blob: c699e406bc91688451a5428303511f7649377c6e [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
Willy Tarreau901f75c2017-10-31 23:18:29 +010042017/10/31 : 1.8-rc1
5 - BUG/MEDIUM: server: Allocate tmptrash before using it.
6 - CONTRIB: trace: add the possibility to place trace calls in the code
7 - CONTRIB: trace: try to display the function's return value on exit
8 - CONTRIB: trace: report the base name only for file names
9 - BUILD: ssl: support OPENSSL_NO_ASYNC #define
10 - MINOR: ssl: build with recent BoringSSL library
11 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1
12 - BUG/MINOR: cli: restore "set ssl tls-key" command
13 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command
14 - IMPORT: sha1: import SHA1 functions
15 - MINOR: sample: add the sha1 converter
16 - MINOR: sample: add the hex2i converter
17 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn
18 - MINOR: ssl: don't abort after sending 16kB
19 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM
20 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted
21 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw()
22 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE
23 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE
24 - BUG/MINOR: checks: Don't forget to release the connection on error case.
25 - MINOR: buffer: add the buffer input manipulation functions
26 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution
27 - MEDIUM: cfgparse: post section callback
28 - MEDIUM: cfgparse: post parsing registration
29 - MINOR: lua: add uuid to the Class Proxy
30 - MINOR: hlua: Add regex class
31 - MINOR: http: Mark the 425 code as "Too Early".
32 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code
33 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx
34 - MINOR: ssl: generated certificate is missing in switchctx early callback
35 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1
36 - BUILD: Makefile: disable -Wunused-label
37 - MINOR: ssl/proto_http: Add keywords to take care of early data.
38 - BUG/MINOR: lua: const attribute of a string is overridden
39 - MINOR: ssl: Don't abuse ssl_options.
40 - MINOR: update proxy-protocol-v2 #define
41 - MINOR: merge ssl_sock_get calls for log and ppv2
42 - MINOR: add ALPN information to send-proxy-v2
43 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body
44 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures
45 - MEDIUM: lists: list_for_each_entry{_safe}_from functions
46 - REORG: shctx: move lock functions and struct
47 - MEDIUM: shctx: allow the use of multiple shctx
48 - REORG: shctx: move ssl functions to ssl_sock.c
49 - MEDIUM: shctx: separate ssl and shctx
50 - MINOR: shctx: rename lock functions
51 - MINOR: h1: store the status code in the H1 message
52 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL
53 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded
54 - MINOR: action: Add trk_idx inline function
55 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx
56 - MINOR: action: Add a function pointer in act_rule struct to check its validity
57 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_*
58 - MINOR: action: Add a functions to check http capture rules
59 - MINOR: action: Factorize checks on rules calling check_ptr if defined
60 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond
61 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages
62 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing
63 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file
64 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules
65 - MINOR: spoe: Move message encoding in its own function
66 - MINOR: spoe: Add a type to qualify the message list during encoding
67 - MINOR: spoe: Add a generic function to encode a list of SPOE message
68 - MEDIUM: spoe/rules: Process "send-spoe-group" action
69 - BUG/MINOR: dns: Fix CLI keyword declaration
70 - MAJOR: dns: Refactor the DNS code
71 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released
72 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing
73 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules
74 - MINOR: standard: Add memvprintf function
75 - MINOR: log: Save alerts and warnings emitted during HAProxy startup
76 - MINOR: cli: Add "show startup-logs" command
77 - MINOR: startup: Extend the scope the MODE_STARTING flag
78 - MINOR: threads: Prepare makefile to link with pthread
79 - MINOR: threads: Add THREAD_LOCAL macro
80 - MINOR: threads: Add atomic-ops and plock includes in import dir
81 - MEDIUM: threads: Add hathreads header file
82 - MINOR: threads: Add mechanism to register per-thread init/deinit functions
83 - MINOR: threads: Add nbthread parameter
84 - MEDIUM: threads: Adds a set of functions to handle sync-point
85 - MAJOR: threads: Start threads to experiment multithreading
86 - MINOR: threads: Define the sync-point inside run_poll_loop
87 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions
88 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables
89 - MEDIUM: threads/time: Many global variables from time.h are now thread-local
90 - MEDIUM: threads/logs: Make logs thread-safe
91 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool
92 - MAJOR: threads/fd: Make fd stuffs thread-safe
93 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array
94 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert
95 - MINOR: threads/fd: Process cached events of FDs depending on the process mask
96 - MINOR: threads/polling: pollers now handle FDs depending on the process mask
97 - WIP: SQUASH WITH SYNC POINT
98 - MAJOR: threads/task: handle multithread on task scheduler
99 - MEDIUM: threads/signal: Add a lock to make signals thread-safe
100 - MEDIUM: threads/listeners: Make listeners thread-safe
101 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars
102 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe
103 - MEDIUM: threads/server: Add a lock per server and atomically update server vars
104 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list
105 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe
106 - MEDIUM: threads/stick-tables: handle multithreads on stick tables
107 - MINOR: threads/sample: Change temp_smp into a thread local variable
108 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe
109 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable
110 - MAJOR: threads/applet: Handle multithreading for applets
111 - MAJOR: threads/peers: Make peers thread safe
112 - MAJOR: threads/buffer: Make buffer wait queue thread safe
113 - MEDIUM: threads/stream: Make streams list thread safe
114 - MAJOR: threads/ssl: Make SSL part thread-safe
115 - MEDIUM: threads/queue: Make queues thread-safe
116 - MAJOR: threads/map: Make acls/maps thread safe
117 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe
118 - MEDIUM: thread/vars: Make vars thread-safe
119 - MEDIUM: threads/filters: Add init/deinit callback per thread
120 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks
121 - MEDIUM: threads/compression: Make HTTP compression thread-safe
122 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread.
123 - MEDIUM: threads/lua: Add locks around the Lua execution parts.
124 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me
125 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread.
126 - MEDIUM: threads/xref: Convert xref function to a thread safe model
127 - MEDIUM: threads/tasks: Add lock around notifications
128 - MEDIUM: thread/spoe: Make the SPOE thread-safe
129 - MEDIUM: thread/dns: Make DNS thread-safe
130 - MINOR: threads: Add thread-map config parameter in the global section
131 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks
132 - MINOR: threads/checks: Set the task process_mask when a check is executed
133 - MINOR: threads/mailers: Add a lock to protect queues of email alerts
134 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency
135 - MINOR: threads: Don't start when device a detection module is used
136 - BUG/MEDIUM: threads: Run the poll loop on the main thread too
137 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there
138 - MAJOR: threads: Offically enable the threads support in HAProxy
139 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters.
140 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer
141 - BUILD: stick-tables: silence an uninitialized variable warning
142 - BUG/MINOR: dns: Fix SRV records with the new thread code.
143 - MINOR: ssl: Remove the global allow-0rtt option.
144 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit
145 - CLEANUP: threads: rename process_mask to thread_mask
146 - MINOR: h1: add a function to measure the trailers length
147 - MINOR: threads: add a portable barrier for threads and non-threads
148 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes
149 - BUG/MEDIUM: threads: Initialize the sync-point
150 - MEDIUM: connection: start to introduce a mux layer between xprt and data
151 - MINOR: connection: implement alpn registration of muxes
152 - MINOR: mux: register the pass-through mux for any ALPN string
153 - MEDIUM: session: use the ALPN token and proxy mode to select the mux
154 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major)
155 - MINOR: connection: introduce conn_stream
156 - MINOR: mux: add more methods to mux_ops
157 - MINOR: connection: introduce the conn_stream manipulation functions
158 - MINOR: mux_pt: implement remaining mux_ops methods
159 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream.
160 - MINOR: connection: make conn_stream users also check for per-stream error flag
161 - MINOR: conn_stream: new shutr/w status flags
162 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode
163 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
164 - MINOR: connection: add cs_close() to close a conn_stream
165 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection
166 - MEDIUM: connection: replace conn_full_close() with cs_close()
167 - MEDIUM: connection: make mux->detach() release the connection
168 - MEDIUM: stream: do not forcefully close the client connection anymore
169 - MEDIUM: checks: exclusively use cs_destroy() to release a connection
170 - MEDIUM: connection: add a destroy callback
171 - MINOR: session: release the listener with the session, not the stream
172 - MEDIUM: session: make use of the connection's destroy callback
173 - CONTRIB: hpack: implement a reverse huffman table generator for hpack
174 - MINOR: hpack: implement the HPACK Huffman table decoder
175 - MINOR: hpack: implement the header tables management
176 - MINOR: hpack: implement the decoder
177 - MEDIUM: hpack: implement basic hpack encoding
178 - MINOR: h2: centralize all HTTP/2 protocol elements and constants
179 - MINOR: h2: create a very minimalistic h2 mux
180 - MINOR: h2: expose tune.h2.header-table-size to configure the table size
181 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size
182 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams
183 - MINOR: h2: create the h2c struct and allocate its pool
184 - MINOR: h2: create the h2s struct and the associated pool
185 - MINOR: h2: handle two extra stream states for errors
186 - MINOR: h2: add a frame header descriptor for incoming frames
187 - MEDIUM: h2: allocate and release the h2c context on connection init/end
188 - MEDIUM: h2: implement basic recv/send/wake functions
189 - MEDIUM: h2: dynamically allocate the demux buffer on Rx
190 - MEDIUM: h2: implement the mux buffer allocator
191 - MINOR: h2: add the connection and stream flags listing the causes for blocking
192 - MINOR: h2: add function h2s_id() to report a stream's ID
193 - MINOR: h2: small function to know when the mux is busy
194 - MINOR: h2: new function h2c_error to mark an error on the connection
195 - MINOR: h2: new function h2s_error() to mark an error on a stream
196 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame
197 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header
198 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer
199 - MINOR: h2: add stream lookup function based on the stream ID
200 - MINOR: h2: create dummy idle and closed streams
201 - MINOR: h2: add the function to create a new stream
202 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability
203 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling
204 - MINOR: h2: also terminate the connection on shutr
205 - MEDIUM: h2: properly consider all conditions for end of connection
206 - MEDIUM: h2: wake the connection up for send on pending streams
207 - MEDIUM: h2: start to implement the frames processing loop
208 - MINOR: h2: add a function to send a GOAWAY error frame
209 - MINOR: h2: match the H2 connection preface on init
210 - MEDIUM: h2: enable connection polling for send when a cs wants to emit
211 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full
212 - MEDIUM: h2: process streams pending for sending
213 - MINOR: h2: send a real SETTINGS frame based on the configuration
214 - MEDIUM: h2: detect the presence of the first settings frame
215 - MINOR: h2: create a stream parser for the demuxer
216 - MINOR: h2: implement PING frames
217 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings
218 - MINOR: h2: lookup the stream during demuxing
219 - MEDIUM: h2: honor WINDOW_UPDATE frames
220 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames
221 - MINOR: h2: handle CONTINUATION frames
222 - MEDIUM: h2: partial implementation of h2_detach()
223 - MEDIUM: h2: unblock a connection when its current stream detaches
224 - MEDIUM: h2: basic processing of HEADERS frame
225 - MEDIUM: h2: don't use trash to decode headers!
226 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response
227 - MEDIUM: h2: send the H1 response body as DATA frames
228 - MEDIUM: h2: skip the response trailers if any
229 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response
230 - MEDIUM: h2: send WINDOW_UPDATE frames for connection
231 - MEDIUM: h2: handle request body in DATA frames
232 - MINOR: h2: handle RST_STREAM frames
233 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr
234 - MINOR: h2: use a common function to signal some and all streams.
235 - MEDIUM: h2: handle GOAWAY frames
236 - MINOR: h2: centralize the check for the idle streams
237 - MINOR: h2: centralize the check for the half-closed(remote) streams
238 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY
239 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client
240 - MEDIUM: h2: perform a graceful shutdown on "Connection: close"
241 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response
242 - MEDIUM: h2: apply a timeout to h2 connections
243 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection
244 - MEDIUM: shctx: forbid shctx to read more than expected
245 - MEDIUM: cache: configuration parsing and initialization
246 - MEDIUM: cache: store objects in cache
247 - MEDIUM: cache: deliver objects from cache
248
Willy Tarreauf08137c2017-10-22 10:13:45 +02002492017/10/22 : 1.8-dev3
250 - REORG: ssl: move defines and methodVersions table upper
251 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table
252 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list
253 - MEDIUM: ssl: disable SSLv3 per default for bind
254 - BUG/MAJOR: ssl: fix segfault on connection close using async engines.
255 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine
256 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler
257 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros
258 - BUG/MEDIUM: build without openssl broken
259 - BUG/MINOR: warning: need_resend may be used uninitialized
260 - BUG/MEDIUM: misplaced exit and wrong exit code
261 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04
262 - BUILD: scripts: make publish-release support bare repositories
263 - BUILD: scripts: add an automatic mode for publish-release
264 - BUILD: scripts: add a "quiet" mode to publish-release
265 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer
266 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers
267 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO.
268 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map
269 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0
270 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING
271 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue.
272 - BUG/MAJOR: server: Segfault after parsing server state file.
273 - BUG/MEDIUM: unix: never unlink a unix socket from the file system
274 - scripts: create-release pass -n to tail
275 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity
276 - BUG/MEDIUM: fix segfault when no argument to -x option
277 - MINOR: warning on multiple -x
278 - MINOR: mworker: don't copy -x argument anymore in copy_argv()
279 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master
280 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing.
281 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767
282 - BUG/MINOR: log: pin the front connection when front ip/ports are logged
283 - DOC: fix references to the section about the unix socket
284 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue
285 - MAJOR: task: task scheduler rework.
286 - MINOR: task/stream: tasks related to a stream must be init by the caller.
287 - MINOR: queue: Change pendconn_get_next_strm into private function
288 - MINOR: backends: Change get_server_sh/get_server_uh into private function
289 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions
290 - MEDIUM: stream: make stream_new() always set the target and analysers
291 - MINOR: frontend: initialize HTTP layer after the debugging code
292 - MINOR: connection: add a .get_alpn() method to xprt_ops
293 - MINOR: ssl: add a get_alpn() method to ssl_sock
294 - MINOR: frontend: retrieve the ALPN name when available
295 - MINOR: frontend: report the connection's ALPN in the debug output
296 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL
297 - MINOR: connection: send data before receiving
298 - MAJOR: applet: applet scheduler rework.
299 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections
300 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL.
301 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli.
302 - BUG/MAJOR: compression: Be sure to release the compression state in all cases
303 - MINOR: compression: Use a memory pool to allocate compression states
304 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded.
305 - DOC: fix references to the section about time format.
306 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance.
307 - BUG/MAJOR: http: fix buffer overflow on loguri buffer.
308 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections
309 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel
310 - BUG/MINOR: http: Don't reset the transaction if there are still data to send
311 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels
312 - MINOR: peers: Add additional information to stick-table definition messages.
313 - BUG/MINOR: http: properly handle all 1xx informational responses
314 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer
315 - BUG/MINOR: peers: peer synchronization issue (with several peers sections).
316 - CLEANUP: hdr_idx: make some function arguments const where possible
317 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x".
318 - BUG/MINOR: lua: In error case, the safe mode is not removed
319 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode
320 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted
321 - BUG/MEDIUM: lua: bad memory access
322 - BUG/MINOR: Lua: variable already initialized
323 - DOC: update CONTRIBUTING regarding optional parts and message format
324 - DOC: update the list of OpenSSL versions in the README
325 - BUG/MINOR: http: Set the response error state in http_sync_res_state
326 - MINOR: http: Reorder/rewrite checks in http_resync_states
327 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags
328 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined
329 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions
330 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states
331 - BUG/MINOR: contrib/modsecurity: BSD build fix
332 - BUG/MINOR: contrib/mod_defender: build fix
333 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3
334 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy
335 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_*
336 - MINOR: tools: add a portable timegm() alternative
337 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10
338 - DOC: Updated 51Degrees git URL to point to a stable version.
339 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state
340 - MINOR: memory: remove macros
341 - BUG/MINOR: lua: Fix Server.get_addr() port values
342 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr()
343 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup
344 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw
345 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known
346 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them
347 - MINOR: task: always preinitialize the task's timeout in task_init()
348 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new()
349 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler
350 - MINOR: lua: Add proxy as member of proxy object.
351 - DOC: lua: Proxy class doc update
352 - MINOR: lua: Add lists of frontends and backends
353 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification
354 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost
355 - MINOR: ssl: add a new error codes for wrong server certificates
356 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check
357 - MINOR: ssl: add "no-ca-names" parameter for bind
358 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions.
359 - DOC: fix alphabetical order of "show commands" in management.txt
360 - MINOR: listener: add a function to return a listener's state as a string
361 - MINOR: cli: add a new "show fd" command
362 - BUG/MEDIUM: ssl: Fix regression about certificates generation
363 - MINOR: Add server port field to server state file.
364 - MINOR: ssl: allow to start without certificate if strict-sni is set
365 - MINOR: dns: Cache previous DNS answers.
366 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ.
367 - Add a few functions to do unaligned access.
368 - MINOR: dns: Handle SRV records.
369 - MINOR: check: Fix checks when using SRV records.
370 - MINOR: doc: Document SRV label usage.
371 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd"
372 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2
373 - BUILD/MINOR: build without openssl still broken
374 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin
375 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit()
376 - MINOR: init: Fix CPU affinity setting on FreeBSD.
377 - MINOR: dns: Update analysis of TRUNCATED response for SRV records
378 - MINOR: dns: update record dname matching for SRV query types
379 - MINOR: dns: update dns response buffer reading pointer due to SRV record
380 - MINOR: dns: duplicate entries in resolution wait queue for SRV records
381 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records
382 - MINOR: dns: ability to use a SRV resolution for multiple backends
383 - MINOR: dns: enable caching of responses for server set by a SRV record
384 - MINOR: dns: new dns record type (RTYPE) for OPT
385 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable
386 - MINOR: dns: default "hold obsolete" timeout set to 0
387 - MINOR: chunks: add chunk_memcpy() and chunk_memcat()
388 - MINOR: session: add a streams field to the session struct
389 - MINOR: stream: link the stream to its session
390 - MEDIUM: session: do not free a session until no stream references it
391 - MINOR: ist: implement very simple indirect strings
392 - TESTS: ist: add a test file for the functions
393 - MINOR: http: export some of the HTTP parser macros
394 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer().
395 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status
396 - MINOR: dns: Maximum DNS udp payload set to 8192
397 - MINOR: dns: automatic reduction of DNS accpeted payload size
398 - MINOR: dns: make SRV record processing more verbose
399 - CLEANUP: dns: remove duplicated code in dns_resolve_recv()
400 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response()
401 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU
402 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow
403 - BUG/MAJOR: lua: fix the impact of the scheduler changes again
404 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes
405 - MINOR: lua: properly process the contents of the content-length field
406 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service
407 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet
408 - OPTIM: lua: don't add "Connection: close" on the response
409 - REORG/MEDIUM: connection: introduce the notion of connection handle
410 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag
411 - MEDIUM: connection: get rid of data->init() which was not for data
412 - MEDIUM: stream: make stream_new() allocate its own task
413 - CLEANUP: listener: remove the unused handler field
414 - MEDIUM: session: add a pointer to a struct task in the session
415 - MINOR: stream: provide a new stream creation function for connections
416 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH
417 - CLEANUP: connection: remove the unused conn_sock_shutw_pending()
418 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH
419 - DOC: add CLI info on privilege levels
420 - DOC: Refer to Mozilla TLS info / config generator
421 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf
422 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode
423 - DOC: Add note about "* " prefix in CSV stats
424 - CLEANUP: memory: Remove unused function pool_destroy
425 - MINOR: listeners: Change listener_full and limit_listener into private functions
426 - MINOR: listeners: Change enable_listener and disable_listener into private functions
427 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed
428 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab
429 - MINOR: backends: Make get_server_* functions explicitly static
430 - MINOR: applet: Check applets_active_queue before processing applets queue
431 - MINOR: chunks: Use dedicated function to init/deinit trash buffers
432 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked
433 - MINOR: logs: Use dedicated function to init/deinit log buffers
434 - MINOR: logs: Realloc log buffers only after the config is parsed and checked
435 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function
436 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer
437 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header
438 - MINOR: fd: Add fd_active function
439 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions
440 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers
441 - MINOR: freq_ctr: Return the new value after an update
442 - MEDIUM: check: server states and weight propagation re-work
443 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR
444 - MINOR: fd: Add fd_update_events function
445 - MINOR: polling: Use fd_update_events to update events seen for a fd
446 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file
447 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file"
448 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use
449 - BUG/MEDIUM: http: Close streams for connections closed before a redirect
450 - BUG/MINOR: Lua: The socket may be destroyed when we try to access.
451 - MINOR: xref: Add a new xref system
452 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua
453 - MINOR: tasks: Move Lua notification from Lua to tasks
454 - MINOR: net_helper: Inline functions meant to be inlined.
455 - MINOR: cli: add socket commands and config to prepend informational messages with severity
456 - MINOR: add severity information to cli feedback messages
457 - BUILD: Makefile: add a function to detect support by the compiler of certain options
458 - BUILD: Makefile: shut certain gcc/clang stupid warnings
459 - BUILD: Makefile: improve detection of support for compiler warnings
460 - MINOR: peers: don't reference the incoming listener on outgoing connections
461 - MINOR: frontend: don't retrieve ALPN on the critical path
462 - MINOR: protocols: always pass a "port" argument to the listener creation
463 - MINOR: protocols: register the ->add function and stop calling them directly
464 - MINOR: unix: remove the now unused proto_uxst.h file
465 - MINOR: listeners: new function create_listeners
466 - MINOR: listeners: make listeners count consistent with reality
467 - MEDIUM: session: take care of incrementing/decrementing jobs
468 - MINOR: listener: new function listener_release
469 - MINOR: session: small cleanup of conn_complete_session()
470 - MEDIUM: session: factor out duplicated code for conn_complete_session
471 - MEDIUM: session: count the frontend's connections at a single place
472 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo
473 - BUG/MINOR: compression: Check response headers before http-response rules eval
474 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed
475 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb
476 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl
477 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return
478 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return
479 - MINOR: tools: make my_htonll() more efficient on x86_64
480 - MINOR: buffer: add b_del() to delete a number of characters
481 - MINOR: buffer: add b_end() and b_to_end()
482 - MINOR: net_helper: add functions to read from vectors
483 - MINOR: net_helper: add write functions
484 - MINOR: net_helper: add 64-bit read/write functions
485 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags
486 - MINOR: ist: add a macro to ease const array initialization
487 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server
488 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2)
489 - BUG/MINOR: log: fixing small memory leak in error code path.
490 - BUG/MINOR: contrib/halog: fixing small memory leak
491 - BUG/MEDIUM: tcp/http: set-dst-port action broken
492 - CLEANUUP: checks: don't set conn->handle.fd to -1
493 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O
494 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer
495 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers!
496 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument
497 - MINOR: checks: make chk_report_conn_err() take a check, not a connection
498 - CLEANUP: checks: remove misleading comments and statuses for external process
499 - CLEANUP: checks: don't report report the fork() error twice
500 - CLEANUP: checks: do not allocate a connection for process checks
501 - TESTS: checks: add a simple test config for external checks
502 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment
503 - TESTS: checks: add a simple test config for tcp-checks
504 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection
505 - MINOR: checks: don't create then kill a dummy connection before tcp-checks
506 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection
507 - MEDIUM: checks: do not allocate a permanent connection anymore
508 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs
509 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed
510 - BUG/MAJOR: stream-int: don't re-arm recv if send fails
511 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12
512 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12
513 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files.
514 - MINOR: compiler: restore the likely() wrapper for gcc 5.x
515 - MINOR: session: remove the list of streams from struct session
516 - DOC: fix some typos
517 - MINOR: server: add the srv_queue() sample fetch method
518 - MINOR: payload: add new sample fetch functions to process distcc protocol
519 - MAJOR: servers: propagate server status changes asynchronously.
520 - BUG/MEDIUM: ssl: fix OCSP expiry calculation
521 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE
522 - MINOR: server: Handle weight increase in consistent hash.
523 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks.
524 - BUG/MINOR: tools: fix my_htonll() on x86_64
525 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters().
526 - BUG/MAJOR: lua: scheduled task is freezing.
527 - MINOR: buffer: add bo_del() to delete a number of characters from output
528 - MINOR: buffer: add a function to match against string patterns
529 - MINOR: buffer: add two functions to inject data into buffers
530 - MINOR: buffer: add buffer_space_wraps()
531 - REORG: channel: finally rename the last bi_* / bo_* functions
532 - MINOR: buffer: add bo_getblk() and bo_getblk_nc()
533 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents
534 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions
535 - MINOR: ist: add ist0() to add a trailing zero to a string.
536 - BUG/MEDIUM: log: check result details truncated.
