their port if a bind fails.
15153 - reworked the startup mechanism to allow the sending of a signal to a list
15154 of old pids if a socket cannot be bound, with a retry for a limited amount
15155 of time (1 second by default).
15156 - added the ability to enforce limits on memory usage.
15157 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
15158 - re-architectured the server round-robin mechanism to ease integration of
15159 other algorithms. It now relies on the number of active and backup servers.
15160 - added a counter for the number of active and backup servers, and report
15161 these numbers upon SIGHUP or state change.
15162
willy tarreaubfad5742006-03-23 14:19:11 +0100151632006/03/23 : 1.2.10.1
15164 - while fixing the backup server round-robin "feature", a new bug was
15165 introduced which could miss some backup servers.
15166 - the displayed proxy name was wrong when dumping upon SIGHUP.
15167
willy tarreauaaff30e2006-03-19 21:30:41 +0100151682006/03/19 : 1.2.10
15169 - assert.h is needed when DEBUG is defined.
15170 - ENORMOUS long standing bug affecting the epoll polling system :
15171 event_data is a union, not a structure !
15172 - Make fd management more robust and easier to debug. Also some
15173 micro-optimisations.
15174 - Limit the number of consecutive accept() in multi-process mode.
15175 This produces a more evenly distributed load across the processes and
15176 slightly improves performance by reducing bottlenecks.
15177 - Make health-checks be more regular, and faster to retry after a timeout.
15178 - Fixed some messages to ease parsing of alerts.
15179 - provided a patch to enable epoll on RHEL3 kernels.
15180 - Separated OpenBSD build from the main Makefile into a new one.
15181
willy tarreau50be0172006-03-15 19:41:19 +0100151822006/03/15 : 1.2.9
15183 - haproxy could not be stopped after being paused, it had to be woken up
15184 first. This has been fixed.
15185 - the 'ulimit-n' parameter is now optional and by default computed from
15186 maxconn + the number of listeners + the number of health-checks.
15187 - it is now possible to specify a maximum number of connections at build
15188 time with the SYSTEM_MAXCONN define. The value set in the configuration
15189 file will then be limited to this value, and only the command-line '-n'
15190 option will be able to bypass it. It will prevent against accidental
15191 high memory usage on small systems.
15192 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
15193 versions did not detect a line beginning with a space as the continuation
15194 of previous header. It is now correct.
15195 - health checks sent to servers configured with identical intervals were
15196 sent in perfect synchronisation because the initial time was the same
15197 for all. This could induce high load peaks when fragile servers were
15198 hosting tens of instances for the same application. Now the load is
15199 spread evenly across the smallest interval amongst a listener.
15200 - a new 'forceclose' option was added to make the proxy close the outgoing
15201 channel to the server once it has sent all its headers and the server
15202 starts responding. This helps some servers which don't close upon the
15203 'Connection: close' header. It implies 'option httpclose'.
15204 - there was a bug in the way the backup servers were handled. They were
15205 erroneously load-balanced while the doc said the opposite. Since
15206 load-balanced backup servers is one of the features some people have
15207 been asking for, the problem was fixed to reflect the documented
15208 behaviour and a new option 'allbackups' was introduced to provide the
15209 feature to those who need it.
15210 - a never ending connect() could lead to a fast select() loop if its
15211 timeout times the number of retransmits exceeded the server read or write
15212 timeout, because the later was used to compute select()'s timeout while
15213 the connection timeout was not reached.
15214 - now we initialize the libc's localtime structures very early so that even
15215 under OOM conditions, we can still send dated error messages without
15216 segfaulting.
15217 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
15218 descriptors are closed.
15219
willy tarreau065f1c02006-01-29 22:10:07 +0100152202006/01/29 : 1.2.8
15221 - fixed a nasty bug affecting poll/epoll which could return unmodified data
15222 from the server to the client, and sometimes lead to memory corruption
15223 crashing the process.
15224 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
15225
152262005/12/18 : 1.2.7.1
15227 - the "retries" option was ignored because connect() could not return an
15228 error if the connection failed before the timeout.
15229 - TCP health-checks could not detect a connection refused in poll/epoll
15230 mode.
15231
willy tarreaua56eca72005-12-18 01:34:42 +0100152322005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010015233 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
15234 least on Solaris, this caused the libc's regex primitives to be used instead
15235 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010015236 - delayed the quiet mode during startup so that most of the startup alerts can
15237 be displayed even in quiet mode.
15238 - display an alert when a listener has no address, invalid or no port, or when
15239 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +010015240 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +010015241
willy tarreaub952e1d2005-12-18 01:31:20 +0100152422005/10/09 : 1.2.7rc (1.1.33rc)
15243 - second batch of socklen_t changes.
15244 - clean-ups from Cameron Simpson.
15245 - because tv_remain() does not know about eternity, using no timeout can
15246 make select() spin around a null time-out. Bug reported by Cameron Simpson.
15247 - client read timeout was not properly set to eternity initialized after an
15248 accept() if it was not set in the config. It remained undetected so long
15249 because eternity is 0 and newly allocated pages are zeroed by the system.
15250 - do not call get_original_dst() when not in transparent mode.
15251 - implemented a workaround for a bug in certain epoll() implementations on
15252 linux-2.4 kernels (epoll-lt <= 0.21).
15253 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
15254
willy tarreauc5f73ed2005-12-18 01:26:38 +0100152552005/08/07 : 1.2.6
15256 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
15257
152582005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +010015259 - added the number of active sessions (proxy/process) in the logs
15260
152612005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +010015262 - the time-out fix introduced in 1.1.25 caused a corner case where it was
15263 possible for a client to keep a connection maintained regardless of the
15264 timeout if the server closed the connection during the HEADER phase,
15265 while the client ignored the close request while doing nothing in the
15266 other direction. This has been fixed now by ensuring that read timeouts
15267 are re-armed when switching to any SHUTW state.
15268
152692005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
15270 - enhanced error reporting in the logs. Now the proxy will precisely detect
15271 various error conditions related to the system and/or process limits, and
15272 generate LOG_EMERG logs indicating that a resource has been exhausted.
15273 - logs will contain two new characters for the error cause : 'R' indicates
15274 a resource exhausted, and 'I' indicates an internal error, though this
15275 one should never happen.
15276 - server connection timeouts can now be reported in the logs (sC), as well
15277 as connections refused because of maxconn limitations (PC).
15278
152792005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
15280 - new global configuration keyword "ulimit-n" may be used to raise the FD
15281 limit to usable values.
15282 - a warning is now displayed on startup if the FD limit is lower than the
15283 configured maximum number of sockets.
15284
152852005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
15286 - new configuration keyword "monitor-net" makes it possible to be monitored
15287 by external devices which connect to the proxy without being logged nor
15288 forwarded to any server. Particularly useful on generic TCPv4 relays.
15289
willy tarreau5dffb602005-12-18 01:15:23 +0100152902005/06/21 : 1.2.5.2
15291 - fixed build on PPC where chars are unsigned by default
15292
willy tarreau08dedbe2005-12-18 01:13:48 +0100152932005/05/02 : 1.2.5.1
15294 - dirty hack to fix a bug introduced with epoll : if we close an FD and
15295 immediately reassign it to another session through a connect(), the
15296 Prev{Read,Write}Events are not updated, which causes trouble detecting
15297 changes, thus leading to many timeouts at high loads.
15298
willy tarreau64a3cc32005-12-18 01:13:11 +0100152992005/04/30 : 1.2.5 (1.1.31)
15300 - changed the runtime argument to disable epoll() to '-de'
15301 - changed the runtime argument to disable poll() to '-dp'
15302 - added global options 'nopoll' and 'noepoll' to do the same at the
15303 configuration level.
15304 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
15305 support epoll().