537 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer
538 - REORG: http: move some very http1-specific parts to h1.{c,h}
539 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h}
540 - REORG: http: move the HTTP/1 header block parser to h1.c
541 - MEDIUM: http: make the chunk size parser only depend on the buffer
542 - MEDIUM: http: make the chunk crlf parser only depend on the buffer
543 - MINOR: h1: add struct h1m for basic HTTP/1 messages
544 - MINOR: http: add very simple header management based on double strings
545 - MEDIUM: h1: reimplement the http/1 response parser for the gateway
546 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_*
547 - MEDIUM: connection: make conn_sock_shutw() aware of lingering
548 - MINOR: connection: ensure conn_ctrl_close() also resets the fd
549 - MINOR: connection: add conn_stop_tracking() to disable tracking
550 - MINOR: tcp: use conn_full_close() instead of conn_force_close()
551 - MINOR: unix: use conn_full_close() instead of conn_force_close()
552 - MINOR: checks: use conn_full_close() instead of conn_force_close()
553 - MINOR: session: use conn_full_close() instead of conn_force_close()
554 - MINOR: stream: use conn_full_close() instead of conn_force_close()
555 - MINOR: stream: use conn_full_close() instead of conn_force_close()
556 - MINOR: backend: use conn_full_close() instead of conn_force_close()
557 - MINOR: stream-int: use conn_full_close() instead of conn_force_close()
558 - MINOR: connection: remove conn_force_close()
559 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct
560
Willy Tarreauf57a29a2017-06-02 15:59:51 +02005612017/06/02 : 1.8-dev2
562 - CLEANUP: server: moving netinet/tcp.h inclusion
563 - DOC: changed "block"(deprecated) examples to http-request deny
564 - DOC: add few comments to examples.
565 - DOC: update sample code for PROXY protocol
566 - DOC: mention lighttpd 1.4.46 implements PROXY
567 - MINOR server: Restrict dynamic cookie check to the same proxy.
568 - DOC: stick-table is available in frontend sections
569 - BUG/MINOR: server : no transparent proxy for DragonflyBSD
570 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header()
571 - BUILD/MINOR: tools: fix build warning in debug_hexdump()
572 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets.
573 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character
574 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation
575 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses
576 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error
577 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr()
578 - BUG/MEDIUM: servers: unbreak server weight propagation
579 - MINOR: lua: ensure the memory allocator is used all the time
580 - MINOR: cli: Add a command to send listening sockets.
581 - MINOR: global: Add an option to get the old listening sockets.
582 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc.
583 - MINOR: doc: document the -x flag
584 - MINOR: proxy: Don't close FDs if not our proxy.
585 - MINOR: socket transfer: Set a timeout on the socket.
586 - MINOR: systemd wrapper: add support for passing the -x option.
587 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing.
588 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting.
589 - CLEANUP: logs: typo: simgle => single
590 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr()
591 - MEDIUM: config: don't check config validity when there are fatal errors
592 - BUG/MAJOR: Use -fwrapv.
593 - BUG/MINOR: server: don't use "proxy" when px is really meant.
594 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed
595 - BUG/MINOR: server: missing default server 'resolvers' setting duplication.
596 - MINOR: server: Extract the code responsible of copying default-server settings.
597 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing.
598 - MINOR: server: Add 'server-template' new keyword supported in backend sections.
599 - MINOR: server: Add server_template_init() function to initialize servers from a templates.
600 - DOC: Add documentation for new "server-template" keyword.
601 - DOC: add layer 4 links/cross reference to "block" keyword.
602 - DOC: errloc/errorloc302/errorloc303 missing status codes.
603 - BUG/MEDIUM: lua: memory leak
604 - CLEANUP: lua: remove test
605 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances
606 - BUG/MINOR: change header-declared function to static inline
607 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common
608 - MINOR: Add binary encoding request header sample fetch
609 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers
610 - MINOR: Add ModSecurity wrapper as contrib
611 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1.
612 - DOC: update RFC references
613 - CONTRIB: tcploop: add action "X" to execute a command
614 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket.
615 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD
616 - BUG/MINOR: checks: don't send proxy protocol with agent checks
617 - MINOR: ssl: add prefer-client-ciphers
618 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server.
619 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx
620 - MEDIUM: ssl: calculate the real min/max TLS version and find holes
621 - MINOR: ssl: support TLSv1.3 for bind and server
622 - MINOR: ssl: show methods supported by openssl
623 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server
624 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility.
625 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option
626 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems).
627 - MINOR: sample: Add b64dec sample converter
628 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything
629 - MINOR: cli: add ACCESS_LVL_MASK to store the access level
630 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs
631 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound
632 - MEDIUM: ssl: add basic support for OpenSSL crypto engine
633 - MAJOR: ssl: add openssl async mode support
634 - MEDIUM: ssl: handle multiple async engines
635 - MINOR: boringssl: basic support for OCSP Stapling
636 - MEDIUM: mworker: replace systemd mode by master worker mode
637 - MEDIUM: mworker: handle reload and signals
638 - MEDIUM: mworker: wait mode on reload failure
639 - MEDIUM: mworker: try to guess the next stats socket to use with -x
640 - MEDIUM: mworker: exit-on-failure option
641 - MEDIUM: mworker: workers exit when the master leaves
642 - DOC: add documentation for the master-worker mode
643 - MEDIUM: systemd: Type=forking in unit file
644 - MAJOR: systemd-wrapper: get rid of the wrapper
645 - MINOR: log: Add logurilen tunable.
646 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution
647 - MINOR: dns: smallest DNS fqdn size
648 - MINOR: dns: functions to manage memory for a DNS resolution structure
649 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution()
650 - REORG: dns: dns_option structure, storage of hostname_dn
651 - MINOR: dns: new snr_check_ip_callback function
652 - MAJOR: dns: save a copy of the DNS response in struct resolution
653 - MINOR: dns: implement a LRU cache for DNS resolutions
654 - MINOR: dns: make 'ancount' field to match the number of saved records
655 - MINOR: dns: introduce roundrobin into the internal cache (WIP)
656 - MAJOR/REORG: dns: DNS resolution task and requester queues
657 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE
658 - MINOR: Add Mod Defender integration as contrib
659 - CLEANUP: str2mask return code comment: non-zero -> zero.
660 - MINOR: tools: make debug_hexdump() use a const char for the string
661 - MINOR: tools: make debug_hexdump() take a string prefix
662 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA
663
Willy Tarreau7b677262017-04-03 09:27:49 +02006642017/04/03 : 1.8-dev1
665 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
666 - BUG/MINOR: stats: make field_str() return an empty string on NULL
667 - DOC: Spelling fixes
668 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used
669 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn
670 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER
671 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers
672 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode
673 - BUG/MAJOR: stream: fix session abort on resource shortage
674 - OPTIM: stream-int: don't disable polling anymore on DONT_READ
675 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI
676 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys"
677 - DOC: Fix map table's format
678 - DOC: Added 51Degrees conv and fetch functions to documentation.
679 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
680 - DOC: mention that req_tot is for both frontends and backends
681 - BUG/MEDIUM: variables: some variable name can hide another ones
682 - MINOR: lua: Allow argument for actions
683 - BUILD: rearrange target files by build time
684 - CLEANUP: hlua: just indent functions
685 - MINOR: lua: give HAProxy variable access to the applets
686 - BUG/MINOR: stats: fix be/sessions/max output in html stats
687 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id
688 - DOC: lua: Documentation about some entry missing
689 - DOC: lua: Add documentation about variable manipulation from applet
690 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set
691 - DOC: Add undocumented argument of the trace filter
692 - DOC: Fix some typo in SPOE documentation
693 - MINOR: cli: Remove useless call to bi_putchk
694 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full
695 - MINOR: applet: Count number of (active) applets
696 - MINOR: task: Rename run_queue and run_queue_cur counters
697 - BUG/MEDIUM: stream: Save unprocessed events for a stream
698 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled
699 - BUILD/MEDIUM: Fixing the build using LibreSSL
700 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2)
701 - SCRIPTS: git-show-backports: fix a harmless typo
702 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message
703 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW
704 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context
705 - CLEANUP: applet/table: add an "action" entry in ->table context
706 - CLEANUP: applet: remove the now unused appctx->private field
707 - DOC: lua: documentation about time parser functions
708 - DOC: lua: improve links
709 - DOC: lua: section declared twice
710 - MEDIUM: cli: 'show cli sockets' list the CLI sockets
711 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes
712 - BUG/MINOR: cli: "show cli sockets" would always report process 64
713 - CLEANUP: lua: rename one of the lua appctx union
714 - BUG/MINOR: lua/cli: bad error message
715 - MEDIUM: lua: use memory pool for hlua struct in applets
716 - MINOR: lua/signals: Remove Lua part from signals.
717 - DOC: cli: show cli sockets
718 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser
719 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function
720 - CLEANUP: applet: group all CLI contexts together
721 - CLEANUP: stats: move a misplaced stats context initialization
722 - MINOR: cli: add two general purpose pointers and integers in the CLI struct
723 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union
724 - MINOR: appctx/cli: remove the env entry from the appctx union
725 - MINOR: appctx/cli: remove the "be" entry from the appctx union
726 - MINOR: appctx/cli: remove the "dns" entry from the appctx union
727 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union
728 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union
729 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers
730 - MINOR/DOC: lua: just precise one thing
731 - DOC: fix small typo in fe_id (backend instead of frontend)
732 - BUG/MINOR: Fix the sending function in Lua's cosocket
733 - BUG/MINOR: lua: memory leak executing tasks
734 - BUG/MINOR: lua: bad return code
735 - BUG/MINOR: lua: memleak when Lua/cli fails
736 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools
737 - CLEANUP: haproxy: statify unexported functions
738 - MINOR: haproxy: add a registration for build options
739 - CLEANUP: wurfl: use the build options list to report it
740 - CLEANUP: 51d: use the build options list to report it
741 - CLEANUP: da: use the build options list to report it
742 - CLEANUP: namespaces: use the build options list to report it
743 - CLEANUP: tcp: use the build options list to report transparent modes
744 - CLEANUP: lua: use the build options list to report it
745 - CLEANUP: regex: use the build options list to report the regex type
746 - CLEANUP: ssl: use the build options list to report the SSL details
747 - CLEANUP: compression: use the build options list to report the algos
748 - CLEANUP: auth: use the build options list to report its support
749 - MINOR: haproxy: add a registration for post-check functions
750 - CLEANUP: checks: make use of the post-init registration to start checks
751 - CLEANUP: filters: use the function registration to initialize all proxies
752 - CLEANUP: wurfl: make use of the late init registration
753 - CLEANUP: 51d: make use of the late init registration
754 - CLEANUP: da: make use of the late init registration code
755 - MINOR: haproxy: add a registration for post-deinit functions
756 - CLEANUP: wurfl: register the deinit function via the dedicated list
757 - CLEANUP: 51d: register the deinitialization function
758 - CLEANUP: da: register the deinitialization function
759 - CLEANUP: wurfl: move global settings out of the global section
760 - CLEANUP: 51d: move global settings out of the global section
761 - CLEANUP: da: move global settings out of the global section
762 - MINOR: cfgparse: add two new functions to check arguments count
763 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock
764 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock
765 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock
766 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock
767 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock
768 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c
769 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
770 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs
771 - BUG/MINOR: stats: fix be/sessions/current out in typed stats
772 - MINOR: tcp-rules: check that the listener exists before updating its counters
773 - MEDIUM: spoe: don't create a dummy listener for outgoing connections
774 - MINOR: listener: move the transport layer pointer to the bind_conf
775 - MEDIUM: move listener->frontend to bind_conf->frontend
776 - MEDIUM: ssl: remote the proxy argument from most functions
777 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops
778 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf()
779 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops
780 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf()
781 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL
782 - MINOR: connection: add a minimal transport layer registration system
783 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock
784 - CLEANUP: connection: unexport raw_sock and ssl_sock
785 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops
786 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv()
787 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback
788 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c
789 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
790 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes
791 - BUG/MINOR: systemd: potential zombie processes
792 - DOC: Add timings events schemas
793 - BUILD: lua: build failed on FreeBSD.
794 - MINOR: samples: add xx-hash functions
795 - MEDIUM: regex: pcre2 support
796 - BUG/MINOR: option prefer-last-server must be ignored in some case
797 - MINOR: stats: Support "select all" for backend actions
798 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0
799 - BUG/MAJOR: channel: Fix the definition order of channel analyzers
800 - BUG/MINOR: http: report real parser state in error captures
801 - BUILD: scripts: automatically update the branch in version.h when releasing
802 - MINOR: tools: add a generic hexdump function for debugging
803 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests
804 - MINOR: http: custom status reason.
805 - MINOR: connection: add sample fetch "fc_rcvd_proxy"
806 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options
807 - BUG/MINOR: tools: fix off-by-one in port size check
808 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family
809 - MEDIUM: server: split the address and the port into two different fields
810 - MINOR: tools: make str2sa_range() return the port in a separate argument
811 - MINOR: server: take the destination port from the port field, not the addr
812 - MEDIUM: server: disable protocol validations when the server doesn't resolve
813 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0
814 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage
815 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL
816 - MINOR: Use "500 Internal Server Error" for 500 error/status code message.
817 - MINOR: proto_http.c 502 error txt typo.
818 - DOC: add deprecation notice to "block"
819 - MINOR: compression: fix -vv output without zlib/slz
820 - BUG/MINOR: Reset errno variable before calling strtol(3)
821 - MINOR: ssl: don't show prefer-server-ciphers output
822 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration
823 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream
824 - MAJOR: ssl: bind configuration per certificat
825 - MINOR: ssl: add curve suite for ECDHE negotiation
826 - MINOR: checks: Add agent-addr config directive
827 - MINOR: cli: Add possiblity to change agent config via CLI/socket
828 - MINOR: doc: Add docs for agent-addr configuration variable
829 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands
830 - BUILD: ssl: fix to build (again) with boringssl
831 - BUILD: ssl: fix build on OpenSSL 1.0.0
832 - BUILD: ssl: silence a warning reported for ERR_remove_state()
833 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes()
834 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility
835 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds
836 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled
837 - MINOR: server: extend the flags to 32 bits
838 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword
839 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested
840 - BUG/MAJOR: dns: restart sockets after fork()
841 - MINOR: chunks: implement a simple dynamic allocator for trash buffers
842 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer
843 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined
844 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer
845 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response
846 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested
847 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw()
848 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1'
849 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule
850 - MINOR: http: don't close when redirect location doesn't start with "/"
851 - MEDIUM: boringssl: support native multi-cert selection without bundling
852 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate
853 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING
854 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation.
855 - BUILD: ssl: fix build with -DOPENSSL_NO_DH
856 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist
857 - MEDIUM: ssl: remove ssl-options from crt-list
858 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored.
859 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls
860 - MINOR: ssl: improved cipherlist captures
861 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters
862 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section
863 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents
864 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example
865 - MINOR: spoe: Remove SPOE details from the appctx structure
866 - MINOR: spoe: Add status code in error variable instead of hardcoded value
867 - MINOR: spoe: Send a log message when an error occurred during event processing
868 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages
869 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer
870 - MINOR: spoe: Use the min of all known max_frame_size to encode messages
871 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames
872 - MINOR: spoe: Add support for fragmentation capability in the SPOA example
873 - MAJOR: spoe: refactor the filter to clean up the code
874 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames
875 - REORG: spoe: Move struct and enum definitions in dedicated header file
876 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file
877 - MINOR: spoe: Improve implementation of the payload fragmentation
878 - MINOR: spoe: Add support of negation for options in SPOE configuration file
879 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section
880 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing
881 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section
882 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section
883 - DOC: spoe: Update SPOE documentation to reflect recent changes
884 - MINOR: config: warn when some HTTP rules are used in a TCP proxy
885 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file
886 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup
887 - BUG/MINOR: Fix "get map <map> <value>" CLI command
888 - MINOR: Add nbsrv sample converter
889 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv()
890 - MINOR: Add hostname sample fetch
891 - CLEANUP: Remove comment that's no longer valid
892 - MEDIUM: http_error_message: txn->status / http_get_status_idx.
893 - MINOR: http-request tarpit deny_status.
894 - CLEANUP: http: make http_server_error() not set the status anymore
895 - MEDIUM: stats: Add JSON output option to show (info|stat)
896 - MEDIUM: stats: Add show json schema
897 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer
898 - MINOR: server: Add dynamic session cookies.
899 - MINOR: cli: Let configure the dynamic cookies from the cli.
900 - BUG/MINOR: checks: attempt clean shutw for SSL check
901 - CONTRIB: tcploop: make it build on FreeBSD
902 - CONTRIB: tcploop: fix time format to silence build warnings
903 - CONTRIB: tcploop: report action 'K' (kill) in usage message
904 - CONTRIB: tcploop: fix connect's address length
905 - CONTRIB: tcploop: use the trash instead of NULL for recv()
906 - BUG/MEDIUM: listener: do not try to rebind another process' socket
907 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided.
908 - CLEANUP: config: Typo in comment.
909 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze
910 - TESTS: add a test configuration to stress handshake combinations
911 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection
912 - BUG/MEDIUM: connection: ensure to always report the end of handshakes
913 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA
914 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA
915 - BUG: payload: fix payload not retrieving arbitrary lengths
916 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility
917 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl
918 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule
919 - MINOR: doc: 2.4. Examples should be 2.5. Examples
920 - BUG/MEDIUM: stream: fix client-fin/server-fin handling
921 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller
922 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available
923 - OPTIM: poll: enable support for POLLRDHUP
924 - MINOR: kqueue: exclusively rely on the kqueue returned status
925 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy
926 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data
927 - DOC/MINOR: Fix typos in proxy protocol doc
928 - DOC: Protocol doc: add checksum, TLV type ranges
929 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM
930 - DOC: Protocol doc: add noop TLV
931 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time
932 - MINOR: dns: improve DNS response parsing to use as many available records as possible
933 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity().
934 - MINOR: server: irrelevant error message with 'default-server' config file keyword.
935 - MINOR: server: Make 'default-server' support 'backup' keyword.
936 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword.
937 - CLEANUP: server: code alignement.
938 - MINOR: server: Make 'default-server' support 'non-stick' keyword.
939 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords.
940 - MINOR: server: Make 'default-server' support 'check-ssl' keyword.
941 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords.
942 - CLEANUP: server: code alignement.
943 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords.
944 - MINOR: server: Make 'default-server' support 'ssl' keyword.
945 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords.
946 - CLEANUP: server: code alignement.
947 - MINOR: server: Make 'default-server' support 'verify' keyword.
948 - MINOR: server: Make 'default-server' support 'verifyhost' setting.
949 - MINOR: server: Make 'default-server' support 'check' keyword.
950 - MINOR: server: Make 'default-server' support 'track' setting.
951 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings.
952 - MINOR: server: Make 'default-server' support 'redir' keyword.
953 - MINOR: server: Make 'default-server' support 'observe' keyword.
954 - MINOR: server: Make 'default-server' support 'cookie' keyword.
955 - MINOR: server: Make 'default-server' support 'ciphers' keyword.
956 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword.
957 - MINOR: server: Make 'default-server' support 'namespace' keyword.
958 - MINOR: server: Make 'default-server' support 'source' keyword.
959 - MINOR: server: Make 'default-server' support 'sni' keyword.
960 - MINOR: server: Make 'default-server' support 'addr' keyword.
961 - MINOR: server: Make 'default-server' support 'disabled' keyword.
962 - MINOR: server: Add 'no-agent-check' server keyword.
963 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings.
964 - MINOR: doc: fix use-server example (imap vs mail)
965 - BUG/MEDIUM: tcp: don't require privileges to bind to device
966 - BUILD: make the release script use shortlog for the final changelog
967 - BUILD: scripts: fix typo in announce-release error message
968 - CLEANUP: time: curr_sec_ms doesn't need to be exported
969 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization.
970 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode.
971 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers
972 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request
973 - CLEANUP: http: Remove channel_congested function
974 - CLEANUP: buffers: Remove buffer_bounce_realign function
975 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions
976 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request
977 - MINOR: http: Add debug messages when HTTP body analyzers are called
978 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled
979 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze
980 - DOC: fix parenthesis and add missing "Example" tags
981 - DOC: update the contributing file
982 - DOC: log-format/tcplog/httplog update
983 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections
984
Willy Tarreau0e658fb2016-11-25 16:55:50 +01009852016/11/25 : 1.8-dev0
986
Willy Tarreaue59fcdd2016-11-25 16:39:17 +01009872016/11/25 : 1.7.0
988 - SCRIPTS: make publish-release also copy the new SPOE doc
989 - BUILD: http: include types/sample.h in proto_http.h
990 - BUILD: debug/flags: remove test for SF_COMP_READY
991 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT
992 - MINOR: lua: add function which return true if the channel is full.
993 - MINOR: lua: add ip addresses and network manipulation function
994 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes
995 - CONTRIB: tcploop: implement fork()
996 - CONTRIB: tcploop: implement logging when called with -v
997 - CONTRIB: tcploop: update the usage output
998 - CONTRIB: tcploop: support sending plain strings
999 - CONTRIB: tcploop: don't report failed send() or recv()
1000 - CONTRIB: tcploop: add basic loops via a jump instruction
1001 - BUG/MEDIUM: channel: bad unlikely macro
1002 - CLEANUP: lua: move comment
1003 - CLEANUP: lua: control executed twice
1004 - BUG/MEDIUM: ssl: Store certificate filename in a variable
1005 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP
1006 - CLEANUP: ssl: Remove goto after return dead code
1007 - CLEANUP: ssl: Fix bind keywords name in comments
1008 - DOC: ssl: Use correct wording for ca-sign-pass
1009 - CLEANUP: lua: avoid directly calling getsockname/getpeername()
1010 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully
1011 - MINOR: cli: add private pointer and release function
1012 - MEDIUM: lua: Add cli handler for Lua
1013 - BUG/MEDIUM: connection: check the control layer before stopping polling
1014 - DEBUG: connection: mark the closed FDs with a value that is easier to detect
1015 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
1016 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
1017 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored
1018 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams
1019 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event
1020 - MINOR: spoe: Remove useless 'timeout ack' option
1021 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section
1022 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements
1023 - MINOR: spoe: Add "option set-on-error" statement
1024 - MINOR: stats: correct documentation of process ID for typed output
1025 - BUILD: contrib: fix ip6range build on Centos 7
1026 - BUILD: fix build on Solaris 10/11
1027 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
1028 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
1029 - BUG/MINOR: cli: wake up the CLI's task after a timeout update
1030 - MINOR: connection: add a few functions to report the data and xprt layers' names
1031 - MINOR: connection: add names for transport and data layers
1032 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c
1033 - REORG: cli: split dumpstats.h in stats.h and cli.h
1034 - REORG: cli: move ssl CLI functions to ssl_sock.c
1035 - REORG: cli: move map and acl code to map.c
1036 - REORG: cli: move show stat resolvers to dns.c
1037 - MINOR: cli: create new function cli_has_level() to validate permissions
1038 - MINOR: server: create new function cli_find_server() to find a server
1039 - MINOR: proxy: create new function cli_find_frontend() to find a frontend
1040 - REORG: cli: move 'set server' to server.c
1041 - REORG: cli: move 'show pools' to memory.c
1042 - REORG: cli: move 'show servers' to proxy.c
1043 - REORG: cli: move 'show sess' to stream.c
1044 - REORG: cli: move 'show backend' to proxy.c
1045 - REORG: cli: move get/set weight to server.c
1046 - REORG: cli: move "show stat" to stats.c
1047 - REORG: cli: move "show info" to stats.c
1048 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c
1049 - REORG: cli: move table dump/clear/set to stick_table.c
1050 - REORG: cli: move "show errors" out of cli.c
1051 - REORG: cli: make "show env" also use the generic keyword registration
1052 - REORG: cli: move "set timeout" to its own handler
1053 - REORG: cli: move "clear counters" to stats.c
1054 - REORG: cli: move "set maxconn global" to its own handler
1055 - REORG: cli: move "set maxconn server" to server.c
1056 - REORG: cli: move "set maxconn frontend" to proxy.c
1057 - REORG: cli: move "shutdown sessions server" to stream.c
1058 - REORG: cli: move "shutdown session" to stream.c
1059 - REORG: cli: move "shutdown frontend" to proxy.c
1060 - REORG: cli: move "{enable|disable} frontend" to proxy.c
1061 - REORG: cli: move "{enable|disable} server" to server.c
1062 - REORG: cli: move "{enable|disable} health" to server.c
1063 - REORG: cli: move "{enable|disable} agent" to server.c
1064 - REORG: cli: move the "set rate-limit" functions to their own parser
1065 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_*
1066 - CLEANUP: cli: simplify the request parser a little bit
1067 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers
1068 - BUILD: server: remove a build warning introduced by latest series
1069 - BUG/MINOR: log-format: uncatched memory allocation functions
1070 - CLEANUP: log-format: useless file and line in json converter
1071 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var()
1072 - CLEANUP: log-format: fix return code of the function parse_logformat_var()
1073 - CLEANUP: log-format: fix return code of function parse_logformat_var_args()
1074 - CLEANUP: log-format: remove unused arguments
1075 - MEDIUM: log-format: strict parsing and enable fail
1076 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code
1077 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8
1078 - BUILD: vars: remove a build warning on vars.c
1079 - MINOR: lua: add utility function for check boolean argument
1080 - MINOR: lua: Add tokenize function.