15306 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
15307 - conditionned signals redirection to #ifdef DEBUG_MEMORY
15308
willy tarreau1c2ad212005-12-18 01:11:29 +0100153092005/04/26 : 1.2.5-pre4
15310 - made epoll() support a compile-time option : ENABLE_EPOLL
15311 - provided a very little libc replacement for a possibly missing epoll()
15312 implementation which can be enabled by -DUSE_MY_EPOLL
15313 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
15314 The equivalent runtime argument becomes '-P'. A few tests show that it
15315 performs like select() with many fds, but slightly slower (certainly
15316 because of the higher amount of memory involved).
15317 - separated the 3 polling methods and the tasks scheduler into 4 distinct
15318 functions which makes the code a lot more modular.
15319 - moved some event tables to private static declarations inside the poller
15320 functions.
15321 - the poller functions can now initialize themselves, run, and cleanup.
15322 - changed the runtime argument to enable epoll() to '-E'.
15323 - removed buggy epoll_ctl() code in the client_retnclose() function. This
15324 function was never meant to remove anything.
15325 - fixed a typo which caused glibc to yell about a double free on exit.
15326 - removed error checking after epoll_ctl(DEL) because we can never know if
15327 the fd is still active or already closed.
15328 - added a few entries in the makefile
15329
willy tarreauad90a0c2005-12-18 01:09:15 +0100153302005/04/25 : 1.2.5-pre3
15331 - experimental epoll() support (use temporary '-e' argument)
15332
153332005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +010015334 - implemented the HTTP 303 code for error redirection. This forces the
15335 browser to fetch the given URI with a GET request. The new keyword for
15336 this is 'errorloc303', and a new 'errorloc302' keyword has been created
15337 to make them easily distinguishable.
15338 - added more controls in the parser for valid use of '\x' sequence.
15339 - few fixes from Alex & Klaus
15340
willy tarreauad90a0c2005-12-18 01:09:15 +0100153412005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +010015342 - fixed a few errors in the documentation
15343
153442005/02/13
15345 - do not pre-initialize unused file-descriptors before select() anymore.
15346
willy tarreau12350152005-12-18 01:03:27 +0100153472005/01/22 : 1.2.4
15348 - merged Alexander Lazic's and Klaus Wagner's work on application
15349 cookie-based persistence. Since this is the first merge, this version is
15350 not intended for general use and reports are more than welcome. Some
15351 documentation is really needed though.
15352
willy tarreau0174f312005-12-18 01:02:42 +0100153532005/01/22 : 1.2.3 (1.1.30)
15354 - add an architecture guide to the documentation
15355 - released without any changes
15356
153572004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
15358 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
15359 compatible with Apache. This limit can be configured in the makefile now.
15360 Thanks to Eric Fehr for the checks.
15361 - added a per-server "source" option which now makes it possible to bind to
15362 a different source for each (potentially identical) server.
15363 - changed cookie-based server selection slightly to allow several servers to
15364 share a same cookie, thus making it possible to associate backup servers to
15365 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
15366 - added the cookie 'prefix' mode which makes it possible to use persistence
15367 with thin clients which support only one cookie. The server name is prefixed
15368 before the application cookie, and restore back.
15369 - fixed the order of servers within an instance to match documentation. Now
15370 the servers are *really* used in the order of their declaration. This is
15371 particularly important when multiple backup servers are in use.
15372
willy tarreau4302f492005-12-18 01:00:37 +0100153732004/10/18 : 1.2.2 (1.1.29)
15374 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
15375 option was enabled without the 'tcplog' option.
15376 - encode_string() would use hdr_encode_map instead of the map argument.
15377
153782004/08/10 : (1.1.29-pre2)
15379 - the logged request is now encoded with '#XX' for unprintable characters
15380 - new keywords 'capture request header' and 'capture response header' enable
15381 logging of arbitrary HTTP headers in requests and responses
15382 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
15383
willy tarreau982249e2005-12-18 00:57:06 +0100153842004/06/06 : 1.2.1 (1.1.28)
15385 - added the '-V' command line option to verbosely report errors even though
15386 the -q or 'quiet' options are specified. This is useful with '-c'.
15387 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +010015388
willy tarreau982249e2005-12-18 00:57:06 +0100153892004/06/05 :
15390 - added the "logasap" option which produces a log without waiting for the data
15391 to be transferred from the server to the client.