1081 - BUG/MINOR: conf: calloc untested
1082 - MINOR: http/conf: store the use_backend configuration file and line for logs
1083 - MEDIUM: log-format: Use standard HAProxy log system to report errors
1084 - CLEANUP: sample: report "converter" instead of "conv method" in error messages
1085 - BUG: spoe: Fix parsing of SPOE actions in ACK frames
1086 - MINOR: cli: make "show stat" support a proxy name
1087 - MINOR: cli: make "show errors" support a proxy name
1088 - MINOR: cli: make "show errors" capable of dumping only request or response
1089 - BUG/MINOR: freq-ctr: make swrate_add() support larger values
1090 - CLEANUP: counters: move from 3 types to 2 types
1091 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules
1092 - REORG: tcp-rules: move tcp rules processing to their own file
1093 - REORG: stkctr: move all the stick counters processing to stick-tables.c
1094 - DOC: update the roadmap file with the latest changes
1095
Willy Tarreaud5d890b2016-11-09 23:18:17 +010010962016/11/09 : 1.7-dev6
1097 - DOC: fix the entry for hash-balance-factor config option
1098 - DOC: Fix typo in description of `-st` parameter in man page
1099 - CLEANUP: cfgparse: Very minor spelling correction
1100 - MINOR: examples: Update haproxy.spec URLs to haproxy.org
1101 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream
1102 - BUG/MEDIUM: peers: fix use after free in peer_session_create()
1103 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream
1104 - MINOR: peers: remove the pointer to the stream
1105 - BUG/MEDIUM: systemd-wrapper: return correct exit codes
1106 - DOC: stats: provide state details for show servers state
1107 - MEDIUM: tools: make str2ip2() preserve existing ports
1108 - CLEANUP: tools: make ipcpy() preserve the original port
1109 - OPTIM: http: move all http character classs tables into a single one
1110 - OPTIM: http: improve parsing performance of long header lines
1111 - OPTIM: http: improve parsing performance of long URIs
1112 - OPTIM: http: optimize lookup of comma and quote in header values
1113 - BUG/MEDIUM: srv-state: properly restore the DRAIN state
1114 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags
1115 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot
1116 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup
1117 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module
1118 - DOC: move the device detection modules documentation to their own files
1119 - CLEANUP: wurfl: reduce exposure in the rest of the code
1120 - MEDIUM: ssl: Add support for OpenSSL 1.1.0
1121 - MINOR: stream: make option contstats usable again
1122 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving
1123 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK
1124 - MAJOR: server: postpone address resolution
1125 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT
1126 - MINOR: server: indicate in the logs when RMAINT is cleared
1127 - MINOR: stats: indicate it when a server is down due to resolution
1128 - MINOR: server: make srv_set_admin_state() capable of telling why this happens
1129 - MINOR: dns: implement extra 'hold' timers.
1130 - MAJOR: dns: runtime resolution can change server admin state
1131 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI
1132 - MEDIUM: server: add a new init-addr server line setting
1133 - MEDIUM: server: make use of init-addr
1134 - MINOR: server: implement init-addr none
1135 - MEDIUM: server: make libc resolution failure non-fatal
1136 - MINOR: server: add support for explicit numeric address in init-addr
1137 - DOC: add some documentation for the "init-addr" server keyword
1138 - MINOR: init: add -dr to ignore server address resolution failures
1139 - MEDIUM: server: do not restrict anymore usage of IP address from the state file
1140 - BUG: vars: Fix 'set-var' converter because of a typo
1141 - CLEANUP: remove last references to 'ruleset' section
1142 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks
1143 - MINOR: filters: Update filters documentation accordingly to recent changes
1144 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats
1145 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams
1146 - MINOR: flt_trace: Add hexdump option to dump forwarded data
1147 - MINOR: cfgparse: Add functions to backup and restore registered sections
1148 - MINOR: cfgparse: Parse scope lines and save the last one parsed
1149 - REORG: sample: move code to release a sample expression in sample.c
1150 - MINOR: vars: Allow '.' in variable names
1151 - MINOR: vars: Add vars_set_by_name_ifexist function
1152 - MEDIUM: vars: Add a per-process scope for variables
1153 - MINOR: vars: Add 'unset-var' action/converter
1154 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine
1155 - MINOR: spoe: add random ip-reputation service as SPOA example
1156 - MINOR: spoe/checks: Add support for SPOP health checks
1157 - DOC: update ROADMAP file
1158
Willy Tarreau608efa12016-10-25 22:22:00 +020011592016/10/25 : 1.7-dev5
1160 - MINOR: cfgparse: few memory leaks fixes.
1161 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR
1162 - CLEANUP: logs: remove unused log format field definitions
1163 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c
1164 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry
1165 - CLEANUP: proto_http: Removing useless variable assignation
1166 - CLEANUP: dumpstats: Removing useless variables allocation
1167 - CLEANUP: dns: Removing usless variable & assignation
1168 - BUG/MINOR: payload: fix SSLv2 version parser
1169 - MINOR: cli: allow the semi-colon to be escaped on the CLI
1170 - MINOR: cli: change a server health check port through the stats socket
1171 - BUG/MINOR: Fix OSX compilation errors
1172 - MAJOR: check: find out which port to use for health check at run time
1173 - MINOR: server: introduction of 3 new server flags
1174 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT
1175 - MINOR: cli: ability to change a server's port
1176 - CLEANUP/MINOR dns: comment do not follow up code update
1177 - MINOR: chunk: new strncat function
1178 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value
1179 - MINOR: dns: new MAX values
1180 - MINOR: dns: new macro to compute DNS header size
1181 - MINOR: dns: new DNS structures to store received packets
1182 - MEDIUM: dns: new DNS response parser
1183 - MINOR: dns: query type change when last record is a CNAME
1184 - MINOR: dns: proper domain name validation when receiving DNS response
1185 - MINOR: dns: comments in types/dns.h about structures endianness
1186 - BUG/MINOR: displayed PCRE version is running release
1187 - MINOR: show Built with PCRE version
1188 - MINOR: show Running on zlib version
1189 - MEDIUM: make SO_REUSEPORT configurable
1190 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections
1191 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing
1192 - BUG/MINOR: stats: report the correct conn_time in backend's html output
1193 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory
1194 - MINOR: Add fe_req_rate sample fetch
1195 - MEDIUM: peers: Fix a peer stick-tables synchronization issue.
1196 - MEDIUM: cli: register CLI keywords with cli_register_kw()
1197 - BUILD: Make use of accept4() on OpenBSD.
1198 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative
1199 - DOC: fix missed entry for "set-{src,dst}{,-port}"
1200 - BUG/MINOR: vars: use sess and not s->sess in action_store()
1201 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses
1202 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session
1203 - MINOR: stats: output dcon
1204 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4
1205 - MINOR: counters: add new fields for denied_sess
1206 - MEDIUM: tcp: add registration and processing of TCP L5 rules
1207 - MINOR: stats: emit dses
1208 - DOC: document tcp-request session
1209 - MINOR: ssl: add debug traces
1210 - BUILD/CLEANUP: ssl: Check BIO_reset() return code
1211 - BUG/MINOR: ssl: Check malloc return code
1212 - BUG/MINOR: ssl: prevent multiple entries for the same certificate
1213 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error
1214 - BUG/MINOR: systemd: always restore signals before execve()
1215 - BUG/MINOR: systemd: check return value of calloc()
1216 - MINOR: systemd: report it when execve() fails
1217 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
1218 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers'
1219 - MINOR: backend: add hash-balance-factor option for hash-type consistent
1220 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target
1221 - MEDIUM: server: Implement bounded-load hash algorithm
1222 - SCRIPTS: make git-show-backports also dump a "git show" command
1223 - MINOR: build: Allow linking to device-atlas library file
1224 - MINOR: stats: Escape equals sign on socket dump
1225
Willy Tarreau41d5e3a2016-08-14 12:25:21 +020012262016/08/14 : 1.7-dev4
1227 - MINOR: add list_append_word function
1228 - MEDIUM: init: use list_append_word in haproxy.c
1229 - MEDIUM: init: allow directory as argument of -f
1230 - CLEANUP: config: detect double registration of a config section
1231 - MINOR: log: add the %Td log-format specifier
1232 - MEDIUM: filters: Move HTTP headers filtering in its own callback
1233 - MINOR: filters: Simplify calls to analyzers using 2 new macros
1234 - MEDIUM: filters: Add pre and post analyzer callbacks
1235 - DOC: filters: Update the filters documentation accordingly to recent changes
1236 - BUG/MEDIUM: init: don't use environment locale
1237 - SCRIPTS: teach git-show-backports how to report upstream commits
1238 - SCRIPTS: make git-show-backports capable of limiting its history
1239 - BUG/MAJOR: fix listening IP address storage for frontends
1240 - BUG/MINOR: fix listening IP address storage for frontends (cont)
1241 - DOC: Fix typo so fetch is properly parsed by Cyril's converter
1242 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
1243 - BUG/MEDIUM: stick-tables: fix breakage in table converters
1244 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY
1245 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix
1246 - BUILD: fix build on Solaris 11
1247 - BUG/MEDIUM: config: fix multiple declaration of section parsers
1248 - BUG/MEDIUM: stats: show servers state may show an servers from another backend
1249 - BUG/MEDIUM: fix risk of segfault with "show tls-keys"
1250 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets
1251 - DOC: update doc about tls-tickets-keys dump
1252 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection'
1253 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src'
1254 - MEDIUM: tcp/http: add 'set-src-port' action
1255 - MEDIUM: tcp/http: new set-dst/set-dst-port actions
1256 - BUG/MEDIUM: sticktables: segfault in some configuration error cases
1257 - BUILD/MEDIUM: rebuild everything when an include file is changed
1258 - BUILD/MEDIUM: force a full rebuild if some build options change
1259 - BUG/MEDIUM: lua: converters doesn't work
1260 - BUG/MINOR: http: add-header: header name copied twice
1261 - BUG/MEDIUM: http: add-header: buffer overwritten
1262 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
1263 - MINOR: stream: export the function 'smp_create_src_stkctr'
1264 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list()
1265 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump
1266 - BUG/MINOR: http: url32+src should use the big endian version of url32
1267 - BUG/MINOR: http: url32+src should check cli_conn before using it
1268 - DOC: http: add documentation for url32 and url32+src
1269 - BUG/MINOR: fix http-response set-log-level parsing error
1270 - MINOR: systemd: Use variable for config and pidfile paths
1271 - MINOR: systemd: Perform sanity check on config before reload
1272 - MEDIUM: ssl: support SNI filters with multicerts
1273 - MINOR: ssl: crt-list parsing factor
1274 - BUILD: ssl: fix typo causing a build failure in the multicert patch
1275 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword
1276 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4"
1277 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
1278 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed
1279 - BUG/MEDIUM: external-checks: close all FDs right after the fork()
1280 - BUG/MAJOR: external-checks: use asynchronous signal delivery
1281 - BUG/MINOR: external-checks: do not unblock undesired signals
1282 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list
1283 - BUG/MEDIUM: filters: Fix data filtering when data are modified
1284 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding
1285 - BUG/MINOR: srv-state: fix incorrect output of state file
1286 - BUG/MINOR: ssl: close ssl key file on error
1287 - BUG/MINOR: http: fix misleading error message for response captures
1288 - BUG/BUILD: don't automatically run "make" on "make install"
1289 - DOC: add missing doc for http-request deny [deny_status <status>]
1290 - CLEANUP: dumpstats: u64 field is an unsigned type.
1291 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing
1292 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes
1293 - MINOR: new function my_realloc2 = realloc + free upon failure
1294 - CLEANUP: fixed some usages of realloc leading to memory leak
1295 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
1296 - CLEANUP: connection: using internal struct to hold source and dest port.
1297 - DOC: spelling fixes
1298 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
1299 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
1300 - BUG/MINOR: Fix endiness issue in DNS header creation code
1301 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash
1302 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash
1303 - MEDIUM: http: implement http-response track-sc* directive
1304 - BUG/MINOR: peers: Fix peers data decoding issue
1305 - BUG/MINOR: peers: don't count track-sc multiple times on errors
1306 - MINOR: standard: add function "escape_string"
1307 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk"
1308 - MINOR: tcp: Return TCP statistics like RTT and RTT variance
1309 - DOC: lua: remove old functions
1310 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests
1311 - DOC: fix json converter example and error message
1312 - BUG/MEDIUM: stream-int: completely detach connection on connect error
1313 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv
1314 - BUILD: make proto_tcp.c compatible with musl library
1315 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush
1316 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample
1317 - MINOR: sample: implement smp_is_safe() and smp_make_safe()
1318 - MINOR: sample: provide smp_is_rw() and smp_make_rw()
1319 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble
1320 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size
1321 - BUG/MEDIUM: stick-table: properly convert binary samples to keys
1322 - MINOR: sample: use smp_make_rw() in upper/lower converters
1323 - MINOR: tcp: add dst_is_local and src_is_local
1324 - BUG/MINOR: peers: some updates are pushed twice after a resync.
1325 - BUILD: protocol: fix some build errors on OpenBSD
1326 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD
1327 - BUILD: tcp: do not include netinet/ip.h for IP_TTL
1328 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h
1329 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD
1330 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists
1331 - BUILD: compression: remove a warning when no compression lib is used
1332 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang
1333 - MINOR: tcp: add further tcp info fetchers
1334 - BUG/MINOR: peers: empty chunks after a resync.
1335 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
1336 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage
1337 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one
1338 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided
1339
Willy Tarreau7d1b48f2016-05-10 15:36:58 +020013402016/05/10 : 1.7-dev3
1341 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits.
1342 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
1343 - BUILD: namespaces: fix a potential build warning in namespaces.c
1344 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor.
1345 - DOC: add encoding to json converter example
1346 - BUG/MINOR: conf: "listener id" expects integer, but its not checked
1347 - DOC: Clarify tunes.vars.xxx-max-size settings
1348 - CLEANUP: chunk: adding NULL check to chunk_dup allocation.
1349 - CLEANUP: connection: fix double negation on memcmp()
1350 - BUG/MEDIUM: peers: fix incorrect age in frequency counters
1351 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present
1352 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
1353 - BUG/MINOR: lua: can't load external libraries
1354 - BUG/MINOR: prevent the dump of uninitialized vars
1355 - CLEANUP: map: it seems that the map were planed to be chained
1356 - MINOR: lua: move class registration facilities
1357 - MINOR: lua: remove some useless checks
1358 - CLEANUP: lua: Remove two same functions
1359 - MINOR: lua: refactor the Lua object registration
1360 - MINOR: lua: precise message when a critical error is catched
1361 - MINOR: lua: post initialization
1362 - MINOR: lua: Add internal function which strip spaces
1363 - MINOR: lua: convert field to lua type
1364 - DOC: "addr" parameter applies to both health and agent checks
1365 - DOC: timeout client: pointers to timeout http-request
1366 - DOC: typo on stick-store response
1367 - DOC: stick-table: amend paragraph blaming the loss of table upon reload
1368 - DOC: typo: ACL subdir match
1369 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size
1370 - DOC: regsub: parser limitation about the inability to use closing square brackets
1371 - DOC: typo: req.uri is now replaced by capture.req.uri
1372 - DOC: name set-gpt0 mismatch with the expected keyword
1373 - MINOR: http: sample fetch which returns unique-id
1374 - MINOR: dumpstats: extract stats fields enum and names
1375 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts
1376 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts
1377 - MINOR: dumpstats: split stats_dump_li_stats() in two parts
1378 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts
1379 - MINOR: dumpstats: split stats_dump_be_stats() in two parts
1380 - MINOR: lua: dump general info
1381 - MINOR: lua: add class proxy
1382 - MINOR: lua: add class server
1383 - MINOR: lua: add class listener
1384 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state.
1385 - MEDIUM: proxy: use dynamic allocation for error dumps
1386 - CLEANUP: remove unneeded casts
1387 - CLEANUP: uniformize last argument of malloc/calloc
1388 - DOC: fix "needed" typo
1389 - BUG/MINOR: dumpstats: fix write to global chunk
1390 - BUG/MINOR: dns: inapropriate way out after a resolution timeout
1391 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout
1392 - CLEANUP: proto_http: few corrections for gcc warnings.
1393 - BUG/MINOR: DNS: resolution structure change
1394 - BUG/MINOR : allow to log cookie for tarpit and denied request
1395 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates
1396 - OPTIM/MINOR: session: abort if possible before connecting to the backend
1397 - DOC: http: rename the unique-id sample and add the documentation
1398 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files
1399 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try)
1400 - BUG/MINOR: server: risk of over reading the pref_net array.
1401 - BUG/MINOR: cfgparse: couple of small memory leaks.
1402 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
1403 - DOC: fix discrepancy in the example for http-request redirect
1404 - MINOR: acl: Add predefined METH_DELETE, METH_PUT
1405 - CLEANUP: .gitignore cleanup
1406 - DOC: Clarify IPv4 address / mask notation rules
1407 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept()
1408 - BUG/MEDIUM: fix maxaccept computation on per-process listeners
1409 - BUG/MINOR: listener: stop unbound listeners on startup
1410 - BUG/MINOR: fix maxaccept computation according to the frontend process range
1411 - TESTS: add blocksig.c to run tests with all signals blocked
1412 - MEDIUM: unblock signals on startup.
1413 - MINOR: filters: Print the list of existing filters during HA startup
1414 - MINOR: filters: Typo in an error message
1415 - MINOR: filters: Filters must define the callbacks struct during config parsing
1416 - DOC: filters: Add filters documentation
1417 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
1418 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
1419 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
1420 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode
1421 - MINOR: Add ability for agent-check to set server maxconn
1422 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates
1423 - MINOR: filters: add opaque data
1424 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches.
1425 - MINOR: lua: migrate the argument mask to 64 bits type.
1426 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats
1427 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ>
1428 - BUG/MEDIUM: http: fix incorrect reporting of server errors
1429 - MINOR: channel: add new function channel_congested()
1430 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
1431 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
1432 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
1433 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
1434 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result
1435 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result
1436 - MINOR: stats: fix typo in help messages
1437 - MINOR: stats: show stat resolvers missing in the help message
1438 - BUG/MINOR: dns: fix DNS header definition
1439 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries
1440 - CLEANUP: don't ignore scripts in .gitignore
1441 - BUILD: add a few release and backport scripts in scripts/
1442
Willy Tarreau8234f6d2016-03-14 00:10:05 +010014432016/03/14 : 1.7-dev2
1444 - DOC: lua: fix lua API
1445 - DOC: mailers: typo in 'hostname' description
1446 - DOC: compression: missing mention of libslz for compression algorithm
1447 - BUILD/MINOR: regex: missing header
1448 - BUG/MINOR: stream: bad return code
1449 - DOC: lua: fix somme errors and add implicit types
1450 - MINOR: lua: add set/get priv for applets
1451 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser
1452 - BUG/MINOR: http: Be sure to process all the data received from a server
1453 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose
1454 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
1455 - DOC: ssl: fixed some formatting errors in crt tag
1456 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero
1457 - MINOR: chunks: add chunk_strcat() and chunk_newstr()
1458 - MINOR: chunk: make chunk_initstr() take a const string
1459 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk
1460 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk
1461 - MINOR: lru: new function to delete <nb> least recently used keys
1462 - DOC: add Ben Shillito as the maintainer of 51d
1463 - BUG/MINOR: 51d: Ensures a unique domain for each configuration
1464 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices.
1465 - BUG/MINOR: 51d: Releases workset back to pool.
1466 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees.
1467 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc.
1468 - MINOR: rename master process name in -Ds (systemd mode)
1469 - DOC: fix a few spelling mistakes
1470 - DOC: fix "workaround" spelling
1471 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files
1472 - MINOR: fix the return type for dns_response_get_query_id() function
1473 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file
1474 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver
1475 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server
1476 - BUG/MEDIUM: servers state: server port is used uninitialized
1477 - BUG/MEDIUM: config: Adding validation to stick-table expire value.
1478 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
1479 - BUG/MEDIUM: channel: fix miscalculation of available buffer space.
1480 - MEDIUM: pools: add a new flag to avoid rounding pool size up
1481 - BUG/MEDIUM: buffers: do not round up buffer size during allocation
1482 - BUG/MINOR: stream: don't force retries if the server is DOWN
1483 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table
1484 - MINOR: unix: don't mention free ports on EAGAIN
1485 - BUG/CLEANUP: CLI: report the proper field states in "show sess"
1486 - MINOR: stats: send content-length with the redirect to allow keep-alive
1487 - BUG: stream_interface: Reuse connection even if the output channel is empty
1488 - DOC: remove old tunnel mode assumptions
1489 - BUG/MAJOR: http-reuse: fix risk of orphaned connections
1490 - BUG/MEDIUM: http-reuse: do not share private connections across backends
1491 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates
1492 - BUG/MINOR: stats: fix missing comma in stats on agent drain
1493 - MAJOR: filters: Add filters support
1494 - MINOR: filters: Do not reset stream analyzers if the client is gone
1495 - REORG: filters: Prepare creation of the HTTP compression filter
1496 - MAJOR: filters/http: Rewrite the HTTP compression as a filter
1497 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing
1498 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end
1499 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer
1500 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions
1501 - MINOR: filters: Add stream_filters structure to hide filters info
1502 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data
1503 - MINOR: filters: Remove unused or useless stuff and do small optimizations
1504 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response
1505 - MINOR: filters/http: Slightly update the parsing of chunks
1506 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters
1507 - MINOR: filters: Add an filter example
1508 - MINOR: filters: Extract proxy stuff from the struct filter
1509 - MINOR: map: Add regex matching replacement
1510 - BUG/MINOR: lua: unsafe initialization
1511 - DOC: lua: fix somme errors
1512 - MINOR: lua: file dedicated to unsafe functions
1513 - MINOR: lua: add "now" time function
1514 - MINOR: standard: add RFC HTTP date parser
1515 - MINOR: lua: Add date functions
1516 - MINOR: lua: move common function
1517 - MINOR: lua: merge function
1518 - MINOR: lua: Add concat class
1519 - MINOR: standard: add function "escape_chunk"
1520 - MEDIUM: log: add a new log format flag "E"
1521 - DOC: add server name at rate-limit sessions example
1522 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
1523 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
1524 - DOC: LUA: fix some typos and syntax errors
1525 - MINOR: cli: add a new "show env" command
1526 - MEDIUM: config: allow to manipulate environment variables in the global section
1527 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers
1528 - MINOR: mailers: increase default timeout to 10 seconds
1529 - MINOR: mailers: use <CRLF> for all line endings
1530 - BUG/MAJOR: lua: segfault using Concat object
1531 - DOC: lua: copyrights
1532 - MINOR: common: mask conversion
1533 - MEDIUM: dns: extract options
1534 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network
1535 - MINOR: mailers: make it possible to configure the connection timeout
1536 - BUG/MAJOR: lua: applets can't sleep.
1537 - BUG/MINOR: server: some prototypes are renamed
1538 - BUG/MINOR: lua: Useless copy
1539 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
1540 - BUG/MINOR: server: fix the format of the warning on address change
1541 - CLEANUP: server: add "const" to some message strings
1542 - MINOR: server: generalize the "updater" source
1543 - BUG/MEDIUM: chunks: always reject negative-length chunks
1544 - BUG/MINOR: systemd: ensure we don't miss signals
1545 - BUG/MINOR: systemd: report the correct signal in debug message output
1546 - BUG/MINOR: systemd: propagate the correct signal to haproxy
1547 - MINOR: systemd: ensure a reload doesn't mask a stop
1548 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword
1549 - CLEANUP: stats: Avoid computation with uninitialized bits.
1550 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip().
1551 - CLEANUP: map: Avoid memory leak in out-of-memory condition.
1552 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
1553 - BUG/MAJOR: samples: check smp->strm before using it
1554 - MINOR: sample: add a new helper to initialize the owner of a sample
1555 - MINOR: sample: always set a new sample's owner before evaluating it
1556 - BUG/MAJOR: vars: always retrieve the stream and session from the sample
1557 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer
1558 - BUG/MINOR: ssl: fix usage of the various sample fetch functions
1559 - MINOR: stats: create fields types suitable for all CSV output data
1560 - MINOR: stats: add all the "show info" fields in a table
1561 - MEDIUM: stats: fill all the show info elements prior to displaying them
1562 - MINOR: stats: add a function to emit fields into a chunk
1563 - MINOR: stats: add stats_dump_info_fields() to dump one field per line
1564 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info"
1565 - MINOR: stats: add a declaration of all stats fields
1566 - MINOR: stats: don't hard-code the CSV fields list anymore
1567 - MINOR: stats: create stats fields storage and CSV dump function
1568 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv()
1569 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump
1570 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv()
1571 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump
1572 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv()
1573 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump
1574 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv()
1575 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML
1576 - MEDIUM: stats: move the server state coloring logic to the server dump function
1577 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps
1578 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps
1579 - MINOR: stats: make CSV report server check status only when enabled
1580 - MINOR: stats: only report backend's down time if it has servers
1581 - MINOR: stats: prepend '*' in front of the check status when in progress
1582 - MINOR: stats: make HTML stats dump rely on the table for the check status
1583 - MINOR: stats: add agent_status, agent_code, agent_duration to output
1584 - MINOR: stats: add check_desc and agent_desc to the output fields
1585 - MINOR: stats: add check and agent's health values in the output
1586 - MEDIUM: stats: make the HTML server state dump use the CSV states
1587 - MEDIUM: stats: only report observe errors when observe is set
1588 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses
1589 - MEDIUM: stats: report server's address in the CSV output
1590 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps
1591 - MEDIUM: stats: compute the color code only in the HTML form
1592 - MEDIUM: stats: report the listeners' address in the CSV output
1593 - MEDIUM: stats: make it possible to report the WAITING state for listeners
1594 - REORG: stats: dump the frontend's HTML stats via a generic function
1595 - REORG: stats: dump the socket stats via the generic function
1596 - REORG: stats: dump the server stats via the generic function
1597 - REORG: stats: dump the backend stats via the generic function
1598 - MEDIUM: stats: add a new "mode" column to report the proxy mode
1599 - MINOR: stats: report the load balancing algorithm in CSV output
1600 - MINOR: stats: add 3 fields to report the frontend-specific connection stats
1601 - MINOR: stats: report number of intercepted requests for frontend and backends
1602 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line
1603 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore
1604 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags
1605 - MINOR: stats: make stats_dump_fields_html() not use &trash by default
1606 - MINOR: stats: add functions to emit typed fields into a chunk
1607 - MEDIUM: stats: support "show info typed" on the CLI
1608 - MEDIUM: stats: implement a typed output format for stats
1609 - DOC: document the "show info typed" and "show stat typed" output formats
1610 - MINOR: cfgparse: warn when uid parameter is not a number
1611 - MINOR: cfgparse: warn when gid parameter is not a number
1612 - BUG/MINOR: standard: Avoid free of non-allocated pointer
1613 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
1614 - CLEANUP: http: fix a build warning introduced by a recent fix
1615 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST
1616
Willy Tarreaucb928252015-12-20 23:33:18 +010016172015/12/20 : 1.7-dev1
1618 - DOC: specify that stats socket doc (section 9.2) is in management
1619 - BUILD: install only relevant and existing documentation
1620 - CLEANUP: don't ignore debian/ directory if present
1621 - BUG/MINOR: dns: parsing error of some DNS response
1622 - BUG/MEDIUM: namespaces: don't fail if no namespace is used
1623 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled
1624 - MEDIUM: dns: Don't use the ANY query type
1625 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0
1626 - DOC: fix a typo for a "deviceatlas" keyword
1627 - FIX: small typo in an example using the "Referer" header
1628 - MINOR: cli: ability to set per-server maxconn
1629 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing
1630 - DEBUG/MEDIUM: memory: optionally protect free data in pools
1631 - DEBUG/MEDIUM: memory: add optional control pool memory operations
1632 - MEDIUM: memory: add accounting for failed allocations
1633 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32
1634 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop
1635 - BUG/MINOR: dns: unable to parse CNAMEs response
1636 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check()
1637 - DOC: deviceatlas: more example use cases.
1638 - MINOR: config: allow IPv6 bracketed literals
1639 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
1640 - BUILD: add Haiku as supported target.
1641 - BUG/MAJOR: http: don't requeue an idle connection that is already queued
1642 - DOC: typo on capture.res.hdr and capture.req.hdr
1643 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing
1644 - CLEANUP: use direction names in place of numeric values
1645 - BUG/MEDIUM: lua: sample fetches based on response doesn't work
1646 - MINOR: check: add agent-send server parameter
1647 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id
1648 - BUG/MINOR: server: check return value of fgets() in apply_server_state()
1649 - BUG/MINOR: acl: don't use record layer in req_ssl_ver
1650 - BUILD: freebsd: double declaration
1651 - BUG/MEDIUM: lua: clean output buffer
1652 - BUILD: check for libressl to be able to build against it
1653 - DOC: lua-api/index.rst small example fixes, spelling correction.
1654 - DOC: lua: architecture and first steps
1655 - DOC: relation between timeout http-request and option http-buffer-request
1656 - BUILD: Make deviceatlas require PCRE
1657 - BUG: http: do not abort keep-alive connections on server timeout
1658 - BUG/MEDIUM: http: switch the request channel to no-delay once done.
1659 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket
1660 - BUILD/MINOR: http: proto_http.h needs sample.h
1661 - BUG/MEDIUM: http: don't enable auto-close on the response side
1662 - BUG/MEDIUM: stream: fix half-closed timeout handling
1663 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB
1664 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
1665 - BUG/MEDIUM: sample: urlp can't match an empty value
1666 - BUILD: dumpstats: silencing warning for printf format specifier / time_t
1667 - CLEANUP: proxy: calloc call inverted arguments
1668 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built.
1669 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input.
1670 - DOC: Edited 51Degrees section of README/
1671 - BUG/MEDIUM: checks: email-alert not working when declared in defaults
1672 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured
1673 - BUG/MINOR: checks: typo in an email-alert error message
1674 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
1675 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT
1676 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ
1677 - DOC: prefer using http-request/response over reqXXX/rspXXX directives
1678 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro.
1679 - MINOR: ssl: Added cert_key_and_chain struct
1680 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs
1681 - MINOR: ssl: Added multi cert support for crt-list config keyword
1682 - MEDIUM: ssl: Added multi cert support for loading crt directories
1683 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling
1684 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2
1685 - MINOR: config: make tune.recv_enough configurable
1686 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced
1687 - DOC: ssl: Adding docs for Multi-Cert bundling
1688 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
1689 - BUG/MEDIUM: peers: old stick table updates could be repushed.
1690 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received
1691 - REORG/MINOR: lua: convert boolean "int" to bitfield
1692 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn
1693 - BUG/MINOR: lua: Lua applets must not use http_txn
1694 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets
1695 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services
1696 - CLEANUP: lua: bad error messages
1697 - CONTRIB: initiate a debugging suite to make debugging easier
1698
Willy Tarreau991b4782015-10-13 21:48:10 +020016992015/10/13 : 1.7-dev0
1700 - exact copy of 1.6.0
1701
Willy Tarreau844028b2015-10-13 18:52:22 +020017022015/10/13 : 1.6.0
1703 - BUG/MINOR: Handle interactive mode in cli handler
1704 - DOC: global section missing parameters
1705 - DOC: backend section missing parameters
1706 - DOC: stats paramaters available in frontend
1707 - MINOR: lru: do not allocate useless memory in lru64_lookup
1708 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
1709 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored
1710 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down
1711 - MINOR: ssl: Read the file used to generate certificates in any order
1712 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates
1713 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates
1714 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424
1715 - BUILD: Fix the build on OSX (htonll/ntohll)
1716 - BUILD: enable build on Linux/s390x
1717 - BUG/MEDIUM: lua: direction test failed
1718 - MINOR: lua: fix a spelling error in some error messages
1719 - CLEANUP: cli: ensure we can never double-free error messages
1720 - BUG/MEDIUM: lua: force server-close mode on Lua services
1721 - MEDIUM: init: support more command line arguments after pid list
1722 - MEDIUM: init: support a list of files on the command line
1723 - MINOR: debug: enable memory poisonning to use byte 0
1724 - BUILD: ssl: fix build error introduced by recent commit
1725 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
1726 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server
1727 - DOC: mention the "namespace" options for bind and server lines
1728 - DOC: add the "management" documentation
1729 - DOC: move the stats socket documentation from config to management
1730 - MINOR: examples: update haproxy.spec to mention new docs
1731 - DOC: mention management.txt in README
1732 - DOC: remove haproxy-{en,fr}.txt
1733 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together
1734 - MINOR: init: report use of libslz instead of "no compression"
1735 - CLEANUP: examples: remove some obsolete and confusing files
1736 - CLEANUP: examples: remove obsolete configuration file samples
1737 - CLEANUP: examples: fix the example file content-sw-sample.cfg
1738 - CLEANUP: examples: update sample file option-http_proxy.cfg
1739 - CLEANUP: examples: update sample file ssl.cfg
1740 - CLEANUP: tests: move a test file from examples/ to tests/
1741 - CLEANUP: examples: shut up warnings in transparent proxy example
1742 - CLEANUP: tests: removed completely obsolete test files
1743 - DOC: update ROADMAP to remove what was done in 1.6
1744 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
1745
Willy Tarreau8c1ad712015-10-06 12:13:56 +020017462015/10/06 : 1.6-dev7
1747 - MINOR: cli: Dump all resolvers stats if no resolver section is given
1748 - BUG: config: external-check command validation is checking for incorrect arguments.
1749 - DOC: documentation format cleanups
1750 - DOC: lua: few typos.
1751 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy
1752 - BUG/MEDIUM: logs: segfault writing to log from Lua
1753 - DOC: fix lua use-service example
1754 - MINOR: payload: add support for tls session ticket ext
1755 - MINOR: lua: remove the run flag
1756 - MEDIUM: lua: change the timeout execution
1757 - MINOR: lua: rename the tune.lua.applet-timeout
1758 - DOC: lua: update Lua doc
1759 - DOC: lua: update doc according with the last Lua changes
1760 - MINOR: http/tcp: fill the avalaible actions
1761 - DOC: reorder misplaced res.ssl_hello_type in the doc
1762 - BUG/MINOR: tcp: make silent-drop always force a TCP reset
1763 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled
1764 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available
1765 - BUILD: server: fix build warnings introduced by load-server-state
1766 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings
1767
Willy Tarreaue7ae6562015-09-28 23:46:27 +020017682015/09/28 : 1.6-dev6
1769 - BUG/MAJOR: can't enable a server through the stat socket
1770 - MINOR: server: Macro definition for server-state
1771 - MINOR: cli: new stats socket command: show servers state
1772 - DOC: stats socket command: show servers state
1773 - MINOR: config: new global directive server-state-base
1774 - DOC: global directive server-state-base
1775 - MINOR: config: new global section directive: server-state-file
1776 - DOC: new global directive: server-state-file
1777 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name
1778 - DOC: load-server-state-from-file
1779 - MINOR: init: server state loaded from file
1780 - MINOR: server: startup slowstart task when using seamless reload of HAProxy
1781 - MINOR: cli: new stats socket command: show backend
1782 - DOC: servers state seamless reload example
1783 - BUG: dns: can't connect UDP socket on FreeBSD
1784 - MINOR: cfgparse: New function cfg_unregister_sections()
1785 - MINOR: chunk: New function free_trash_buffers()
1786 - BUG/MEDIUM: main: Freeing a bunch of static pointers
1787 - MINOR: proto_http: Externalisation of previously internal functions
1788 - MINOR: global: Few new struct fields for da module
1789 - MAJOR: da: Update of the DeviceAtlas API module
1790 - DOC: DeviceAtlas new keywords
1791 - DOC: README: DeviceAtlas sample configuration updates
1792 - MEDIUM: log: replace sendto() with sendmsg() in __send_log()
1793 - MEDIUM: log: use a separate buffer for the header and for the message
1794 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader
1795 - MEDIUM: logs: add support for RFC5424 header format per logger
1796 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data
1797 - DOC: mention support for the RFC5424 syslog message format
1798 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space
1799 - MEDIUM: logs: pass the trailing "\n" as an iovec
1800 - BUG/MEDIUM: peers: some table updates are randomly not pushed.
1801 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect
1802 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash.
1803 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions
1804 - MINOR: global: Added new fields for 51Degrees device detection
1805 - DOC: Added more explanation for 51Degrees V3.2
1806 - BUILD: Changed 51Degrees option to support V3.2
1807 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features
1808 - MINOR: 51d: Improved string handling for LRU cache
1809 - DOC: add references to rise/fall for the fastinter explanation
1810 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD
1811 - BUG/MAJOR: lua: potential unexpected aborts()
1812 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer
1813 - MINOR: action: add private configuration
1814 - MINOR: action: add reference to the original keywork matched for the called parser.
1815 - MINOR: lua: change actions registration
1816 - MEDIUM: proto_http: smp_prefetch_http initialize txn
1817 - MINOR: channel: rename function chn_sess to chn_strm
1818 - CLEANUP: lua: align defines
1819 - MINOR: http: export http_get_path() function
1820 - MINOR: http: export the get_reason() function
1821 - MINOR: http: export function http_msg_analyzer()
1822 - MINOR: http: split initialization
1823 - MINOR: lua: reset pointer after use
1824 - MINOR: lua: identify userdata objects
1825 - MEDIUM: lua: use the function lua_rawset in place of lua_settable
1826 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action.
1827 - CLEANUP: lua: use calloc in place of malloc
1828 - BUG/MEDIUM: lua: longjmp function must be unregistered
1829 - BUG/MEDIUM: lua: forces a garbage collection
1830 - BUG/MEDIUM: lua: wakeup task on bad conditions
1831 - MINOR: standard: avoid DNS resolution from the function str2sa_range()
1832 - MINOR: lua: extend socket address to support non-IP families
1833 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup
1834 - BUG/MEDIUM: lua: socket destroy before reading pending data
1835 - MEDIUM: lua: change the GC policy
1836 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket
1837 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume
1838 - MINOR: applet: add init function
1839 - MINOR: applet: add an execution timeout
1840 - MINOR: stream/applet: add use-service action
1841 - MINOR: lua: add AppletTCP class and service
1842 - MINOR: lua: add AppletHTTP class and service
1843 - DOC: lua: some documentation update
1844 - DOC: add the documentation about internal circular lists
1845 - DOC: add a CONTRIBUTING file
1846 - DOC: add a MAINTAINERS file
1847 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes
1848 - DOC: update coding-style to reference checkpatch.pl
1849 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries
1850 - BUG/MINOR: args: add name for ARGT_VAR
1851 - DOC: add more entries to MAINTAINERS
1852 - DOC: add more entries to MAINTAINERS
1853 - CLEANUP: stream-int: remove obsolete function si_applet_call()
1854 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name
1855 - BUG/MEDIUM: http: do not dereference strm_li(stream)
1856 - BUG/MEDIUM: proxy: do not dereference strm_li(stream)
1857 - BUG/MEDIUM: stream: do not dereference strm_li(stream)
1858 - MINOR: stream-int: use si_release_endpoint() to close idle conns
1859 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers
1860 - BUG/MEDIUM: acl: always accept match "found"
1861 - MINOR: applet: rename applet_runq to applet_active_queue
1862 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity
1863 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts
1864 - MINOR: stream-int: implement a new stream_int_update() function
1865 - MEDIUM: stream-int: factor out the stream update functions
1866 - MEDIUM: stream-int: call stream_int_update() from si_update()
1867 - MINOR: stream-int: export stream_int_update_*
1868 - MINOR: stream-int: move the applet_pause call out of the stream updates
1869 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb
1870 - MINOR: stream-int: implement the stream_int_notify() function
1871 - MEDIUM: stream-int: use the same stream notification function for applets and conns
1872 - MEDIUM: stream-int: completely remove stream_int_update_embedded()
1873 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb()
1874 - BUG/MEDIUM: applet: fix reporting of broken write situation
1875 - BUG/MINOR: stats: do not call cli_release_handler 3 times
1876 - BUG/MEDIUM: cli: properly handle closed output
1877 - MINOR: cli: do not call the release handler on internal error.
1878 - BUG/MEDIUM: stream-int: avoid double-call to applet->release
1879 - DEBUG: add p_malloc() to return a poisonned memory area
1880 - CLEANUP: lua: remove unneeded memset(0) after calloc()
1881 - MINOR: lua: use the proper applet wakeup mechanism
1882 - BUG/MEDIUM: lua: better fix for the protocol check
1883 - BUG/MEDIUM: lua: properly set the target on the connection
1884 - MEDIUM: actions: pass a new "flags" argument to custom actions
1885 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call
1886 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions
1887 - MEDIUM: lua: only allow actions to yield if not in a final call
1888 - DOC: clarify how to make use of abstract sockets in socat
1889 - CLEANUP: config: make the errorloc/errorfile messages less confusing
1890 - MEDIUM: action: add a new flag ACT_FLAG_FIRST
1891 - BUG/MINOR: config: check that tune.bufsize is always positive
1892 - MEDIUM: config: set tune.maxrewrite to 1024 by default
1893 - DOC: add David Carlier as maintainer of da.c
1894 - DOC: fix some broken unexpected unicode chars in the Lua doc.
1895 - BUG/MEDIUM: proxy: ignore stopped peers
1896 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
1897 - MEDIUM: init: completely deallocate unused peers
1898 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions
1899 - DOC: remove outdated actions lists on tcp-request/response
1900 - MEDIUM: tcp: add new tcp action "silent-drop"
1901 - DOC: add URLs to optional libraries in the README
1902
Willy Tarreaua02e8a62015-09-14 12:23:10 +020019032015/09/14 : 1.6-dev5
1904 - MINOR: dns: dns_resolution structure update: time_t to unsigned int
1905 - BUG/MEDIUM: dns: DNS resolution doesn't start
1906 - BUG/MAJOR: dns: dns client resolution infinite loop
1907 - MINOR: dns: coding style update
1908 - MINOR: dns: new bitmasks to use against DNS flags
1909 - MINOR: dns: dns_nameserver structure update: new counter for truncated response
1910 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED
1911 - MEDIUM: dns: handling of truncated response
1912 - MINOR: DNS client query type failover management
1913 - MINOR: dns: no expected DNS record type found
1914 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet
1915 - BUG/MINOR: DNS request retry counter used for retry only
1916 - DOC: DNS documentation updated
1917 - MEDIUM: actions: remove ACTION_STOP
1918 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis)
1919 - BUG/MINOR: lua: last log character truncated.
1920 - CLEANUP: typo: bad indent
1921 - CLEANUP: actions: missplaced includes
1922 - MINOR: build: missing header
1923 - CLEANUP: lua: Merge log functions
1924 - BUG/MAJOR: http: don't manipulate the server connection if it's killed
1925 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
1926 - BUG/MAJOR: http: don't call http_send_name_header() after an error
1927 - MEDIUM: tools: make str2sa_range() optionally return the FQDN
1928 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
1929 - BUG/MEDIUM: dns: use the correct server hostname when resolving
1930
Willy Tarreau61d301f2015-08-30 00:17:17 +020019312015/08/30 : 1.6-dev4
1932 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings
1933 - DOC: typo in 'redirect', 302 code meaning
1934 - DOC: typos in tcp-check expect examples
1935 - DOC: resolve-prefer default value and default-server update
1936 - MINOR: DNS counters: increment valid counter
1937 - BUG/MEDIUM: DNS resolution response parsing broken
1938 - MINOR: server: add new SRV_ADMF_CMAINT flag
1939 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT
1940 - BUG/MEDIUM: dns: wrong first time DNS resolution
1941 - BUG/MEDIUM: lua: Lua tasks fail to start.
1942 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used
1943 - DOC/MINOR: fix OpenBSD versions where haproxy works
1944 - MINOR: 51d: unable to start haproxy without "51degrees-data-file"
1945 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement.
1946 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release.
1947 - BUILD: ssl: Allow building against libssl without SSLv3.
1948 - DOC: clarify some points about SSL and the proxy protocol
1949 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide
1950 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF>
1951 - DOC: match several lua configuration option names to those implemented in code
1952 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user
1953 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command
1954 - MINOR: stream: initialize the current_rule field to NULL on stream init
1955 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions.
1956 - CLEANUP: proto_http: remove useless initialisation
1957 - CLEANUP: http/tcp actions: remove the scope member
1958 - BUG/MINOR: proto_tcp: custom action continue is ignored
1959 - MINOR: proto_tcp: add session in the action prototype
1960 - MINOR: vars: reduce the code size of some wrappers
1961 - MINOR: Move http method enum from proto_http to sample
1962 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts
1963 - MINOR: sample/proto_tcp: export "smp_fetch_src"
1964 - MEDIUM: cli: rely on the map's output type instead of the sample type
1965 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session
1966 - BUG/MEDIUM: vars: segfault during the configuration parsing
1967 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream
1968 - BUG/MEDIUM: lua: bad error processing
1969 - MINOR: samples: rename a struct from sample_storage to sample_data
1970 - MINOR: samples: rename some struct member from "smp" to "data"
1971 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample"
1972 - MINOR: samples: extract the anonymous union and create the union sample_value
1973 - MINOR: samples: rename union from "data" to "u"
1974 - MEDIUM: 51degrees: Adapt the 51Degrees library
1975 - MINOR: samples: data assignation simplification
1976 - MEDIUM: pattern/map: Maps can returns various types
1977 - MINOR: map: The map can return IPv4 and IPv6
1978 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs
1979 - MINOR: actions: Remove the data opaque pointer
1980 - MINOR: lua: use the hlua_rule type in place of opaque type
1981 - MINOR: vars: use the vars types as argument in place of opaque type
1982 - MINOR: proto_http: use an "expr" type in place of generic opaque type.
1983 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line
1984 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture"
1985 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id
1986 - MEDIUM: track-sc: Move the track-sc configuration storage in the union
1987 - MEDIUM: capture: Move the capture configuration storage in the union
1988 - MINOR: actions: add "from" information
1989 - MINOR: actions: remove the mark indicating the last entry in enum
1990 - MINOR: actions: Declare all the embedded actions in the same header file
1991 - MINOR: actions: change actions names
1992 - MEDIUM: actions: Add standard return code for the action API
1993 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs
1994 - MINOR: proto_tcp: proto_tcp.h is now useles
1995 - MINOR: actions: mutualise the action keyword lookup
1996 - MEDIUM: actions: Normalize the return code of the configuration parsers
1997 - MINOR: actions: Remove wrappers
1998 - MAJOR: stick-tables: use sample types in place of dedicated types
1999 - MEDIUM: stick-tables: use the sample type names
2000 - MAJOR: stick-tables: remove key storage from the key struct
2001 - MEDIUM: stick-tables: Add GPT0 in the stick tables
2002 - MINOR: stick-tables: Add GPT0 access
2003 - MINOR: stick-tables: Add GPC0 actions
2004 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault
2005 - DOC: ssl: missing LF
2006 - MINOR: lua: add core.done() function
2007 - DOC: fix function name
2008 - BUG/MINOR: lua: in some case a sample may remain undefined
2009 - DOC: fix "http_action_set_req_line()" comments
2010 - MINOR: http: Action for manipulating the returned status code.
2011 - MEDIUM: lua: turns txn:close into txn:done
2012 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call
2013 - BUILD: link with libdl if needed for Lua support
2014 - CLEANUP: backend: factor out objt_server() in connect_server()
2015 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection
2016 - MEDIUM: stream-int: simplify si_alloc_conn()
2017 - MINOR: stream-int: add new function si_detach_endpoint()
2018 - MINOR: server: add a list of private idle connections
2019 - MINOR: connection: add a new list member in the connection struct
2020 - MEDIUM: stream-int: queue idle connections at the server
2021 - MINOR: stream-int: make si_idle_conn() only accept valid connections
2022 - MINOR: server: add a list of already used idle connections
2023 - MINOR: connection: add a new flag CO_FL_PRIVATE
2024 - MINOR: config: add new setting "http-reuse"
2025 - MAJOR: backend: initial work towards connection reuse
2026 - MAJOR: backend: improve the connection reuse mechanism
2027 - MEDIUM: backend: implement "http-reuse safe"
2028 - MINOR: server: add a list of safe, already reused idle connections
2029 - MEDIUM: backend: add the "http-reuse aggressive" strategy
2030 - DOC: document the new http-reuse directive
2031 - DOC: internals: document next steps for HTTP connection reuse
2032 - DOC: mention that %ms is left-padded with zeroes.
2033 - MINOR: init: indicate to check 'bind' lines when no listeners were found.
2034 - MAJOR: http: remove references to appsession
2035 - CLEANUP: config: remove appsession initialization
2036 - CLEANUP: appsession: remove appsession.c and sessionhash.c
2037 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg
2038 - CLEANUP: proxy: remove last references to appsession
2039 - CLEANUP: appsession: remove the last include files
2040 - DOC: remove documentation about appsession
2041 - CLEANUP: .gitignore: ignore more test files
2042 - CLEANUP: .gitignore: finally ignore everything but what is known.
2043 - MEDIUM: config: emit a warning on a frontend without listener
2044 - DOC: add doc/internals/entities-v2.txt
2045 - DOC: add doc/linux-syn-cookies.txt
2046 - DOC: add design thoughts on HTTP/2
2047 - DOC: add some thoughts on connection sharing for HTTP/2
2048 - DOC: add design thoughts on dynamic buffer allocation
2049 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
2050 - DOC: add new file intro.txt
2051 - MAJOR: tproxy: remove support for cttproxy
2052 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2
2053 - DOC: lua: replace txn:close with txn:done in lua-api
2054 - DOC: intro: minor updates and fixes
2055 - DOC: intro: fix too long line.
2056 - DOC: fix example of http-request using ssl_fc_session_id
2057 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode
2058 - CLEANUP: lua: fix some indent issues
2059 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice
2060 - DOC: lua: mention than txn:close was renamed txn:done.