15392 - added the "httpclose" option which removes any "connection:" header and adds
15393 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +010015394 - added the 'checkcache' option which blocks cacheable responses containing
15395 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +010015396 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
15397 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +010015398
153992004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +010015400 - send an EMERG log when no server is available for a given proxy
15401 - added the '-c' command line option to syntactically check the
15402 configuration file without starting the service.
15403
willy tarreau8a86dbf2005-12-18 00:45:59 +0100154042003/11/09 : 1.2.0
15405 - the same as 1.1.27 + IPv6 support on the client side
15406
willy tarreaufe2c5c12005-12-17 14:14:34 +0100154072003/10/27 : 1.1.27
15408 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
15409 bug : the code still assumed that HTTP requests were the same size as the
15410 original ones (22 bytes), and failed if they were not.
15411 - added support for pidfiles.
15412
willy tarreauc58fc692005-12-17 14:13:08 +0100154132003/10/22 : 1.1.26
15414 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
15415 broke almost all compatibility with POST requests, because the proxy
15416 stopped to read anything from the client as soon as it got all of its
15417 headers.
15418
willy tarreauc1cae632005-12-17 14:12:23 +0100154192003/10/15 : 1.1.25
15420 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
15421 generic TCP proxies, or lighter logs for HTTP proxies.
15422 - fixed a time-out condition wrongly reported as client time-out in data
15423 phase if the client timeout was lower than the connect timeout times the
15424 number of retries.
15425
willy tarreau197e8ec2005-12-17 14:10:59 +0100154262003/09/21 : 1.1.24
15427 - if a client sent a full request then shut its write connection down, then
15428 the request was aborted. This case was detected only when using haproxy
15429 both as health-check client and as a server.
15430 - if 'option httpchk' is used in a 'health' mode server, then responses will
15431 change from 'OK' to 'HTTP/1.0 200 OK'.
15432 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
15433 server response followed by a close could be ignored, and the server seen
15434 as failed.
15435
willy tarreaueedaa9f2005-12-17 14:08:03 +0100154362003/09/19 : 1.1.23
15437 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
15438 'default' sections to keep previous parameters, and not initialize logs
15439 correctly.
15440 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
15441 relying on 'dispatch' mode to segfault at the first connection.
15442 - 'option httpchk' now supports method, HTTP version and a few headers.
15443 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
15444 'defaults' section
15445
154462003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +010015447 - 'listen' now supports optionnal address:port-range lists
15448 - 'bind' introduced to add new listen addresses
15449 - fixed a bug which caused a session to be kept established on a server till
15450 it timed out if the client closed during the DATA phase.
15451 - the port part of each server address can now be empty to make the proxy
15452 connect to the server on the same port it was connected to, be an absolute
15453 unsigned number to reflect a single port (as in older versions), or an
15454 explicitly signed number (+N/-N) to indicate that this offset must be
15455 applied to the port the proxy was connected to, when connecting to the
15456 server.
15457 - the 'port' server option allows the user to specify a different
15458 health-check port than the service one. It is mandatory when only relative
15459 ports have been specified and check is required. By default, the checks are
15460 sent to the service port.
15461 - new 'defaults' section which is rather similar to 'listen' except that all
15462 values are only used as default values for future 'listen' sections, until
15463 a new 'defaults' resets them. At the moment, server options, regexes,
15464 cookie names and captures cannot be set in the 'defaults' section.
15465
willy tarreau2f6ba652005-12-17 13:57:42 +0100154662003/05/06 : 1.1.21
15467 - changed the debug output format so that it now includes the session unique
15468 ID followed by the instance name at the beginning of each line.
15469 - in debug mode, accept now shows the client's IP and port.
15470 - added one 3 small debugging scripts to search and pretty print debug output
15471 - changed the default health check request to "OPTIONS /" instead of
15472 "OPTIONS *" since not all servers implement the later one.
15473 - "option httpchk" now accepts an optional parameter allowing the user to
15474 specify and URI other than '/' during health-checks.