2061
Willy Tarreau50bdda62015-07-22 17:32:56 +020020622015/07/22 : 1.6-dev3
2063 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type()
2064 - MEDIUM: http: Add new 'set-src' option to http-request
2065 - DOC usesrc root privileges requirments
2066 - BUG/MINOR: dns: wrong time unit for some DNS default parameters
2067 - MINOR: proxy: bit field for proxy_find_best_match diff status
2068 - MINOR: server: new server flag: SRV_F_FORCED_ID
2069 - MINOR: server: server_find functions: id, name, best_match
2070 - DOC: dns: fix chapters syntax
2071 - BUILD/MINOR: tools: rename popcount to my_popcountl
2072 - BUILD: add netbsd TARGET
2073 - MEDIUM: 51Degrees code refactoring and cleanup
2074 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection
2075 - DOC: add notes about the "51degrees-cache-size" parameter
2076 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str
2077 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing
2078 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension
2079 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext
2080 - BUG/MINOR: lua: type error in the arguments wrapper
2081 - CLEANUP: vars: remove unused struct
2082 - BUG/MINOR: http/sample: gmtime/localtime can fail
2083 - MINOR: standard: add 64 bits conversion functions
2084 - MAJOR: sample: converts uint and sint in 64 bits signed integer
2085 - MAJOR: arg: converts uint and sint in sint
2086 - MEDIUM: sample: switch to saturated arithmetic
2087 - MINOR: vars: returns variable content
2088 - MEDIUM: vars/sample: operators can use variables as parameter
2089 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id
2090 - BUILD/MINOR: lua: fix a harmless build warning
2091 - BUILD/MINOR: stats: fix build warning due to condition always true
2092 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon
2093 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags
2094 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined
2095 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used
2096 - MINOR: vars: make the accounting not depend on the stream
2097 - MEDIUM: vars: move the session variables to the session, not the stream
2098 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched
2099 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data
2100 - BUG/MAJOR: tcp: tcp rulesets were still broken
2101 - MINOR: stats: improve compression stats reporting
2102 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses
2103 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const
2104 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial()
2105 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()
2106 - MINOR: args: add new context for servers
2107 - MINOR: stream: maintain consistence between channel_forward and HTTP forward
2108 - MINOR: ssl: provide ia function to set the SNI extension on a connection
2109 - MEDIUM: ssl: add sni support on the server lines
2110 - CLEANUP: stream: remove a useless call to si_detach()
2111 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler()
2112 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach()
2113 - MINOR: stream-int: only use si_release_endpoint() to release a connection
2114 - MINOR: standard: provide htonll() and ntohll()
2115 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char
2116 - BUG/MAJOR: dns: fix the length of the string to be copied
2117
Willy Tarreauad90f0d2015-06-17 15:53:25 +020021182015/06/17 : 1.6-dev2
2119 - BUG/MINOR: ssl: Display correct filename in error message
2120 - MEDIUM: logs: Add HTTP request-line log format directives
2121 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f
2122 - BUG/MINOR: check: fix tcpcheck error message
2123 - MINOR: use an int instead of calling tcpcheck_get_step_id
2124 - MINOR: tcpcheck_rule structure update
2125 - MINOR: include comment in tcpcheck error log
2126 - DOC: tcpcheck comment documentation
2127 - MEDIUM: server: add support for changing a server's address
2128 - MEDIUM: server: change server ip address from stats socket
2129 - MEDIUM: protocol: add minimalist UDP protocol client
2130 - MEDIUM: dns: implement a DNS resolver
2131 - MAJOR: server: add DNS-based server name resolution
2132 - DOC: server name resolution + proto DNS
2133 - MINOR: dns: add DNS statistics
2134 - MEDIUM: http: configurable http result codes for http-request deny
2135 - BUILD: Compile clean when debug options defined
2136 - MINOR: lru: Add the possibility to free data when an item is removed
2137 - MINOR: lru: Add lru64_lookup function
2138 - MEDIUM: ssl: Add options to forge SSL certificates
2139 - MINOR: ssl: Export functions to manipulate generated certificates
2140 - MEDIUM: config: add DeviceAtlas global keywords
2141 - MEDIUM: global: add the DeviceAtlas required elements to struct global
2142 - MEDIUM: sample: add the da-csv converter
2143 - MEDIUM: init: DeviceAtlas initialization
2144 - BUILD: Makefile: add options to build with DeviceAtlas
2145 - DOC: README: explain how to build with DeviceAtlas
2146 - BUG/MEDIUM: http: fix the url_param fetch
2147 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized
2148 - MAJOR: peers: peers protocol version 2.0
2149 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed.
2150 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified.
2151 - MEDIUM: peers: support of any stick-table data-types for sync
2152 - BUG/MAJOR: sample: regression on sample cast to stick table types.
2153 - CLEANUP: deinit: remove codes for cleaning p->block_rules
2154 - DOC: Fix L4TOUT typo in documentation
2155 - DOC: set-log-level in Logging section preamble
2156 - BUG/MEDIUM: compat: fix segfault on FreeBSD
2157 - MEDIUM: check: include server address and port in the send-state header
2158 - MEDIUM: backend: Allow redispatch on retry intervals
2159 - MINOR: Add TLS ticket keys reference and use it in the listener struct
2160 - MEDIUM: Add support for updating TLS ticket keys via socket
2161 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key"
2162 - MINOR: Add sample fetch which identifies if the SSL session has been resumed
2163 - DOC: Update doc about weight, act and bck fields in the statistics
2164 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
2165 - MINOR: ssl: add a destructor to free allocated SSL ressources
2166 - MEDIUM: ssl: add the possibility to use a global DH parameters file
2167 - MEDIUM: ssl: replace standards DH groups with custom ones
2168 - MEDIUM: stats: Add enum srv_stats_state
2169 - MEDIUM: stats: Separate server state and colour in stats
2170 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set
2171 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent)
2172 - MEDIUM: Lower priority of email alerts for log-health-checks messages
2173 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state
2174 - MEDIUM: Document when email-alerts are sent
2175 - BUG/MEDIUM: lua: bad argument number in analyser and in error message
2176 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip
2177 - BUG/MINOR: utf8: remove compilator warning
2178 - MEDIUM: map: uses HAProxy facilities to store default value
2179 - BUG/MINOR: lua: error in detection of mandatory arguments
2180 - BUG/MINOR: lua: set current proxy as default value if it is possible
2181 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run.
2182 - BUG/MEDIUM: lua: undetected infinite loop
2183 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value
2184 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax
2185 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype
2186 - BUILD: lua: it miss the '-ldl' directive
2187 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet
2188 - MINOR: http: split the function http_action_set_req_line() in two parts
2189 - MINOR: http: split http_transform_header() function in two parts.
2190 - MINOR: http: export function inet_set_tos()
2191 - MINOR: lua: txn: add function set_(loglevel|tos|mark)
2192 - MINOR: lua: create and register HTTP class
2193 - DOC: lua: fix some typos
2194 - MINOR: lua: add log functions
2195 - BUG/MINOR: lua: Fix SSL initialisation
2196 - DOC: lua: some fixes
2197 - MINOR: lua: (req|res)_get_headers return more than one header value
2198 - MINOR: lua: map system integration in Lua
2199 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser
2200 - MINOR: sample: add url_dec converter
2201 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers
2202 - MEDIUM: sample change the prototype of sample-fetches and converters functions
2203 - MINOR: sample: fill the struct sample with the options.
2204 - MEDIUM: sample: change the prototype of sample-fetches functions
2205 - MINOR: http: split the url_param in two parts
2206 - CLEANUP: http: bad indentation
2207 - MINOR: http: add body_param fetch
2208 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer
2209 - DOC: http: req.body_param documentation
2210 - MINOR: proxy: custom capture declaration
2211 - MINOR: capture: add two "capture" converters
2212 - MEDIUM: capture: Allow capture with slot identifier
2213 - MINOR: http: add array of generic pointers in http_res_rules
2214 - MEDIUM: capture: adds http-response capture
2215 - MINOR: common: escape CSV strings
2216 - MEDIUM: stats: escape some strings in the CSV dump
2217 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing
2218 - MINOR: lua: Lua tcp action are not final action
2219 - DOC: lua: schematics about lua socket organization
2220 - BUG/MINOR: debug: display (null) in place of "meth"
2221 - DOC: mention the "lua action" in documentation
2222 - MINOR: standard: add function that converts signed int to a string
2223 - BUG/MINOR: sample: wrong conversion of signed values
2224 - MEDIUM: sample: Add type any
2225 - MINOR: debug: add a special converter which display its input sample content.
2226 - MINOR: tcp: increase the opaque data array
2227 - MINOR: tcp/http/conf: extends the keyword registration options
2228 - MINOR: build: fix build dependency
2229 - MEDIUM: vars: adds support of variables
2230 - MINOR: vars: adds get and set functions
2231 - MINOR: lua: Variable access
2232 - MINOR: samples: add samples which returns constants
2233 - BUG/MINOR: vars/compil: fix some warnings
2234 - BUILD: add 51degrees options to makefile.
2235 - MINOR: global: add several 51Degrees members to global
2236 - MINOR: config: add 51Degrees config parsing.
2237 - MINOR: init: add 51Degrees initialisation code
2238 - MEDIUM: sample: add fiftyone_degrees converter.
2239 - MEDIUM: deinit: add cleanup for 51Degrees to deinit
2240 - MEDIUM: sample: add trie support to 51Degrees
2241 - DOC: add 51Degrees notes to configuration.txt.
2242 - DOC: add build indications for 51Degrees to README.
2243 - MEDIUM: cfgparse: introduce weak and strong quoting
2244 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management
2245 - MINOR: cfgparse: remove line size limitation
2246 - MEDIUM: cfgparse: expand environment variables
2247 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message
2248 - BUG/MEDIUM: cfgparse: segfault when userlist is misused
2249 - CLEANUP: cfgparse: remove reference to 'ruleset' section
2250 - MEDIUM: cfgparse: check section maximum number of arguments
2251 - MEDIUM: cfgparse: max arguments check in the global section
2252 - MEDIUM: cfgparse: check max arguments in the proxies sections
2253 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag
2254 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call
2255 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection
2256 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw()
2257 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw()
2258 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt
2259 - MINOR: connection: implement conn_sock_send()
2260 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send()
2261 - MEDIUM: connection: make conn_drain() perform more controls
2262 - REORG: connection: move conn_drain() to connection.c and rename it
2263 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore
2264 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put*
2265 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints
2266 - BUG/MEDIUM: peers: correctly configure the client timeout
2267 - MINOR: peers: centralize configuration of the peers frontend
2268 - MINOR: proxy: store the default target into the frontend's configuration
2269 - MEDIUM: stats: use frontend_accept() as the accept function
2270 - MEDIUM: peers: use frontend_accept() instead of peer_accept()
2271 - CLEANUP: listeners: remove unused timeout
2272 - MEDIUM: listener: store the default target per listener
2273 - BUILD: fix automatic inclusion of libdl.
2274 - MEDIUM: lua: implement a simple memory allocator
2275 - MEDIUM: compression: postpone buffer adjustments after compression
2276 - MEDIUM: compression: don't send leading zeroes with chunk size
2277 - BUG/MINOR: compression: consider the expansion factor in init
2278 - MINOR: http: check the algo name "identity" instead of the function pointer
2279 - CLEANUP: compression: statify all algo-specific functions
2280 - MEDIUM: compression: add a distinction between UA- and config- algorithms
2281 - MEDIUM: compression: add new "raw-deflate" compression algorithm
2282 - MEDIUM: compression: split deflate_flush() into flush and finish
2283 - CLEANUP: compression: remove unused reset functions
2284 - MAJOR: compression: integrate support for libslz
2285 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name
2286 - BUG/MAJOR: http: null-terminate the http actions keywords list
2287 - CLEANUP: lua: remove the unused hlua_sleep memory pool
2288 - BUG/MAJOR: lua: use correct object size when initializing a new converter
2289 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs
2290 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new()
2291 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp
2292 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn.
2293 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn
2294 - CLEANUP: lua: rename variable "sc" for struct hlua_smp
2295 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp
2296 - REORG/MAJOR: session: rename the "session" entity to "stream"
2297 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_*
2298 - MINOR: session: start to reintroduce struct session
2299 - MEDIUM: stream: allocate the session when a stream is created
2300 - MEDIUM: stream: move the listener's pointer to the session
2301 - MEDIUM: stream: move the frontend's pointer to the session
2302 - MINOR: session: add a pointer to the session's origin
2303 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end
2304 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL
2305 - MEDIUM: http: move header captures from http_txn to struct stream
2306 - MINOR: http: create a dedicated pool for http_txn
2307 - MAJOR: http: move http_txn out of struct stream
2308 - MAJOR: sample: don't pass l7 anymore to sample fetch functions
2309 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7
2310 - MEDIUM: http: remove the now useless http_txn from {req/res} rules
2311 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper()
2312 - MAJOR: sample: pass a pointer to the session to each sample fetch function
2313 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin
2314 - CLEANUP: stream: don't set ->target to the incoming connection anymore
2315 - MINOR: stream: move session initialization before the stream's
2316 - MINOR: session: store the session's accept date
2317 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions
2318 - MINOR: session: implement session_free() and use it everywhere
2319 - MINOR: session: add stick counters to the struct session
2320 - REORG: stktable: move the stkctr_* functions from stream to sticktable
2321 - MEDIUM: streams: support looking up stkctr in the session
2322 - MEDIUM: session: update the session's stick counters upon session_free()
2323 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset
2324 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session
2325 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept()
2326 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier
2327 - MAJOR: stream: don't initialize the stream anymore in stream_accept
2328 - MEDIUM: session: remove the task pointer from the session
2329 - REORG: session: move the session parts out of stream.c
2330 - MINOR: stream-int: make appctx_new() take the applet in argument
2331 - MEDIUM: peers: move the appctx initialization earlier
2332 - MINOR: session: introduce session_new()
2333 - MINOR: session: make use of session_new() when creating a new session
2334 - MINOR: peers: make use of session_new() when creating a new session
2335 - MEDIUM: peers: initialize the task before the stream
2336 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready
2337 - CLEANUP: stream.c: do not re-attach the connection to the stream
2338 - MEDIUM: stream: isolate connection-specific initialization code
2339 - MEDIUM: stream: also accept appctx as origin in stream_accept_session()
2340 - MEDIUM: peers: make use of stream_accept_session()
2341 - MEDIUM: frontend: make ->accept only return +/-1
2342 - MEDIUM: stream: return the stream upon accept()
2343 - MEDIUM: frontend: move some stream initialisation to stream_new()
2344 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd()
2345 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore
2346 - MEDIUM: frontend: move some remaining stream settings to stream_new()
2347 - CLEANUP: frontend: remove one useless local variable
2348 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new()
2349 - MEDIUM: lua: make use of stream_new() to create an outgoing connection
2350 - MINOR: lua: minor cleanup in hlua_socket_new()
2351 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new()
2352 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create()
2353 - CLEANUP: stream-int: swap stream-int and appctx declarations
2354 - CLEANUP: namespaces: fix protection against multiple inclusions
2355 - MINOR: session: maintain the session count stats in the session, not the stream
2356 - MEDIUM: session: adjust the connection flags before stream_new()
2357 - MINOR: stream: pass the pointer to the origin explicitly to stream_new()
2358 - CLEANUP: poll: move the conditions for waiting out of the poll functions
2359 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners
2360 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
2361 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset
2362 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified
2363 - DOC: update the entities diagrams
2364 - BUG/MEDIUM: http: properly retrieve the front connection
2365 - MINOR: applet: add a new "owner" pointer in the appctx
2366 - MEDIUM: applet: make the applet not depend on a stream interface anymore
2367 - REORG: applet: move the applet definitions out of stream_interface
2368 - CLEANUP: applet: rename struct si_applet to applet
2369 - REORG: stream-int: create si_applet_ops dedicated to applets
2370 - MEDIUM: applet: add basic support for an applet run queue
2371 - MEDIUM: applet: implement a run queue for active appctx
2372 - MEDIUM: stream-int: add a new function si_applet_done()
2373 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers
2374 - MAJOR: stream: use a regular ->update for all stream interfaces
2375 - MEDIUM: dumpstats: don't unregister the applet anymore
2376 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler
2377 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet
2378 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O
2379 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put}
2380 - MEDIUM: stream-int: pause the appctx if the task is woken up
2381 - BUG/MAJOR: tcp: only call registered actions when they're registered
2382 - BUG/MEDIUM: peers: fix applet scheduling
2383 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling
2384 - MINOR: tools: provide an rdtsc() function for time comparisons
2385 - IMPORT: lru: import simple ebtree-based LRU functions
2386 - IMPORT: hash: import xxhash-r39
2387 - MEDIUM: pattern: add a revision to all pattern expressions
2388 - MAJOR: pattern: add LRU-based cache on pattern matching
2389 - BUG/MEDIUM: http: remove content-length from chunked messages
2390 - DOC: http: update the comments about the rules for determining transfer-length
2391 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1
2392 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request
2393 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding
2394 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230
2395 - MEDIUM: http: disable support for HTTP/0.9 by default
2396 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408
2397 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies
2398 - MEDIUM: init: don't stop proxies in parent process when exiting
2399 - MINOR: stick-table: don't attach to peers in stopped state
2400 - MEDIUM: config: initialize stick-tables after peers, not before
2401 - MEDIUM: peers: add the ability to disable a peers section
2402 - MINOR: peers: store the pointer to the signal handler
2403 - MEDIUM: peers: unregister peers that were never started
2404 - MEDIUM: config: propagate the table's process list to the peers sections
2405 - MEDIUM: init: stop any peers section not bound to the correct process
2406 - MEDIUM: config: validate that peers sections are bound to exactly one process
2407 - MAJOR: peers: allow peers section to be used with nbproc > 1
2408 - DOC: relax the peers restriction to single-process
2409 - DOC: document option http-ignore-probes
2410 - DOC: fix the comments about the meaning of msg->sol in HTTP
2411 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body
2412 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param
2413 - MEDIUM: stream: move HTTP request body analyser before process_common
2414 - MEDIUM: http: add a new option http-buffer-request
2415 - MEDIUM: http: provide 3 fetches for the body
2416 - DOC: update the doc on the proxy protocol
2417 - BUILD: pattern: fix build warnings introduced in the LRU cache
2418 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats
2419 - CLEANUP: config: fix misleading information in error message.
2420 - MINOR: config: report the number of processes using a peers section in the error case
2421 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy
2422 - MEDIUM: http: add new "capture" action for http-request
2423 - BUG/MEDIUM: http: fix the http-request capture parser
2424 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels
2425 - BUILD/MINOR: ssl: fix build failure introduced by recent patch
2426 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules
2427 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks
2428 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
2429 - CLEANUP: checks: simplify the loop processing of tcp-checks
2430 - BUG/MAJOR: checks: always check for end of list before proceeding
2431 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
2432 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment
2433 - MEDIUM: http: make url_param iterate over multiple occurrences
2434 - BUG/MEDIUM: peers: apply a random reconnection timeout
2435 - MEDIUM: config: reject invalid config with name duplicates
2436 - MEDIUM: config: reject conflicts in table names
2437 - CLEANUP: proxy: make the proxy lookup functions more user-friendly
2438 - MINOR: proxy: simply ignore duplicates in proxy name lookups
2439 - MINOR: config: don't open-code proxy name lookups
2440 - MEDIUM: config: clarify the conflicting modes detection for backend rules
2441 - CLEANUP: proxy: remove now unused function findproxy_mode()
2442 - MEDIUM: stick-table: remove the now duplicate find_stktable() function
2443 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions
2444 - MINOR: proxy: add a new function proxy_find_by_id()
2445 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced
2446 - MEDIUM: proxy: add a new proxy_find_best_match() function
2447 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules()
2448 - MINOR: http: prepare support for parsing redirect actions on responses
2449 - MEDIUM: http: implement http-response redirect rules
2450 - MEDIUM: http: no need to close the request on redirect if data was parsed
2451 - BUG/MEDIUM: http: fix body processing for the stats applet
2452 - BUG/MINOR: da: fix log-level comparison to emove annoying warning
2453 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS
2454 - CLEANUP: da: move the converter registration to da.c
2455 - CLEANUP: da: register the config keywords in da.c
2456 - CLEANUP: adjust the envelope name in da.h to reflect the file name
2457 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c
2458 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC
2459 - BUILD: fix build warning when not using 51degrees
2460 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC
2461 - BUILD: ssl: fix recent build breakage on older SSL libs
2462
Willy Tarreau8747b6d2015-03-11 23:57:23 +010024632015/03/11 : 1.6-dev1
2464 - CLEANUP: extract temporary $CFG to eliminate duplication
2465 - CLEANUP: extract temporary $BIN to eliminate duplication
2466 - CLEANUP: extract temporary $PIDFILE to eliminate duplication
2467 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication
2468 - CLEANUP: extract quiet_check() to avoid duplication
2469 - BUG/MINOR: don't start haproxy on reload
2470 - DOC: Address issue where documentation is excluded due to a gitignore rule.
2471 - BUG/MEDIUM: systemd: set KillMode to 'mixed'
2472 - BUILD: fix "make install" to support spaces in the install dirs
2473 - BUG/MINOR: config: http-request replace-header arg typo
2474 - BUG: config: error in http-response replace-header number of arguments
2475 - DOC: missing track-sc* in http-request rules
2476 - BUILD: lua: missing ifdef related to SSL when enabling LUA
2477 - BUG/MEDIUM: regex: fix pcre_study error handling
2478 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT
2479 - BUG/MINOR: Fix search for -p argument in systemd wrapper.
2480 - MEDIUM: Improve signal handling in systemd wrapper.
2481 - DOC: fix typo in Unix Socket commands
2482 - BUG/MEDIUM: checks: external checks can't change server status to UP
2483 - BUG/MEDIUM: checks: segfault with external checks in a backend section
2484 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result
2485 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm
2486 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported
2487 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend
2488 - BUG/MINOR: log: fix request flags when keep-alive is enabled
2489 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
2490 - MINOR: checks: allow external checks in backend sections
2491 - MEDIUM: checks: provide environment variables to the external checks
2492 - MINOR: checks: update dynamic environment variables in external checks
2493 - DOC: checks: environment variables used by "external-check command"
2494 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used
2495 - MINOR: ssl: load certificates in alphabetical order
2496 - BUG/MINOR: checks: prevent http keep-alive with http-check expect
2497 - MINOR: lua: typo in an error message
2498 - MINOR: report the Lua version in -vv
2499 - MINOR: lua: add a compilation error message when compiled with an incompatible version
2500 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua
2501 - BUILD: try to automatically detect the Lua library name
2502 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration
2503 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout
2504 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header
2505 - MEDIUM: connection: add new bit in Proxy Protocol V2
2506 - BUG/MINOR: ssl: rejects OCSP response without nextupdate.
2507 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.
2508 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice.
2509 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer.
2510 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs
2511 - MINOR: ssl: add statement to force some ssl options in global.
2512 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates
2513 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
2514 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
2515 - MINOR: samples: adds the bytes converter.
2516 - MINOR: samples: adds the field converter.
2517 - MINOR: samples: add the word converter.
2518 - BUG/MINOR: server: move the directive #endif to the end of file
2519 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped
2520 - DOC: fix a few typos
2521 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents
2522 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized"
2523 - BUG/MINOR: parse: refer curproxy instead of proxy
2524 - BUG/MINOR: parse: check the validity of size string in a more strict way
2525 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS
2526 - DOC: expand the docs for the provided stats.
2527 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure.
2528 - MEDIUM: ssl: Certificate Transparency support
2529 - MEDIUM: stats: proxied stats admin forms fix
2530 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200
2531 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information
2532 - MAJOR: namespace: add Linux network namespace support
2533 - MINOR: systemd: Check configuration before start
2534 - BUILD: ssl: handle boringssl in openssl version detection
2535 - BUILD: ssl: disable OCSP when using boringssl
2536 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl
2537 - MINOR: ssl: don't use boringssl's cipher_list
2538 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support
2539 - MINOR: stats: fix minor typo in HTML page
2540 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper
2541 - MEDIUM: Add support for configurable TLS ticket keys
2542 - DOC: Document the new tls-ticket-keys bind keyword
2543 - DOC: clearly state that the "show sess" output format is not fixed
2544 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer()
2545 - DOC: httplog does not support 'no'
2546 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange
2547 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list.
2548 - BUG/MEDIUM: Consistently use 'check' in process_chk
2549 - MEDIUM: Add external check
2550 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config
2551 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero
2552 - MEDIUM: Remove connect_chk
2553 - MEDIUM: Refactor init_check and move to checks.c
2554 - MEDIUM: Add free_check() helper
2555 - MEDIUM: Move proto and addr fields struct check
2556 - MEDIUM: Attach tcpcheck_rules to check
2557 - MEDIUM: Add parsing of mailers section
2558 - MEDIUM: Allow configuration of email alerts
2559 - MEDIUM: Support sending email alerts
2560 - DOC: Document email alerts
2561 - MINOR: Remove trailing '.' from email alert messages
2562 - MEDIUM: Allow suppression of email alerts by log level
2563 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error
2564 - MINOR: deinit: fix memory leak
2565 - MINOR: http: export the function 'smp_fetch_base32'
2566 - BUG/MEDIUM: http: tarpit timeout is reset
2567 - MINOR: sample: add "json" converter
2568 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
2569 - MINOR: map/acl/dumpstats: remove the "Done." message
2570 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection
2571 - BUG/MINOR: pattern: error message missing
2572 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match
2573 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word
2574 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay
2575 - MEDIUM: task: call session analyzers if the task is woken by a message.