15475
willy tarreaub1ff9db2005-12-17 13:51:03 +0100154762003/04/21 : 1.1.20
15477 - fixed two problems with time-outs, one where a server would be logged as
15478 timed out during transfer that take longer to complete than the fixed
15479 time-out, and one where clients were logged as timed-out during the data
15480 phase because they didn't have anything to send. This sometimes caused
15481 slow client connections to close too early while in fact there was no
15482 problem. The proper fix would be to have a per-fd time-out with
15483 conditions depending on the state of the HTTP FSM.
15484
willy tarreau906b2682005-12-17 13:49:52 +0100154852003/04/16 : 1.1.19
15486 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
15487 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
15488 cookie persistence because it uses "cookie:". Two memcmp() have been
15489 replaced with strncasecmp().
15490
willy tarreau036e1ce2005-12-17 13:46:33 +0100154912003/04/02 : 1.1.18
15492 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
15493 REGEX=pcre on the make command line.
15494 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
15495 - when explicit source address binding is required, it is now also used for
15496 health-checks.
15497 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
15498 itself.
15499 - factored several strings to reduce binary size by about 2 kB.
15500 - replaced setreuid() and setregid() with more standard setuid() and setgid().
15501 - added 4 status flags to the log line indicating who ended the connection
15502 first, the sessions state, the validity of the cookie, and action taken on
15503 the set-cookie header.
15504
155052002/10/18 : 1.1.17
15506 - add the notion of "backup" servers, which are used only when all other
15507 servers are down.
15508 - make Set-Cookie return "" instead of "(null)" when the server has no
15509 cookie assigned (useful for backup servers).
15510 - "log" now supports an optionnal level name (info, notice, err ...) above
15511 which nothing is sent.
15512 - replaced some strncmp() with memcmp() for better efficiency.
15513 - added "capture cookie" option which logs client and/or server cookies
15514 - cleaned up/down messages and dump servers states upon SIGHUP
15515 - added a redirection feature for errors : "errorloc <errnum> <url>"
15516 - now we won't insist on connecting to a dead server, even with a cookie,
15517 unless option "persist" is specified.
15518 - added HTTP/408 response for client request time-out and HTTP/50[234] for
15519 server reply time-out or errors.
15520
155212002/09/01 : 1.1.16
15522 - implement HTTP health checks when option "httpchk" is specified.
15523
155242002/08/07 : 1.1.15
15525 - replaced setpgid()/setpgrp() with setsid() for better portability, because
15526 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
15527
155282002/07/20 : 1.1.14
15529 - added "postonly" cookie mode
15530
155312002/07/15 : 1.1.13
15532 - tv_diff used inverted parameters which led to negative times !
15533
155342002/07/13 : 1.1.12
15535 - fixed stats monitoring, and optimized some tv_* for most common cases.
15536 - replaced temporary 'newhdr' with 'trash' to reduce stack size
15537 - made HTTP errors more HTML-fiendly.
15538 - renamed strlcpy() to strlcpy2() because of a slightly difference between
15539 their behaviour (return value), to avoid confusion.
15540 - restricted HTTP messages to HTTP proxies only
15541 - added a 502 message when the connection has been refused by the server,
15542 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
15543 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
15544 inserting a cookie, because some caches (apache) don't understand it.
15545 - fixed processing of server headers when client is in SHUTR state
15546
155472002/07/04 :
15548 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
15549 setpgid()
15550
155512002/06/04 : 1.1.11
15552 - fixed multi-cookie handling in client request to allow clean deletion
15553 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +010015554 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +010015555 - added a "nocache" option to "cookie" to specify that we explicitly want
15556 to add a "cache-control" header when we add a cookie.
15557 It is also possible to add an "Expires: <old-date>" to keep compatibility
15558 with old/broken caches.
15559
155602002/05/10 : 1.1.10
15561 - if a cookie is used in insert+indirect mode, it's desirable that the
15562 the servers don't see it. It was not possible to remove it correctly
15563 with regexps, so now it's removed automatically.
15564
155652002/04/19 : 1.1.9
15566 - don't use snprintf()'s return value as an end of message since it may
15567 be larger. This caused bus errors and segfaults in internal libc's
15568 getenv() during localtime() in send_log().