2576 - MEDIUM: protocol: automatically pick the proto associated to the connection.
2577 - MEDIUM: channel: wake up any request analyzer on response activity
2578 - MINOR: converters: add a "void *private" argument to converters
2579 - MINOR: converters: give the session pointer as converter argument
2580 - MINOR: sample: add private argument to the struct sample_fetch
2581 - MINOR: global: export function and permits to not resolve DNS names
2582 - MINOR: sample: add function for browsing samples.
2583 - MINOR: global: export many symbols.
2584 - MINOR: includes: fix a lot of missing or useless includes
2585 - MEDIUM: tcp: add register keyword system.
2586 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied.
2587 - MEDIUM: http: change the code returned by the response processing rule functions
2588 - MEDIUM: http/tcp: permit to resume http and tcp custom actions
2589 - MINOR: channel: functions to get data from a buffer without copy
2590 - MEDIUM: lua: lua integration in the build and init system.
2591 - MINOR: lua: add ease functions
2592 - MINOR: lua: add runtime execution context
2593 - MEDIUM: lua: "com" signals
2594 - MINOR: lua: add the configuration directive "lua-load"
2595 - MINOR: lua: core: create "core" class and object
2596 - MINOR: lua: post initialisation bindings
2597 - MEDIUM: lua: add coroutine as tasks.
2598 - MINOR: lua: add sample and args type converters
2599 - MINOR: lua: txn: create class TXN associated with the transaction.
2600 - MINOR: lua: add shared context in the lua stack
2601 - MINOR: lua: txn: import existing sample-fetches in the class TXN
2602 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers
2603 - MINOR: lua: register and execute sample-fetches in LUA
2604 - MINOR: lua: register and execute converters in LUA
2605 - MINOR: lua: add bindings for tcp and http actions
2606 - MINOR: lua: core: add sleep functions
2607 - MEDIUM: lua: socket: add "socket" class for TCP I/O
2608 - MINOR: lua: core: pattern and acl manipulation
2609 - MINOR: lua: channel: add "channel" class
2610 - MINOR: lua: txn: object "txn" provides two objects "channel"
2611 - MINOR: lua: core: can set the nice of the current task
2612 - MINOR: lua: core: can yield an execution stack
2613 - MINOR: lua: txn: add binding for closing the client connection.
2614 - MEDIUM: lua: Lua initialisation "on demand"
2615 - BUG/MAJOR: lua: send function fails and return bad bytes
2616 - MINOR: remove unused declaration.
2617 - MINOR: lua: remove some #define
2618 - MINOR: lua: use bitfield and macro in place of integer and enum
2619 - MINOR: lua: set skeleton for Lua execution expiration
2620 - MEDIUM: lua: each yielding function returns a wake up time.
2621 - MINOR: lua: adds "forced yield" flag
2622 - MEDIUM: lua: interrupt the Lua execution for running other process
2623 - MEDIUM: lua: change the sleep function core
2624 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case
2625 - DOC: lua: Lua configuration documentation
2626 - MINOR: lua: add the struct session in the lua channel struct
2627 - BUG/MINOR: lua: set buffer if it is nnot avalaible.
2628 - BUG/MEDIUM: lua: reset flags before resuming execution
2629 - BUG/MEDIUM: lua: fix infinite loop about channel
2630 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side
2631 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API
2632 - MEDIUM: lua: use the Lua-5.3 version of the library
2633 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors
2634 - BUG/MEDIUM: lua: can't handle the response bytes
2635 - BUG/MEDIUM: lua: segfault with buffer_replace2
2636 - BUG/MINOR: lua: check buffers before initializing socket
2637 - BUG/MINOR: log: segfault if there are no proxy reference
2638 - BUG/MEDIUM: lua: sockets don't have buffer to write data
2639 - BUG/MEDIUM: lua: cannot connect socket
2640 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs
2641 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done.
2642 - BUG/MEDIUM: buffer: one byte miss in buffer free space check
2643 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster
2644 - MINOR: replace the Core object by a simple model.
2645 - MEDIUM: lua: change the objects configuration
2646 - MEDIUM: lua: create a namespace for the fetches
2647 - MINOR: converters: add function to browse converters
2648 - MINOR: lua: wrapper for converters
2649 - MINOR: lua: replace function (req|get)_channel by a variable
2650 - MINOR: lua: fetches and converters can return an empty string in place of nil
2651 - DOC: lua api
2652 - BUG/MEDIUM: sample: fix random number upper-bound
2653 - BUG/MINOR: stats:Fix incorrect printf type.
2654 - BUG/MAJOR: session: revert all the crappy client-side timeout changes
2655 - BUG/MINOR: logs: properly initialize and count log sockets
2656 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header
2657 - BUG/MINOR: counters: do not untrack counters before logging
2658 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process()
2659 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed
2660 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents
2661 - BUILD: remove TODO from the spec file and add README
2662 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time
2663 - MEDIUM: log: support a user-configurable max log line length
2664 - DOC: provide an example of how to use ssl_c_sha1
2665 - BUILD: checks: external checker needs signal.h
2666 - BUILD: checks: kill a minor warning on Solaris in external checks
2667 - BUILD: http: fix isdigit & isspace warnings on Solaris
2668 - BUG/MINOR: listener: set the listener's fd to -1 after deletion
2669 - BUG/MEDIUM: unix: failed abstract socket binding is retryable
2670 - MEDIUM: listener: implement a per-protocol pause() function
2671 - MEDIUM: listener: support rebinding during resume()
2672 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause()
2673 - DOC: explicitly mention the limits of abstract namespace sockets
2674 - DOC: minor fix on {sc,src}_kbytes_{in,out}
2675 - DOC: fix alphabetical sort of converters
2676 - MEDIUM: stick-table: implement lookup from a sample fetch
2677 - MEDIUM: stick-table: add new converters to fetch table data
2678 - MINOR: samples: add two converters for the date format
2679 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding
2680 - DOC: remove references to CPU=native in the README
2681 - DOC: mention that "compression offload" is ignored in defaults section
2682 - DOC: mention that Squid correctly responds 400 to PPv2 header
2683 - BUILD: fix dependencies between config and compat.h
2684 - MINOR: session: export the function 'smp_fetch_sc_stkctr'
2685 - MEDIUM: stick-table: make it easier to register extra data types
2686 - BUG/MINOR: http: base32+src should use the big endian version of base32
2687 - MINOR: sample: allow IP address to cast to binary
2688 - MINOR: sample: add new converters to hash input
2689 - MINOR: sample: allow integers to cast to binary
2690 - BUILD: report commit ID in git versions as well
2691 - CLEANUP: session: move the stick counters declarations to stick_table.h
2692 - MEDIUM: http: add the track-sc* actions to http-request rules
2693 - BUG/MEDIUM: connection: fix proxy v2 header again!
2694 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc*
2695 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs
2696 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter
2697 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth()
2698 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs
2699 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg()
2700 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used
2701 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix
2702 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer
2703 - MEDIUM: http: enable header manipulation for 101 responses
2704 - BUG/MEDIUM: config: propagate frontend to backend process binding again.
2705 - MEDIUM: config: properly propagate process binding between proxies
2706 - MEDIUM: config: make the frontends automatically bind to the listeners' processes
2707 - MEDIUM: config: compute the exact bind-process before listener's maxaccept
2708 - MEDIUM: config: only warn if stats are attached to multi-process bind directives
2709 - MEDIUM: config: report it when tcp-request rules are misplaced
2710 - DOC: indicate in the doc that track-sc* can wait if data are missing
2711 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay
2712 - MEDIUM: systemd-wrapper: support multiple executable versions and names
2713 - BUG/MEDIUM: remove debugging code from systemd-wrapper
2714 - BUG/MEDIUM: http: adjust close mode when switching to backend
2715 - BUG/MINOR: config: don't propagate process binding on fatal errors.
2716 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures
2717 - BUG/MINOR: tcp-check: report the correct failed step in the status
2718 - DOC: indicate that weight zero is reported as DRAIN
2719 - BUG/MEDIUM: config: avoid skipping disabled proxies
2720 - BUG/MINOR: config: do not accept more track-sc than configured
2721 - BUG/MEDIUM: backend: fix URI hash when a query string is present
2722 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR
2723 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error
2724 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol
2725 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8
2726 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets
2727 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix
2728 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
2729 - MEDIUM: ssl: add support for smaller SSL records
2730 - MINOR: session: release a few other pools when stopping
2731 - MINOR: task: release the task pool when stopping
2732 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
2733 - BUG/MAJOR: frontend: initialize capture pointers earlier
2734 - BUG/MINOR: stats: correctly set the request/response analysers
2735 - MAJOR: polling: centralize calls to I/O callbacks
2736 - DOC: fix typo in the body parser documentation for msg.sov
2737 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
2738 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping)
2739 - DEBUG: pools: apply poisonning on every allocated pool
2740 - BUG/MAJOR: sessions: unlink session from list on out of memory
2741 - BUG/MEDIUM: patterns: previous fix was incomplete
2742 - BUG/MEDIUM: payload: ensure that a request channel is available
2743 - BUG/MINOR: tcp-check: don't condition data polling on check type
2744 - BUG/MEDIUM: tcp-check: don't rely on random memory contents
2745 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
2746 - BUG/MINOR: config: fix typo in condition when propagating process binding
2747 - BUG/MEDIUM: config: do not propagate processes between stopped processes
2748 - BUG/MAJOR: stream-int: properly check the memory allocation return
2749 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
2750 - BUG/MAJOR: namespaces: conn->target is not necessarily a server
2751 - BUG/MEDIUM: compression: correctly report zlib_mem
2752 - CLEANUP: lists: remove dead code
2753 - CLEANUP: memory: remove dead code
2754 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions
2755 - MINOR: memory: cut pool allocator in 3 layers
2756 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count
2757 - MINOR: stream-int: retrieve session pointer from stream-int
2758 - MINOR: buffer: reset a buffer in b_reset() and not channel_init()
2759 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer
2760 - MINOR: buffer: move buffer initialization after channel initialization
2761 - MINOR: buffer: only use b_free to release buffers
2762 - MEDIUM: buffer: always assign a dummy empty buffer to channels
2763 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations
2764 - MEDIUM: channel: do not report full when buf_empty is present on a channel
2765 - MINOR: session: group buffer allocations together
2766 - MINOR: buffer: implement b_alloc_fast()
2767 - MEDIUM: buffer: implement b_alloc_margin()
2768 - MEDIUM: session: implement a basic atomic buffer allocator
2769 - MAJOR: session: implement a wait-queue for sessions who need a buffer
2770 - MAJOR: session: only allocate buffers when needed
2771 - MINOR: stats: report a "waiting" flags for sessions
2772 - MAJOR: session: only wake up as many sessions as available buffers permit
2773 - MINOR: config: implement global setting tune.buffers.reserve
2774 - MINOR: config: implement global setting tune.buffers.limit
2775 - MEDIUM: channel: implement a zero-copy buffer transfer
2776 - MEDIUM: stream-int: support splicing from applets
2777 - OPTIM: stream-int: try to send pending spliced data
2778 - CLEANUP: session: remove session_from_task()
2779 - DOC: add missing entry for log-format and clarify the text
2780 - MINOR: logs: add a new per-proxy "log-tag" directive
2781 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF
2782 - MINOR: config: extend the default max hostname length to 64 and beyond
2783 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation
2784 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size
2785 - MINOR: channel: add channel_in_transit()
2786 - MEDIUM: channel: make buffer_reserved() use channel_in_transit()
2787 - MEDIUM: channel: make bi_avail() use channel_in_transit()
2788 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected
2789 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable
2790 - MINOR: channel: rename channel_full() to !channel_may_recv()
2791 - MINOR: channel: rename buffer_reserved() to channel_reserved()
2792 - MINOR: channel: rename buffer_max_len() to channel_recv_limit()
2793 - MINOR: channel: rename bi_avail() to channel_recv_max()
2794 - MINOR: channel: rename bi_erase() to channel_truncate()
2795 - BUG/MAJOR: log: don't try to emit a log if no logger is set
2796 - MINOR: tools: add new round_2dig() function to round integers
2797 - MINOR: global: always export some SSL-specific metrics
2798 - MINOR: global: report information about the cost of SSL connections
2799 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible
2800 - MINOR: http: add a new fetch "query" to extract the request's query string
2801 - MINOR: hash: add new function hash_crc32
2802 - MINOR: samples: provide a "crc32" converter
2803 - MEDIUM: backend: add the crc32 hash algorithm for load balancing
2804 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names
2805 - BUG/MEDIUM: http: make http-request set-header compute the string before removal
2806 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts
2807 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5
2808 - MINOR: args: add type-specific flags for each arg in a list
2809 - MINOR: args: implement a new arg type for regex : ARGT_REG
2810 - MEDIUM: regex: add support for passing regex flags to regex_exec_match()
2811 - MEDIUM: samples: add a regsub converter to perform regex-based transformations
2812 - BUG/MINOR: sample: fix case sensitivity for the regsub converter
2813 - MEDIUM: http: implement http-request set-{method,path,query,uri}
2814 - DOC: fix missing closing brackend on regsub
2815 - MEDIUM: samples: provide basic arithmetic and bitwise operators
2816 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set
2817 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value
2818 - BUG/MINOR: http: abort request processing on filter failure
2819 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT
2820 - MINOR: ssl/server: add the "no-ssl-reuse" server option
2821 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session
2822 - MINOR: http: add a new function to iterate over each header line
2823 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names
2824 - MEDIUM: task: always ensure that the run queue is consistent
2825 - BUILD: Makefile: add -Wdeclaration-after-statement
2826 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration
2827 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code
2828 - MEDIUM: protocol: use a family array to index the protocol handlers
2829 - BUILD: lua: cleanup many mixed occurrences declarations & code
2830 - BUG/MEDIUM: task: fix recently introduced scheduler skew
2831 - BUG/MINOR: lua: report the correct function name in an error message
2832 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD
2833 - Revert "BUG/MEDIUM: lua: can't handle the response bytes"
2834 - MINOR: lua: convert IP addresses to type string
2835 - CLEANUP: lua: use the same function names in C and Lua
2836 - REORG/MAJOR: move session's req and resp channels back into the session
2837 - CLEANUP: remove now unused channel pool
2838 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels
2839 - MEDIUM: stream-int: add a flag indicating which side the SI is on
2840 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel
2841 - MEDIUM: stream-interface: remove now unused pointers to channels
2842 - MEDIUM: stream-int: make si_sess() use the stream int's side
2843 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int
2844 - MEDIUM: stream-int: remove any reference to the owner
2845 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers
2846 - CLEANUP: stream-int: add si_opposite() to find the other stream interface
2847 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces
2848 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel
2849 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI
2850 - MEDIUM: channel: remove now unused ->prod and ->cons pointers
2851 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res})
2852 - CLEANUP: session: use local variables to access channels / stream ints
2853 - CLEANUP: session: don't needlessly pass a pointer to the stream-int
2854 - CLEANUP: session: don't use si_{ic,oc} when we know the session.
2855 - CLEANUP: stream-int: limit usage of si_ic/si_oc
2856 - CLEANUP: lua: limit usage of si_ic/si_oc
2857 - MINOR: channel: add chn_sess() helper to retrieve session from channel
2858 - MEDIUM: session: simplify receive buffer allocator to only use the channel
2859 - MEDIUM: lua: use CF_ISRESP to detect the channel's side
2860 - CLEANUP: lua: remove the session pointer from hlua_channel
2861 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore
2862 - MEDIUM: lua: remove struct hlua_channel
2863 - MEDIUM: lua: remove hlua_sample_fetch
2864
Willy Tarreau15480d72014-06-19 21:10:58 +020028652014/06/19 : 1.6-dev0
2866 - exact copy of 1.5.0
2867
Willy Tarreau9229f122014-06-19 21:01:06 +020028682014/06/19 : 1.5.0
2869 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'.
2870 - MEDIUM: ssl: basic OCSP stapling support.
2871 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response'
2872 - MEDIUM: ssl: add 300s supported time skew on OCSP response update.
2873 - MINOR: checks: mysql-check: Add support for v4.1+ authentication
2874 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits
2875 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description.
2876 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp
2877 - MEDIUM: Break out check establishment into connect_chk()
2878 - MEDIUM: Add port_to_str helper
2879 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section.
2880 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT.
2881 - MINOR: regex: fix a little configuration memory leak.
2882 - MINOR: regex: Create JIT compatible function that return match strings
2883 - MEDIUM: regex: replace all standard regex function by own functions
2884 - MEDIUM: regex: Remove null terminated strings.
2885 - MINOR: regex: Use native PCRE API.
2886 - MINOR: missing regex.h include
2887 - DOC: Add Exim as Proxy Protocol implementer.
2888 - BUILD: don't use type "uint" which is not portable
2889 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour
2890 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction
2891 - CLEANUP: http: don't clear CF_READ_NOEXP twice
2892 - DOC: fix proxy protocol v2 decoder example
2893 - DOC: fix remaining occurrences of "pattern extraction"
2894 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends
2895 - MINOR: logs: don't limit HTTP header captures to HTTP frontends
2896 - MINOR: sample: improve sample_fetch_string() to report partial contents
2897 - MINOR: capture: extend the captures to support non-header keys
2898 - MINOR: tcp: prepare support for the "capture" action
2899 - MEDIUM: tcp: add a new tcp-request capture directive
2900 - MEDIUM: session: allow shorter retry delay if timeout connect is small
2901 - MEDIUM: session: don't apply the retry delay when redispatching
2902 - MEDIUM: session: redispatch earlier when possible
2903 - MINOR: config: warn when tcp-check rules are used without option tcp-check
2904 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol
2905 - DOC: proxy protocol example parser was still wrong
2906 - DOC: minor updates to the proxy protocol doc
2907 - CLEANUP: connection: merge proxy proto v2 header and address block
2908 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy
2909 - MINOR: tools: add new functions to quote-encode strings
2910 - DOC: clarify the CSV format
2911 - MEDIUM: stats: report the last check and last agent's output on the CSV status
2912 - MINOR: freq_ctr: introduce a new averaging method
2913 - MEDIUM: session: maintain per-backend and per-server time statistics
2914 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs
2915 - BUG/MINOR: http: fix typos in previous patch
2916 - DOC: remove the ultra-obsolete TODO file
2917 - DOC: update roadmap
2918 - DOC: minor updates to the README
2919 - DOC: mention the maxconn limitations with the select poller
2920 - DOC: commit a few old design thoughts files
2921
Willy Tarreau2e858402014-05-28 17:50:53 +020029222014/05/28 : 1.5-dev26
2923 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1.
2924 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one
2925 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance
2926 - MINOR: fix a few memory usage errors
2927 - CONTRIB: halog: Filter input lines by date and time through timestamp
2928 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int
2929 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace()
2930 - MINOR: acl: set "str" as default match for strings
2931 - DOC: Add some precisions about acl default matching method
2932 - MEDIUM: acl: strenghten the option parser to report invalid options
2933 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25
2934 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks
2935 - MINOR: stats: improve alignment of color codes to save one line of header
2936 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks
2937 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced
2938 - MINOR: server: use functions to detect state changes and to update them
2939 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer
2940 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining
2941 - BUG/MAJOR: config: don't free valid regex memory
2942 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called
2943 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status
2944 - MEDIUM: proxy: make timeout parser a bit stricter
2945 - REORG/MEDIUM: server: split server state and flags in two different variables
2946 - REORG/MEDIUM: server: move the maintenance bits out of the server state
2947 - MAJOR: server: use states instead of flags to store the server state
2948 - REORG: checks: put the functions in the appropriate files !
2949 - MEDIUM: server: properly support and propagate the maintenance status
2950 - MEDIUM: server: allow multi-level server tracking
2951 - CLEANUP: checks: rename the server_status_printf function
2952 - MEDIUM: checks: simplify server up/down/nolb transitions
2953 - MAJOR: checks: move health checks changes to set_server_check_status()
2954 - MINOR: server: make the status reporting function support a reason
2955 - MINOR: checks: simplify health check reporting functions
2956 - MINOR: server: implement srv_set_stopped()
2957 - MINOR: server: implement srv_set_running()
2958 - MINOR: server: implement srv_set_stopping()
2959 - MEDIUM: checks: simplify failure notification using srv_set_stopped()
2960 - MEDIUM: checks: simplify success notification using srv_set_running()
2961 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping()
2962 - MEDIUM: stats: report a server's own state instead of the tracked one's
2963 - MINOR: server: make use of srv_is_usable() instead of checking eweight
2964 - MAJOR: checks: add support for a new "drain" administrative mode
2965 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page
2966 - MEDIUM: stats: introduce new actions to simplify admin status management
2967 - MINOR: cli: introduce a new "set server" command
2968 - MINOR: stats: report a distinct output for DOWN caused by agent
2969 - MINOR: checks: support specific check reporting for the agent
2970 - MINOR: checks: support a neutral check result
2971 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message
2972 - MEDIUM: cli: add support for enabling/disabling health checks.
2973 - MEDIUM: stats: report down caused by agent prior to reporting up
2974 - MAJOR: agent: rework the response processing and support additional actions
2975 - MINOR: stats: improve the stats web page to support more actions
2976 - CONTRIB: halog: avoid calling time/localtime/mktime for each line
2977 - DOC: document the workarouds for Google Chrome's bogus pre-connect
2978 - MINOR: stats: report SSL key computations per second
2979 - MINOR: stats: add counters for SSL cache lookups and misses
2980
Willy Tarreaua3393952014-05-10 15:16:43 +020029812014/05/10 : 1.5-dev25
2982 - MEDIUM: connection: Implement and extented PROXY Protocol V2
2983 - MINOR: ssl: clean unused ACLs declarations
2984 - MINOR: ssl: adds fetchs and ACLs for ssl back connection.
2985 - MINOR: ssl: merge client's and frontend's certificate functions.
2986 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint
2987 - MINOR: ssl: adds sample converter base64 for binary type.
2988 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id.
2989 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported.
2990 - MAJOR: ssl: Change default locks on ssl session cache.
2991 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring.
2992 - MINOR: ssl: add global statement tune.ssl.force-private-cache.
2993 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails.
2994 - BUG/MEDIUM: patterns: last fix was still not enough
2995 - MINOR: http: export the smp_fetch_cookie function
2996 - MINOR: http: generic pointer to rule argument
2997 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering
2998 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns
2999 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend
3000 - BUG/MINOR: http: log 407 in case of proxy auth
3001 - MINOR: http: rely on the message body parser to send 100-continue
3002 - MEDIUM: http: move reqadd after execution of http_request redirect
3003 - MEDIUM: http: jump to dedicated labels after http-request processing
3004 - BUG/MINOR: http: block rules forgot to increment the denied_req counter
3005 - BUG/MINOR: http: block rules forgot to increment the session's request counter
3006 - MEDIUM: http: move Connection header processing earlier
3007 - MEDIUM: http: remove even more of the spaghetti in the request path
3008 - MINOR: http: silently support the "block" action for http-request
3009 - CLEANUP: proxy: rename "block_cond" to "block_rules"
3010 - MEDIUM: http: emulate "block" rules using "http-request" rules
3011 - MINOR: http: remove the now unused loop over "block" rules
3012 - MEDIUM: http: factorize the "auth" action of http-request and stats
3013 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule
3014 - MINOR: config: add minimum support for emitting warnings only once
3015 - MEDIUM: config: inform the user about the deprecatedness of "block" rules
3016 - MEDIUM: config: inform the user that "reqsetbe" is deprecated
3017 - MEDIUM: config: inform the user only once that "redispatch" is deprecated
3018 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated
3019 - BUG/MINOR: auth: fix wrong return type in pat_match_auth()
3020 - BUILD: config: remove a warning with clang
3021 - BUG/MAJOR: http: connection setup may stall on balance url_param
3022 - BUG/MEDIUM: http/session: disable client-side expiration only after body
3023 - BUG/MEDIUM: http: correctly report request body timeouts
3024 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body
3025 - MEDIUM: listener: make the accept function more robust against pauses
3026 - BUILD: syscalls: remove improper inline statement in front of syscalls
3027 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7
3028 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions
3029 - DOC: add some explanation on the shared cache build options in the readme.
3030 - MEDIUM: proxy: only adjust the backend's bind-process when already set
3031 - MEDIUM: config: limit nbproc to the machine's word size
3032 - MEDIUM: config: check the bind-process settings according to nbproc
3033 - MEDIUM: listener: parse the new "process" bind keyword
3034 - MEDIUM: listener: inherit the process mask from the proxy
3035 - MAJOR: listener: only start listeners bound to the same processes
3036 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process
3037 - CLEANUP: config: set the maxaccept value for peers listeners earlier
3038 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies
3039 - BUG/MINOR: checks: correctly configure the address family and protocol
3040 - MINOR: tools: split is_addr() and is_inet_addr()
3041 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired
3042 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets
3043 - MEDIUM: checks: only complain about the missing port when the check uses TCP
3044 - MEDIUM: unix: implement support for Linux abstract namespace sockets
3045 - DOC: map_beg was missing from the table of map_* converters
3046 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings
3047 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning
3048 - BUILD: remove the obsolete BSD and OSX makefiles
3049 - MEDIUM: unix: avoid a double connect probe when no data are sent
3050 - DOC: stop referencing the slow git repository in the README
3051 - BUILD: only build the systemd wrapper on Linux 2.6 and above
3052 - DOC: update roadmap with completed tasks
3053 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin)
3054
Willy Tarreau8860dcd2014-04-26 00:08:14 +020030552014/04/26 : 1.5-dev24
3056 - MINOR: pattern: find element in a reference
3057 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules
3058 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat
3059 - DOC: Full section dedicated to the converters
3060 - MEDIUM: http: register http-request and http-response keywords
3061 - BUG/MINOR: compression: correctly report incoming byte count
3062 - BUG/MINOR: http: don't report server aborts as client aborts
3063 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer
3064 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res()
3065 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page
3066 - BUG/MAJOR: http: fix timeouts during data forwarding
3067 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately
3068 - MEDIUM: http: move skipping of 100-continue earlier
3069 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized...
3070 - CLEANUP: general: get rid of all old occurrences of "session *t"
3071 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4
3072 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back
3073 - MEDIUM: http: enable analysers to have keep-alive on stats
3074 - REORG: http: move HTTP Connection response header parsing earlier
3075 - MINOR: stats: always emit HTTP/1.1 in responses
3076 - MINOR: http: add capture.req.ver and capture.res.ver
3077 - MINOR: checks: add a new global max-spread-checks directive
3078 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect
3079 - MINOR: http: implement the max-keep-alive-queue setting
3080 - DOC: fix alphabetic order of tcp-check
3081 - MINOR: connection: add a new error code for SSL with heartbeat
3082 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack
3083 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits"
3084 - BUILD: http: remove a warning on strndup
3085 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1
3086 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack
3087 - MINOR: ssl: finally catch the heartbeats missing the padding
3088
Willy Tarreau8317b282014-04-23 01:49:41 +020030892014/04/23 : 1.5-dev23
3090 - BUG/MINOR: reject malformed HTTP/0.9 requests
3091 - MINOR: systemd wrapper: re-execute on SIGUSR2
3092 - MINOR: systemd wrapper: improve logging
3093 - MINOR: systemd wrapper: propagate exit status
3094 - BUG/MINOR: tcpcheck connect wrong behavior
3095 - MEDIUM: proxy: support use_backend with dynamic names
3096 - MINOR: stats: Enhancement to stats page to provide information of last session time.
3097 - BUG/MEDIUM: peers: fix key consistency for integer stick tables
3098 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes
3099 - DOC: fix fetching samples syntax
3100 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID
3101 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2
3102 - DOC: fix typo
3103 - CLEANUP: code style: use tabs to indent codes instead of spaces
3104 - DOC: fix a few config typos.
3105 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv()
3106 - DOC: lowercase format string in unique-id
3107 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode
3108 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version
3109 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles
3110 - BUG/MINOR: build: handle whitespaces in wc -l output
3111 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO
3112 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits
3113 - BUG/MEDIUM: map: The map parser includes blank lines.
3114 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes.
3115 - MINOR: standard: add function "encode_chunk"
3116 - BUG/MINOR: http: fix encoding of samples used in http headers
3117 - MINOR: sample: add hex converter
3118 - MEDIUM: sample: change the behavior of the bin2str cast
3119 - MAJOR: auth: Change the internal authentication system.
3120 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()"
3121 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string.
3122 - MEDIUM: pattern: Change the prototype of the function pattern_register().
3123 - CONTRIB: ip6range: add a network IPv6 range to mask converter
3124 - MINOR: pattern: separe list element from the data part.
3125 - MEDIUM: pattern: add indexation function.
3126 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation
3127 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree"
3128 - MINOR: sample: dont call the sample cast function "c_none"
3129 - MINOR: standard: Add function for converting cidr to network mask.
3130 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags
3131 - MEDIUM: sample/http_proto: Add new type called method
3132 - MINOR: dumpstats: Group map inline help
3133 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match.
3134 - MINOR: dumpstats: change map inline sentences
3135 - MINOR: dumpstats: change the "get map" display management
3136 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format.
3137 - MEDIUM: pattern: The match function browse itself the list or the tree.
3138 - MEDIUM: pattern: Index IPv6 addresses in a tree.
3139 - MEDIUM: pattern: add delete functions
3140 - MEDIUM: pattern: add prune function
3141 - MEDIUM: pattern: add sample lookup function.
3142 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used
3143 - MINOR: map/pattern: The sample parser is stored in the pattern
3144 - MAJOR: pattern/map: Extends the map edition system in the patterns
3145 - MEDIUM: pattern: merge same pattern
3146 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once.
3147 - MINOR: pattern: Each pattern is identified by unique id.
3148 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id
3149 - MINOR: pattern: The function "pattern_register()" is no longer used.
3150 - MINOR: pattern: Merge function pattern_add() with pat_ref_push().
3151 - MINOR: pattern: store configuration reference for each acl or map pattern.
3152 - MINOR: pattern: Each pattern expression element store the reference struct.
3153 - MINOR: dumpstats: display the reference for th key/pattern and value.
3154 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed
3155 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed
3156 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped
3157 - MINOR: pattern/map/acl: Centralization of the file parsers
3158 - MINOR: pattern: Check if the file reference is not used with acl and map
3159 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns
3160 - MEDIUM: dumpstats: Display error message during add of values.
3161 - MINOR: pattern: The function pat_ref_set() have now atomic behavior
3162 - MINOR: regex: The pointer regstr in the struc regex is no longer used.
3163 - MINOR: cli: Block the usage of the command "acl add" in many cases.
3164 - MINOR: doc: Update the documentation about the map and acl
3165 - MINOR: pattern: index duplicates
3166 - MINOR: configuration: File and line propagation
3167 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference
3168 - MINOR: standard: Disable ip resolution during the runtime
3169 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE".
3170 - MINOR: pattern: forbid dns resolutions
3171 - DOC: document "get map" / "get acl" on the CLI
3172 - MEDIUM: acl: Change the acl register struct
3173 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes
3174 - DOC: pattern: pattern organisation schematics
3175 - MINOR: pattern/cli: Update used terms in documentation and cli
3176 - MINOR: cli: remove information about acl or map owner.
3177 - MINOR: session: don't always assume there's a listener
3178 - MINOR: pattern: Add function to prune and reload pattern list.
3179 - MINOR: standard: Add ipv6 support in the function url2sa().
3180 - MEDIUM: config: Dynamic sections.
3181 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches
3182 - MINOR: http: Add the "language" converter to for use with accept-language
3183 - BUG/MINOR: log: Don't dump empty unique-id
3184 - BUG/MAJOR: session: fix a possible crash with src_tracked
3185 - DOC: Update "language" documentation
3186 - MINOR: http: add the function "del-header" to the directives http-request and http-response
3187 - DOC: add some information on capture.(req|res).hdr
3188 - MINOR: http: capture.req.method and capture.req.uri
3189 - MINOR: http: optimize capture.req.method and capture.req.uri
3190 - MINOR: session: clean up the connection free code
3191 - BUG/MEDIUM: checks: immediately report a connection success
3192 - MEDIUM: connection: don't use real send() flags in snd_buf()
3193 - OPTIM: ssl: implement dynamic record size adjustment
3194 - MINOR: stats: report exact last session time in backend too
3195 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV.
3196 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL
3197 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers
3198 - MINOR: channel: add the date of last read in the channel
3199 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle
3200 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time
3201 - MINOR: config: make the stream interface idle timer user-configurable
3202 - MINOR: config: add global directives to set default SSL ciphers
3203 - MINOR: sample: add a rand() sample fetch to return a sample.
3204 - BUG/MEDIUM: config: immediately abort if peers section has no name
3205 - BUG/MINOR: ssl: fix syntax in config error message
3206 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN
3207 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server
3208 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch
3209 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server
3210 - MEDIUM: acl: fix pattern type for payload / payload_lv
3211 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer
3212 - BUG/MEDIUM: compression: fix the output type of the compressor name
3213 - BUG/MEDIUM: http: don't start to forward request data before the connect
3214 - MINOR: http: release compression context only in http_end_txn()
3215 - MINOR: protect ebimtree/ebistree against multiple inclusions
3216 - MEDIUM: proxy: create a tree to store proxies by name
3217 - MEDIUM: proxy: make findproxy() use trees to look up proxies
3218 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies
3219 - MEDIUM: stick-table: lookup table names using trees.
3220 - MEDIUM: config: faster lookup for duplicated proxy name
3221 - CLEANUP: acl: remove obsolete test in parse_acl_expr()
3222 - MINOR: sample: move smp_to_type to sample.c
3223 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding
3224 - REORG: cfgparse: move server keyword parsing to server.c
3225 - BUILD: adjust makefile for AIX 5.1
3226 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array
3227 - CLEANUP: pattern: move array definitions to proto/ and not types/
3228 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table
3229 - BUILD: ssl: previous patch failed
3230 - BUILD/MEDIUM: standard: get rid of the last strcpy()
3231 - BUILD/MEDIUM: standard: get rid of sprintf()
3232 - BUILD/MEDIUM: cfgparse: get rid of sprintf()
3233 - BUILD/MEDIUM: checks: get rid of sprintf()
3234 - BUILD/MEDIUM: http: remove calls to sprintf()
3235 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary
3236 - BUILD/MINOR: ssl: remove one call to sprintf()
3237 - MEDIUM: http: don't reject anymore message bodies not containing the url param
3238 - MEDIUM: http: wait for the first chunk or message body length in http_process_body
3239 - CLEANUP: http: rename http_process_request_body()
3240 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies
3241 - MINOR: http: make msg->eol carry the last CRLF length
3242 - MAJOR: http: do not use msg->sol while processing messages or forwarding data
3243 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer
3244 - MAJOR: http: don't update msg->sov anymore while processing the body
3245 - MINOR: http: add a small helper to compute the amount of body bytes present
3246 - MEDIUM: http: add a small helper to compute how far to rewind to find headers
3247 - MINOR: http: add a small helper to compute how far to rewind to find URI
3248 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA
3249 - MAJOR: http: reset msg->sov after headers are forwarded
3250 - MEDIUM: http: forward headers again while waiting for connection to complete
3251 - BUG/MINOR: http: deinitialize compression after a parsing error
3252 - BUG/MINOR: http: deinitialize compression after a compression error
3253 - MEDIUM: http: headers must be forwarded even if data was already inspected
3254 - MAJOR: http: re-enable compression on chunked encoding
3255 - MAJOR: http/compression: fix chunked-encoded response processing
3256 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end
3257 - MEDIUM: http: start to centralize the forwarding code
3258 - MINOR: http: further cleanups of response forwarding function
3259 - MEDIUM: http: only allocate the temporary compression buffer when needed
3260 - MAJOR: http: centralize data forwarding in the request path
3261 - CLEANUP: http: document the response forwarding states
3262 - CLEANUP: http: remove all calls to http_silent_debug()
3263 - DOC: internal: add some reminders about HTTP parsing and pointer states
3264 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo
3265 - BUG/MINOR: stats: last session was not always set
3266 - DOC: add pointer to the Cyril's HTML doc in the README
3267 - MEDIUM: config: relax use_backend check to make the condition optional
3268 - MEDIUM: config: report misplaced http-request rules
3269 - MEDIUM: config: report misplaced use-server rules
3270 - DOC: update roadmap with what was done.
3271
Willy Tarreau1a34d572014-02-03 00:41:29 +010032722014/02/03 : 1.5-dev22
3273 - MEDIUM: tcp-check new feature: connect
3274 - MEDIUM: ssl: Set verify 'required' as global default for servers side.
3275 - MINOR: ssl: handshake optim for long certificate chains.
3276 - BUG/MINOR: pattern: pattern comparison executed twice
3277 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..."
3278 - BUG/MEDIUM: pattern: Segfault in binary parser
3279 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation.
3280 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated
3281 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function.
3282 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type.
3283 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer
3284 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests
3285 - MINOR: doc: Bad cli function name.
3286 - MINOR: http: smp_fetch_capture_header_* fetch captured headers
3287 - BUILD: last release inadvertently prepended a "+" in front of the date
3288 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler
3289 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse
3290 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes"
3291 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers
3292 - MINOR: http: try to stick to same server after status 401/407
3293 - BUG/MINOR: http: always disable compression on HTTP/1.0
3294 - OPTIM: poll: restore polling after a poll/stop/want sequence
3295 - OPTIM: http: don't stop polling for read on the client side after a request
3296 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore
3297 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling
3298 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned
3299 - BUG/MINOR: stream-int: do not clear the owner upon unregister
3300 - MEDIUM: stats: add support for HTTP keep-alive on the stats page
3301 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch
3302 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page"
3303 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes
3304 - OPTIM: session: set the READ_DONTWAIT flag when connecting
3305 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests
3306 - MINOR: session: factor out the connect time measurement
3307 - MEDIUM: session: prepare to support earlier transitions to the established state
3308 - MEDIUM: stream-int: make si_connect() return an established state when possible
3309 - MINOR: checks: use an inline function for health_adjust()
3310 - OPTIM: session: put unlikely() around the freewheeling code
3311 - MEDIUM: config: report a warning when multiple servers have the same name
3312 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence"
3313 - BUILD/MINOR: listener: remove a glibc warning on accept4()
3314 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage
3315 - BUILD: listener: fix recent accept4() again
3316 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9
3317 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity
3318 - MEDIUM: listener: fix polling management in the accept loop
3319 - MINOR: protocol: improve the proto->drain() API
3320 - MINOR: connection: add a new conn_drain() function
3321 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close
3322 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain()
3323 - MINOR: connection: add more error codes to report connection errors
3324 - MEDIUM: tcp: report connection error at the connection level
3325 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors
3326 - BUG/MEDIUM: unique_id: HTTP request counter is not stable
3327 - DOC: fix misleading information about SIGQUIT
3328 - BUG/MAJOR: fix freezes during compression
3329 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer
3330 - BUILD: fix VERDATE exclusion regex
3331 - CLEANUP: polling: rename "spec_e" to "state"
3332 - DOC: add a diagram showing polling state transitions
3333 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache"
3334 - REORG: polling: rename "fd_spec" to "fd_cache"
3335 - REORG: polling: rename the cache allocation functions
3336 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()"
3337 - MAJOR: polling: rework the whole polling system
3338 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags
3339 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send}
3340 - MEDIUM: connection: add check for readiness in I/O handlers
3341 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn
3342 - MINOR: stream-interface: no need to call fd_stop_both() on error
3343 - MEDIUM: connection: no need to recheck FD state
3344 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag
3345 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag
3346 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour.
3347 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled
3348 - MEDIUM: polling: centralize polled events processing
3349 - MINOR: polling: create function fd_compute_new_polled_status()
3350 - MINOR: cli: add more information to the "show info" output
3351 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate
3352 - MEDIUM: listener: apply a limit on the session rate submitted to SSL
3353 - REORG: stats: move the stats socket states to dumpstats.c
3354 - MINOR: cli: add the new "show pools" command
3355 - BUG/MEDIUM: counters: flush content counters after each request
3356 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection
3357 - MINOR: tools: add very basic support for composite pointers
3358 - MEDIUM: counters: stop relying on session flags at all
3359 - BUG/MINOR: cli: fix missing break in command line parser
3360 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode
3361 - MAJOR: http: update connection mode configuration
3362 - MEDIUM: http: make keep-alive + httpclose be passive mode
3363 - MAJOR: http: switch to keep-alive mode by default
3364 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default
3365 - BUG/MEDIUM: listener: improve detection of non-working accept4()
3366 - BUILD: listener: add fcntl.h and unistd.h
3367 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag
3368
Willy Tarreau6b07bf72013-12-17 00:45:49 +010033692013/12/17 : 1.5-dev21
3370 - MINOR: stats: don't use a monospace font to report numbers
3371 - MINOR: session: remove debugging code
3372 - BUG/MAJOR: patterns: fix double free caused by loading strings from files
3373 - MEDIUM: http: make option http_proxy automatically rewrite the URL
3374 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type
3375 - BUG/MINOR: stats: correctly report throttle rate of low weight servers
3376 - BUG/MEDIUM: checks: servers must not start in slowstart mode
3377 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords
3378 - MEDIUM: stream-int: implement a very simplistic idle connection manager
3379 - DOC: update the ROADMAP file
3380
Willy Tarreau11f64d62013-12-16 02:32:37 +010033812013/12/16 : 1.5-dev20
3382 - DOC: add missing options to the manpage
3383 - DOC: add manpage references to all system calls
3384 - DOC: update manpage reference to haproxy-en.txt
3385 - DOC: remove -s and -l options from the manpage
3386 - DOC: missing information for the "description" keyword
3387 - DOC: missing http-send-name-header keyword in keyword table
3388 - MINOR: tools: function my_memmem() to lookup binary contents
3389 - MEDIUM: checks: add send/expect tcp based check
3390 - MEDIUM: backend: Enhance hash-type directive with an algorithm options
3391 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions.
3392 - DOC: Documentation for hashing function, with test results.
3393 - BUG/MEDIUM: ssl: potential memory leak using verifyhost
3394 - BUILD: ssl: compilation issue with openssl v0.9.6.
3395 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg.
3396 - MINOR: ssl: optimization of verifyhost on wildcard certificates.
3397 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard.
3398 - MINOR: ssl: Add statement 'verifyhost' to "server" statements
3399 - CLEANUP: session: remove event_accept() which was not used anymore
3400 - BUG/MINOR: deinit: free fdinfo while doing cleanup
3401 - DOC: minor typo fix in documentation
3402 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE
3403 - BUG/MINOR: use the same check condition for server as other algorithms
3404 - DOC: fix typo in comments
3405 - BUG/MINOR: deinit: free server map which is allocated in init_server_map()
3406 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop()
3407 - MINOR: buffer: align the last output line of buffer_dump()
3408 - MINOR: buffer: align the last output line if there are less than 8 characters left
3409 - DOC: stick-table: modify the description
3410 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set
3411 - CLEANUP: code style: use tabs to indent codes
3412 - DOC: checkcache: block responses with cacheable cookies
3413 - BUG/MINOR: check_config_validity: check the returned value of stktable_init()
3414 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory
3415 - MEDIUM: systemd-wrapper: Kill child processes when interrupted
3416 - LOW: systemd-wrapper: Write debug information to stdout
3417 - BUG/MINOR: http: fix "set-tos" not working in certain configurations
3418 - MEDIUM: http: add IPv6 support for "set-tos"
3419 - DOC: ssl: update build instructions to use new SSL_* variables
3420 - BUILD/MINOR: systemd: fix compiler warning about unused result
3421 - url32+src - like base32+src but whole url including parameters
3422 - BUG/MINOR: fix forcing fastinter in "on-error"
3423 - CLEANUP: Make parameters of srv_downtime and srv_getinter const
3424 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer
3425 - MEDIUM: Split up struct server's check element
3426 - MEDIUM: Move result element to struct check
3427 - MEDIUM: Paramatise functions over the check of a server
3428 - MEDIUM: cfgparse: Factor out check initialisation
3429 - MEDIUM: Add state to struct check
3430 - MEDIUM: Move health element to struct check
3431 - MEDIUM: Add helper for task creation for checks
3432 - MEDIUM: Add helper function for failed checks
3433 - MEDIUM: Log agent fail, stopped or down as info
3434 - MEDIUM: Remove option lb-agent-chk
3435 - MEDIUM: checks: Add supplementary agent checks
3436 - MEDIUM: Do not mark a server as down if the agent is unavailable
3437 - MEDIUM: Set rise and fall of agent checks to 1
3438 - MEDIUM: Add enable and disable agent unix socket commands
3439 - MEDIUM: Add DRAIN state and report it on the stats page
3440 - BUILD/MINOR: missing header file
3441 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options
3442 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char.
3443 - MINOR: http: some exported functions were not in the header file
3444 - MINOR: http: change url_decode to return the size of the decoded string.
3445 - BUILD/MINOR: missing header file
3446 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap
3447 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments
3448 - MINOR: sample: export the generic sample conversion parser
3449 - MINOR: sample: export sample_casts
3450 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword
3451 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr"
3452 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function.
3453 - MINOR: tools: Add a function to convert buffer to an ipv6 address
3454 - MINOR: acl: export acl arrays
3455 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function
3456 - MINOR: acl: Extract the pattern matching function
3457 - MINOR: sample: Define new struct sample_storage
3458 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern"
3459 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c
3460 - MEDIUM: pattern: create pattern expression
3461 - MEDIUM: pattern: rename "acl" prefix to "pat"
3462 - MEDIUM: sample: let the cast functions set their output type
3463 - MINOR: sample: add a private field to the struct sample_conv
3464 - MINOR: map: Define map types
3465 - MEDIUM: sample: add the "map" converter
3466 - MEDIUM: http: The redirect strings follows the log format rules.
3467 - BUG/MINOR: acl: acl parser does not recognize empty converter list
3468 - BUG/MINOR: map: The map list was declared in the map.h file
3469 - MINOR: map: Cleanup the initialisation of map descriptors.
3470 - MEDIUM: map: merge identical maps
3471 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node"
3472 - BUG/MEDIUM: map: Bad map file parser
3473 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN
3474 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end
3475 - MINOR: map: export map_get_reference() function
3476 - MINOR: pattern: Each pattern sets the expected input type
3477 - MEDIUM: acl: Last patch change the output type
3478 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions
3479 - MINOR: standard: The function parse_binary() can use preallocated buffer
3480 - MINOR: regex: Change the struct containing regex
3481 - MINOR: regex: Copy the original regex expression into string.
3482 - MINOR: pattern: add support for compiling patterns for lookups
3483 - MINOR: pattern: make the pattern matching function return a pointer to the matched element
3484 - MINOR: map: export parse output sample functions
3485 - MINOR: pattern: add function to lookup a specific entry in pattern list
3486 - MINOR: pattern/map: Each pattern must free the associated sample
3487 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char
3488 - MEDIUM: map: dynamic manipulation of maps
3489 - BUG/MEDIUM: unique_id: junk in log on empty unique_id
3490 - BUG/MINOR: log: junk at the end of syslog packet
3491 - MINOR: Makefile: provide cscope rule
3492 - DOC: compression: chunk are not compressed anymore
3493 - MEDIUM: session: disable lingering on the server when the client aborts
3494 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS
3495 - DOC: remove the comment saying that SSL certs are not checked on the server side
3496 - BUG: counters: third counter was not stored if others unset
3497 - BUG/MAJOR: http: don't emit the send-name-header when no server is available
3498 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header
3499 - BUG/MAJOR: http: sample prefetch code was not properly migrated
3500 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing
3501 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events
3502 - OPTIM: splicing: use splice() for the last block when relevant
3503 - MEDIUM: sample: handle comma-delimited converter list
3504 - MINOR: sample: fix sample_process handling of unstable data
3505 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c
3506 - MINOR: sample: add a new "date" fetch to return the current date
3507 - MINOR: samples: add the http_date([<offset>]) sample converter.
3508 - DOC: minor improvements to the part on the stats socket.
3509 - MEDIUM: sample: systematically pass the keyword pointer to the keyword
3510 - MINOR: payload: split smp_fetch_rdp_cookie()
3511 - MINOR: counters: factor out smp_fetch_sc*_tracked
3512 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src.
3513 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0
3514 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate
3515 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0
3516 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0
3517 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt
3518 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate
3519 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur
3520 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt
3521 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate
3522 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt
3523 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate
3524 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt
3525 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate
3526 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in
3527 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate
3528 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out
3529 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate
3530 - MEDIUM: counters: factor out smp_fetch_sc*_trackers
3531 - MINOR: session: make the number of stick counter entries more configurable
3532 - MEDIUM: counters: support passing the counter number as a fetch argument
3533 - MEDIUM: counters: support looking up a key in an alternate table
3534 - MEDIUM: cli: adjust the method for feeding frequency counters in tables
3535 - MINOR: cli: make it possible to enter multiple values at once with "set table"
3536 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths
3537 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition
3538 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX
3539 - MINOR: config: warn when a server with no specific port uses rdp-cookie
3540 - BUG/MEDIUM: unique_id: HTTP request counter must be unique!