15569 - removed dead insecure send_syslog() function and all references to it.
15570 - fixed warnings on Solaris due to buggy implementation of isXXXX().
15571
155722002/04/18 : 1.1.8
15573 - option "dontlognull"
15574 - fixed "double space" bug in config parser
15575 - fixed an uninitialized server field in case of dispatch
15576 with no existing server which could cause a segfault during
15577 logging.
15578 - the pid logged was always the father's, which was wrong for daemons.
15579 - fixed wrong level "LOG_INFO" for message "proxy started".
15580
155812002/04/13 :
15582 - http logging is now complete :
15583 - ip:port, date, proxy, server
15584 - req_time, conn_time, hdr_time, tot_time
15585 - status, size, request
15586 - source address
15587
155882002/04/12 : 1.1.7
15589 - added option forwardfor
15590 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
15591 - added "log global" in "listen" section.
15592
155932002/04/09 :
15594 - added a new "global" section :
15595 - logs
15596 - debug, quiet, daemon modes
15597 - uid, gid, chroot, nbproc, maxconn
15598
155992002/04/08 : 1.1.6
15600 - regex are now chained and not limited anymore.
15601 - unavailable server now returns HTTP/502.
15602 - increased per-line args limit to 40
15603 - added reqallow/reqdeny to block some request on matches
15604 - added HTTP 400/403 responses
15605
156062002/04/03 : 1.1.5
15607 - connection logging displayed incorrect source address.
15608 - added proxy start/stop and server up/down log events.
15609 - replaced log message short buffers with larger trash.
15610 - enlarged buffer to 8 kB and replace buffer to 4 kB.
15611
156122002/03/25 : 1.1.4
15613 - made rise/fall/interval time configurable
15614
156152002/03/22 : 1.1.3
15616 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
15617 which could lead to loops.
15618
156192002/03/21 : 1.1.2
15620 - fixed a bug in buffer management where we could have a loop
15621 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
15622 => implemented an adjustable buffer limit.
15623 - fixed a bug : expiration of tasks in wait queue timeout is used again,
15624 and running tasks are skipped.
15625 - added some debug lines for accept events.
15626 - send warnings for servers up/down.
15627
156282002/03/12 : 1.1.1
15629 - fixed a bug in total failure handling
15630 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
15631
156322002/03/10 : 1.1.0
15633 - fixed a few timeout bugs
15634 - rearranged the task scheduler subsystem to improve performance,
15635 add new tasks, and make it easier to later port to librt ;
15636 - allow multiple accept() for one select() wake up ;
15637 - implemented internal load balancing with basic health-check ;
15638 - cookie insertion and header add/replace/delete, with better strings
15639 support.
15640
156412002/03/08
15642 - reworked buffer handling to fix a few rewrite bugs, and
15643 improve overall performance.
15644 - implement the "purge" option to delete server cookies in direct mode.
15645
156462002/03/07
15647 - fixed some error cases where the maxfd was not decreased.
15648
156492002/02/26
15650 - now supports transparent proxying, at least on linux 2.4.
15651
156522002/02/12
15653 - soft stop works again (fixed select timeout computation).
15654 - it seems that TCP proxies sometimes cannot timeout.
15655 - added a "quiet" mode.
15656 - enforce file descriptor limitation on socket() and accept().
15657
156582001/12/30 : release of version 1.0.2 : fixed a bug in header processing
156592001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
156602001/12/16 : release of version 1.0.0.
156612001/12/16 : added syslog capability for each accepted connection.
156622001/11/19 : corrected premature end of files and occasional SIGPIPE.
156632001/10/31 : added health-check type servers (mode health) which replies OK then closes.
156642001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
15665 with or without cookies (use keyword http for this).
156662001/09/01 : added client/server header replacing with regexps.
15667 eg:
15668 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
15669 srvexp ^Server:\ .* Server:\ Apache
156702000/11/29 : first fully working release with complete FSMs and timeouts.
156712000/11/28 : major rewrite
156722000/11/26 : first write