3541 - DOC: add a mention about the limited chunk size
3542 - BUG/MEDIUM: fix broken send_proxy on FreeBSD
3543 - MEDIUM: stick-tables: flush old entries upon soft-stop
3544 - MINOR: tcp: add new "close" action for tcp-response
3545 - MINOR: payload: provide the "res.len" fetch method
3546 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl
3547 - MINOR: http: compute response time before processing headers
3548 - BUG/MINOR: acl: fix improper string size assignment in proxy argument
3549 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http
3550 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved
3551 - BUG/MEDIUM: session: risk of crash on out of memory conditions
3552 - BUG/MINOR: peers: set the accept date in outgoing connections
3553 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass
3554 - BUG/MEDIUM: acl: do not evaluate next terms after a miss
3555 - MINOR: acl: add a warning when an ACL keyword is used without any value
3556 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set
3557 - BUG/MINOR: acl: remove patterns from the tree before freeing them
3558 - MEDIUM: backend: add support for the wt6 hash
3559 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes
3560 - OPTIM/MINOR: mark the source address as already known on accept()
3561 - BUG/MINOR: stats: don't count tarpitted connections twice
3562 - CLEANUP: http: homogenize processing of denied req counter
3563 - CLEANUP: http: merge error handling for req* and http-request *
3564 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules
3565 - BUG/MINOR: http: fix build warning introduced with url32/url32_src
3566 - BUG/MEDIUM: checks: fix slow start regression after fix attempt
3567 - BUG/MAJOR: server: weight calculation fails for map-based algorithms
3568 - MINOR: stats: report correct throttling percentage for servers in slowstart
3569 - OPTIM: connection: fold the error handling with handshake handling
3570 - MINOR: peers: accept to learn strings of different lengths
3571 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks
3572 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start
3573 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance
3574 - BUG/MINOR: connection: fix typo in error message report
3575 - BUG/MINOR: backend: fix target address retrieval in transparent mode
3576 - BUG/MINOR: config: report the correct track-sc number in tcp-rules
3577 - BUG/MINOR: log: fix log-format parsing errors
3578 - DOC: add some information about how to apply converters to samples
3579 - MINOR: acl/pattern: use types different from int to clarify who does what.
3580 - MINOR: pattern: import acl_find_match_name() into pattern.h
3581 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6
3582 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters
3583 - BUG/MINOR: http: usual deinit stuff in last commit
3584 - BUILD: log: silent a warning about isblank() with latest patches
3585 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order
3586 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors
3587 - BUG/MINOR: checks: don't consider errno and use conn->err_code
3588 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface
3589 - MINOR: stats: remove some confusion between the DRAIN state and NOLB
3590 - BUG/MINOR: tcp: check that no error is pending during a connect probe
3591 - BUG/MINOR: connection: check EINTR when sending a PROXY header
3592 - MEDIUM: connection: set the socket shutdown flags on socket errors
3593 - BUG/MEDIUM: acl: fix regression introduced by latest converters support
3594 - MINOR: connection: clear errno prior to checking for errors
3595 - BUG/MINOR: checks: do not trust errno in write event before any syscall
3596 - MEDIUM: checks: centralize error reporting
3597 - OPTIM: checks: don't poll on recv when using plain TCP connects
3598 - OPTIM: checks: avoid setting SO_LINGER twice
3599 - MINOR: tools: add a generic binary hex string parser
3600 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send
3601 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full
3602 - BUG/MEDIUM: args: fix double free on error path in argument expression parser
3603 - BUG/MINOR: acl: fix sample expression error reporting
3604 - BUG/MINOR: checks: tcp-check actions are enums, not flags
3605 - MEDIUM: checks: make tcp-check perform multiple send() at once
3606 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries
3607 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit
3608 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses
3609 - CLEANUP: stream_interface: remove unused field err_loc
3610 - MEDIUM: stats: don't use conn->xprt_st anymore
3611 - MINOR: session: add a simple function to retrieve a session from a task
3612 - MEDIUM: stats: don't use conn->xprt_ctx anymore
3613 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore
3614 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn
3615 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses
3616 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states
3617 - MAJOR: stats: move the HTTP stats handling to its applet
3618 - MEDIUM: stats: move request argument processing to the final step
3619 - MEDIUM: session: detect applets from the session by using s->target
3620 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req()
3621 - MAJOR: session: pass applet return traffic through the response analysers
3622 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn
3623 - MINOR: stream-int: make the shutr/shutw functions void
3624 - MINOR: obj: provide a safe and an unsafe access to pointed objects
3625 - MINOR: connection: add a field to store an object type
3626 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN
3627 - MEDIUM: stream interface: move the peers' ptr into the applet context
3628 - MINOR: stream-interface: move the applet context to its own struct
3629 - MINOR: obj: introduce a new type appctx
3630 - MINOR: stream-int: rename ->applet to ->appctx
3631 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet
3632 - MINOR: stream-int: add a new pointer to the end point
3633 - MEDIUM: stream-interface: set the pointer to the applet into the applet context
3634 - MAJOR: stream interface: remove the ->release function pointer
3635 - MEDIUM: stream-int: make ->end point to the connection or the appctx
3636 - CLEANUP: stream-int: remove obsolete si_ctrl function
3637 - MAJOR: stream-int: stop using si->conn and use si->end instead
3638 - MEDIUM: stream-int: do not allocate a connection in parallel to applets
3639 - MEDIUM: session: attach incoming connection to target on embryonic sessions
3640 - MINOR: connection: add conn_init() to (re)initialize a connection
3641 - MINOR: checks: call conn_init() to properly initialize the connection.
3642 - MINOR: peers: make use of conn_init() to initialize the connection
3643 - MINOR: session: use conn_init() to initialize the connections
3644 - MINOR: http: use conn_init() to reinitialize the server connection
3645 - MEDIUM: connection: replace conn_prepare with conn_assign
3646 - MINOR: get rid of si_takeover_conn()
3647 - MINOR: connection: add conn_new() / conn_free()
3648 - MAJOR: connection: add two new flags to indicate readiness of control/transport
3649 - MINOR: stream-interface: introduce si_reset() and si_set_state()
3650 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport
3651 - MINOR: connection: replace conn_assign with conn_attach
3652 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn
3653 - MAJOR: stream interface: dynamically allocate the outgoing connection
3654 - MEDIUM: connection: move the send_proxy offset to the connection
3655 - MINOR: connection: check for send_proxy during the connect(), not the SI
3656 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls
3657 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx()
3658 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler()
3659 - MAJOR: stream-interface: dynamically allocate the applet context
3660 - MEDIUM: session: automatically register the applet designated by the target
3661 - MEDIUM: stats: delay appctx initialization
3662 - CLEANUP: peers: use less confusing state/status code names
3663 - MEDIUM: peers: delay appctx initialization
3664 - MINOR: stats: provide some appctx information in "show sess all"
3665 - DIET/MINOR: obj: pack the obj_type enum to 8 bits
3666 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct
3667 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes
3668 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes
3669 - DIET/MINOR: session: reduce the struct session size by 8 bytes
3670 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes
3671 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes
3672 - MINOR: http: switch the http state to an enum
3673 - MINOR: http: use an enum for the auth method in http_auth_data
3674 - DIET/MINOR: task: reduce struct task size by 8 bytes
3675 - MINOR: stream_interface: add reporting of ressouce allocation errors
3676 - MINOR: session: report lack of resources using the new stream-interface's error code
3677 - BUILD: simplify the date and version retrieval in the makefile
3678 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE
3679 - BUILD: use format tags in VERDATE and SUBVERS files
3680 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full
3681 - CLEANUP: check: server port is unsigned
3682 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes
3683 - MINOR: tools: buf2ip6 must not modify output on failure
3684 - MINOR: pattern: do not assign SMP_TYPES by default to patterns
3685 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors
3686 - MINOR: arg: improve wording on error reporting
3687 - BUG/MEDIUM: sample: simplify and fix the argument parsing
3688 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors
3689 - MEDIUM: acl: fix the initialization order of the ACL expression
3690 - CLEANUP: acl: remove useless blind copy-paste from sample converters
3691 - TESTS: add regression tests for ACL and sample expression parsers
3692 - BUILD: time: adapt the type of TV_ETERNITY to the local system
3693 - MINOR: chunks: allocate the trash chunks before parsing the config
3694 - BUILD: definitely silence some stupid GCC warnings
3695 - MINOR: chunks: always initialize the output chunk in get_trash_chunk()
3696 - MINOR: checks: improve handling of the servers tracking chain
3697 - REORG: checks: retrieve the check-specific defines from server.h to checks.h
3698 - MINOR: checks: use an enum instead of flags to report a check result
3699 - MINOR: checks: rename the state flags
3700 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED
3701 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED
3702 - MINOR: checks: fix agent check interval computation
3703 - MINOR: checks: add a PAUSED state for the checks
3704 - MINOR: checks: create the agent tasks even when no check is configured
3705 - MINOR: checks: add a flag to indicate what check is an agent
3706 - MEDIUM: checks: enable agent checks even if health checks are disabled
3707 - BUG/MEDIUM: checks: ensure we can enable a server after boot
3708 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag
3709 - BUG/MAJOR: session: repair tcp-request connection rules
3710 - BUILD: fix SUBVERS extraction in the Makefile
3711 - BUILD: pattern: silence a warning about uninitialized value
3712 - BUILD: log: fix build warning on Solaris
3713 - BUILD: dumpstats: fix build error on Solaris
3714 - DOC: move option pgsql-check to the correct place
3715 - DOC: move option tcp-check to the proper place
3716 - MINOR: connection: add simple functions to report connection readiness
3717 - MEDIUM: connection: centralize handling of nolinger in fd management
3718 - OPTIM: http: set CF_READ_DONTWAIT on response message
3719 - OPTIM: http: do not re-enable reading on client side while closing the server side
3720 - MINOR: config: add option http-keep-alive
3721 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not
3722 - MAJOR: stream-int: handle the connection reuse in si_connect()
3723 - MAJOR: http: add the keep-alive transition on the server side
3724 - MAJOR: backend: enable connection reuse
3725 - MINOR: http: add option prefer-last-server
3726 - MEDIUM: http: do not report connection errors for second and further requests
3727
Willy Tarreaueab1dc62013-06-17 15:10:25 +020037282013/06/17 : 1.5-dev19
3729 - MINOR: stats: remove the autofocus on the scope input field
3730 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored.
3731 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file.
3732 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version.
3733 - MEDIUM: ssl: improve crt-list format to support negation
3734 - BUG: ssl: fix crt-list for clients not supporting SNI
3735 - MINOR: stats: show soft-stopped servers in different color
3736 - BUG/MINOR: config: "source" does not work in defaults section
3737 - BUG: regex: fix pcre compile error when using JIT
3738 - MINOR: ssl: add pattern fetch 'ssl_c_sha1'
3739 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used
3740 - MINOR: show PCRE version and JIT status in -vv
3741 - BUG/MINOR: jit: don't rely on USE flag to detect support
3742 - DOC: readme: add suggestion to link against static openssl
3743 - DOC: examples: provide simplified ssl configuration
3744 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes
3745 - MINOR: tproxy: add support for FreeBSD
3746 - MINOR: tproxy: add support for OpenBSD
3747 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8
3748 - CLEANUP: fix minor typo in error message.
3749 - CLEANUP: fix missing include <string.h> in proto/listener.h
3750 - CLEANUP: protect checks.h from multiple inclusions
3751 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo"
3752 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition
3753 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32
3754 - BUG/MEDIUM: splicing is broken since 1.5-dev12
3755 - BUG/MAJOR: acl: add implicit arguments to the resolve list
3756 - BUG/MINOR: tcp: fix error reporting for TCP rules
3757 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix
3758 - MINOR: stick-table: allow to allocate an entry without filling it
3759 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes
3760 - MINOR: session: only call http_send_name_header() when changing the server
3761 - MINOR: tcp: report the erroneous word in tcp-request track*
3762 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
3763 - BUG/MEDIUM: log: fix regression on log-format handling
3764 - MEDIUM: log: report file name, line number, and directive name with log-format errors
3765 - BUG/MINOR: cli: "clear table" did not work anymore without a key
3766 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore
3767 - BUG/MAJOR: http: compression still has defects on chunked responses
3768 - BUG/MINOR: stats: fix confirmation links on the stats interface
3769 - BUG/MINOR: stats: the status bar does not appear anymore after a change
3770 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process"
3771 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests
3772 - BUG/MINOR: fix unterminated ACL array in compression
3773 - BUILD: last fix broke non-linux platforms
3774 - MINOR: init: indicate the SSL runtime version on -vv.
3775 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well
3776 - BUILD: stdbool is not portable (again)
3777 - DOC: readme: add a small reminder about restrictions to respect in the code
3778 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates
3779 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT
3780 - DOC: fix wrong copy-paste in the rspdel example
3781 - MINOR: counters: make it easier to extend the amount of tracked counters
3782 - MEDIUM: counters: add support for tracking a third counter
3783 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables
3784 - BUG/MAJOR: http: always ensure response buffer has some room for a response
3785 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked
3786 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined
3787 - MINOR: log: add a new flag 'L' for locally processed requests
3788 - MINOR: http: add full-length header fetch methods
3789 - MEDIUM: protocol: implement a "drain" function in protocol layers
3790 - MEDIUM: http: add a new "http-response" ruleset
3791 - MEDIUM: http: add the "set-nice" action to http-request and http-response
3792 - MEDIUM: log: add a log level override value in struct session
3793 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response
3794 - MEDIUM: http: add support for "set-tos" in http-request/http-response
3795 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules
3796 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4"
3797 - MEDIUM: acl: automatically detect the type of certain fetches
3798 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches
3799 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches
3800 - DOC: major reorg of ACL + sample fetch
3801 - CLEANUP: http: remove the bogus urlp_ip ACL match
3802 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable
3803 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts
3804 - BUG/CRITICAL: fix a possible crash when using negative header occurrences
3805 - DOC: update ROADMAP file
3806 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3
3807 - MEDIUM: stats: add proxy name filtering on the statistic page
3808
Willy Tarreau289dd922013-04-03 02:26:31 +020038092013/04/03 : 1.5-dev18
3810 - DOCS: Add explanation of intermediate certs to crt paramater
3811 - DOC: typo and minor fixes in compression paragraph
3812 - MINOR: config: http-request configuration error message misses new keywords
3813 - DOC: minor typo fix in documentation
3814 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured.
3815 - MEDIUM: ssl: add bind-option "strict-sni"
3816 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list"
3817 - MEDIUM: regex: Use PCRE JIT in acl
3818 - DOC: simplify bind option "interface" explanation
3819 - DOC: tfo: bump required kernel to linux-3.7
3820 - BUILD: add explicit support for TFO with USE_TFO
3821 - MEDIUM: New cli option -Ds for systemd compatibility
3822 - MEDIUM: add haproxy-systemd-wrapper
3823 - MEDIUM: add systemd service
3824 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes
3825 - BUG/MEDIUM: remove supplementary groups when changing gid
3826 - BUG/MEDIUM: config: fix parser crash with bad bind or server address
3827 - BUG/MINOR: Correct logic in cut_crlf()
3828 - CLEANUP: checks: Make desc argument to set_server_check_status const
3829 - CLEANUP: dumpstats: Make cli_release_handler() static
3830 - MEDIUM: server: Break out set weight processing code
3831 - MEDIUM: server: Allow relative weights greater than 100%
3832 - MEDIUM: server: Tighten up parsing of weight string
3833 - MEDIUM: checks: Add agent health check
3834 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot
3835 - BUG/MINOR: time: frequency counters are not totally accurate
3836 - BUG/MINOR: http: don't process abortonclose when request was sent
3837 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw()
3838 - BUG/MEDIUM: checks: ignore late resets after valid responses
3839 - DOC: fix bogus recommendation on usage of gpc0 counter
3840 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request
3841 - MINOR: signal: don't block SIGPROF by default
3842 - OPTIM: epoll: make use of EPOLLRDHUP
3843 - OPTIM: splice: detect shutdowns and avoid splice() == 0
3844 - OPTIM: splice: assume by default that splice is working correctly
3845 - BUG/MINOR: log: temporary fix for lost SSL info in some situations
3846 - BUG/MEDIUM: peers: only the last peers section was used by tables
3847 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers
3848 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
3849 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
3850 - BUG/MINOR: config: free peer's address when exiting upon parsing error
3851 - BUG/MINOR: config: check the proper variable when parsing log minlvl
3852 - BUG/MEDIUM: checks: ensure the health_status is always within bounds
3853 - BUG/MINOR: cli: show sess should always validate s->listener
3854 - BUG/MINOR: log: improper NULL return check on utoa_pad()
3855 - CLEANUP: http: remove a useless null check
3856 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener()
3857 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
3858 - BUG/MEDIUM: tools: off-by-one in quote_arg()
3859 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
3860 - BUG/MINOR: unix: remove the 'level' field from the ux struct
3861 - CLEANUP: http: don't try to deinitialize http compression if it fails before init
3862 - CLEANUP: config: slowstart is never negative
3863 - CLEANUP: config: maxcompcpuusage is never negative
3864 - BUG/MEDIUM: log: emit '-' for empty fields again
3865 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7
3866 - BUILD: fix a warning emitted by isblank() on non-c99 compilers
3867 - BUILD: improve the makefile's support for libpcre
3868 - MEDIUM: halog: add support for counting per source address (-ic)
3869 - MEDIUM: tools: make str2sa_range support all address syntaxes
3870 - MEDIUM: config: make use of str2sa_range() instead of str2sa()
3871 - MEDIUM: config: use str2sa_range() to parse server addresses
3872 - MEDIUM: config: use str2sa_range() to parse peers addresses
3873 - MINOR: tests: add a config file to ease address parsing tests.
3874 - MINOR: ssl: add a global tunable for the max SSL/TLS record size
3875 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux
3876 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM
3877 - MINOR: config: report missing peers section name
3878 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range()
3879 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket
3880 - MINOR: tools: prepare str2sa_range() to return an error message
3881 - BUG/MEDIUM: checks: don't call connect() on unsupported address families
3882 - MINOR: tools: prepare str2sa_range() to accept a prefix
3883 - MEDIUM: tools: make str2sa_range() parse unix addresses too
3884 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses
3885 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses
3886 - MEDIUM: config: use str2sa_range() to parse log addresses
3887 - CLEANUP: tools: remove str2sun() which is not used anymore.
3888 - MEDIUM: config: add complete support for str2sa_range() in dispatch
3889 - MEDIUM: config: add complete support for str2sa_range() in server addr
3890 - MEDIUM: config: add complete support for str2sa_range() in 'server'
3891 - MEDIUM: config: add complete support for str2sa_range() in 'peer'
3892 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc'
3893 - CLEANUP: minor cleanup in str2sa_range() and str2ip()
3894 - CLEANUP: config: do not use multiple errmsg at once
3895 - MEDIUM: tools: support specifying explicit address families in str2sa_range()
3896 - MAJOR: listener: support inheriting a listening fd from the parent
3897 - MAJOR: tools: support environment variables in addresses
3898 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields
3899 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong
3900 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header
3901 - DOC: mention the new HTTP 307 and 308 redirect statues
3902 - MEDIUM: poll: do not use FD_* macros anymore
3903 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
3904 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings
3905 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern
3906 - BUILD: fix usual isdigit() warning on solaris
3907 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris
3908 - OPTIM: buffer: remove one jump in buffer_count()
3909 - OPTIM: http: improve branching in chunk size parser
3910 - OPTIM: http: optimize the response forward state machine
3911 - BUILD: enable poll() by default in the makefile
3912 - BUILD: add explicit support for Mac OS/X
3913 - BUG/MAJOR: http: use a static storage for sample fetch context
3914 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file()
3915 - BUG/MAJOR: http: fix regression introduced by commit a890d072
3916 - BUG/MAJOR: http: fix regression introduced by commit d655ffe
3917 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
3918 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used
3919 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages
3920 - MINOR: log: indicate it when some unreliable sample fetches are logged
3921 - MEDIUM: samples: move payload-based fetches and ACLs to their own file
3922 - MINOR: backend: rename sample fetch functions and declare the sample keywords
3923 - MINOR: frontend: rename sample fetch functions and declare the sample keywords
3924 - MINOR: listener: rename sample fetch functions and declare the sample keywords
3925 - MEDIUM: http: unify acl and sample fetch functions
3926 - MINOR: session: rename sample fetch functions and declare the sample keywords
3927 - MAJOR: acl: make all ACLs reference the fetch function via a sample.
3928 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's
3929 - MAJOR: acl: remove fetch argument validation from the ACL struct
3930 - MINOR: http: add new direction-explicit sample fetches for headers and cookies
3931 - MINOR: payload: add new direction-explicit sample fetches
3932 - CLEANUP: acl: remove ACL hooks which were never used
3933 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed"
3934 - MINOR: sample: provide a function to report the name of a sample check point
3935 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires
3936 - CLEANUP: acl: remove unused references to ACL_USE_*
3937 - MINOR: http: replace acl_parse_ver with acl_parse_str
3938 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr
3939 - MAJOR: acl: add option -m to change the pattern matching method
3940 - MINOR: acl: remove the use_count in acl keywords
3941 - MEDIUM: acl: have a pointer to the keyword name in acl_expr
3942 - MEDIUM: acl: support using sample fetches directly in ACLs
3943 - MEDIUM: http: remove val_usr() to validate user_lists
3944 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve
3945 - MINOR: ssl: add support for the "alpn" bind keyword
3946 - MINOR: http: status code 303 is HTTP/1.1 only
3947 - MEDIUM: http: implement redirect 307 and 308
3948 - MINOR: http: status 301 should not be marked non-cacheable
3949
Willy Tarreaua3ecbd92012-12-28 15:04:05 +010039502012/12/28 : 1.5-dev17
3951 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache.
3952 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5
3953 - BUG/MINOR: stats: last fix was still wrong
3954 - BUG/MINOR: stats: http-request rules still don't cope with stats
3955 - BUG/MINOR: http: http-request add-header emits a corrupted header
3956 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD
3957 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant
3958 - BUILD: log: unused variable svid
3959 - CLEANUP: http: rename the misleading http_check_access_rule
3960 - MINOR: http: move redirect rule processing to its own function
3961 - REORG: config: move the http redirect rule parser to proto_http.c
3962 - MEDIUM: http: add support for "http-request redirect" rules
3963 - MEDIUM: http: add support for "http-request tarpit" rule
3964
Willy Tarreau69eda352012-12-24 16:48:14 +010039652012/12/24 : 1.5-dev16
3966 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections.
3967 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection.
3968 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate.
3969 - MINOR: contrib: make the iprange tool grep for addresses
3970 - CLEANUP: polling: gcc doesn't always optimize constants away
3971 - OPTIM: poll: optimize fd management functions for low register count CPUs
3972 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner
3973 - OPTIM: epoll: use a temp variable for intermediary flag computations
3974 - OPTIM: epoll: current fd does not count as a new one
3975 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os
3976 - MINOR: http: make resp_ver and status ACLs check for the presence of a response
3977 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers
3978 - BUG/MINOR: stream_interface: don't return when the fd is already set
3979 - BUG/MEDIUM: connection: always update connection flags prior to computing polling
3980 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0
3981 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes
3982 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up
3983 - BUG/MINOR: http: don't abort client connection on premature responses
3984 - BUILD: no need to clean up when making git-tar
3985 - MINOR: log: add a tag for amount of bytes uploaded from client to server
3986 - BUG/MEDIUM: log: fix possible segfault during config parsing
3987 - MEDIUM: log: change a few log tokens to make them easier to remember
3988 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants
3989 - MEDIUM: log-format: make the format parser more robust and more extensible
3990 - MINOR: sample: support cast from bool to string
3991 - MINOR: samples: add a function to fetch and convert any sample to a string
3992 - MINOR: log: add lf_text_len
3993 - MEDIUM: log: add the ability to include samples in logs
3994 - REORG: stats: massive code reorg and cleanup
3995 - REORG: stats: move the HTTP header injection to proto_http
3996 - REORG: stats: functions are now HTTP/CLI agnostic
3997 - BUG/MINOR: log: fix regression introduced by commit 8a3f52
3998 - MINOR: chunks: centralize the trash chunk allocation
3999 - MEDIUM: stats: use hover boxes instead of title to report details
4000 - MEDIUM: stats: use multi-line tips to display detailed counters
4001 - MINOR: tools: simplify the use of the int to ascii macros
4002 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML
4003 - MINOR: http: prepare to support more http-request actions
4004 - MINOR: log: make parse_logformat_string() take a const char *
4005 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers
4006
Willy Tarreau0cae4b32012-12-12 00:39:52 +010040072012/12/12 : 1.5-dev15
4008 - DOC: add a few precisions on compression
4009 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert.
4010 - BUG/MINOR: ssl: One free session in cache remains unused.
4011 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err
4012 - MEDIUM: ssl: manage shared cache by blocks for huge sessions.
4013 - MINOR: acl: add fetch for server session rate
4014 - BUG/MINOR: compression: Content-Type is case insensitive
4015 - MINOR: compression: disable on multipart or status != 200
4016 - BUG/MINOR: http: don't report client aborts as server errors
4017 - MINOR: stats: compute the ratio of compressed response based on 2xx responses
4018 - MINOR: http: factor out the content-type checks
4019 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios
4020 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation
4021 - BUG/MINOR: http: disable compression when message has no body
4022 - MINOR: compression: make the stats a bit more robust
4023 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes
4024 - MINOR: connection: don't remove failed handshake flags
4025 - MEDIUM: connection: add an error code in connections
4026 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections
4027 - MEDIUM: connection: add error reporting for the PROXY protocol header
4028 - MEDIUM: connection: add error reporting for the SSL
4029 - DOC: document the connection error format in logs
4030 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
4031 - BUILD: stdbool is not portable
4032 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead
4033 - BUG/MAJOR: raw_sock: must check error code on hangup
4034 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP
4035 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled
4036 - MINOR: stats: add a few more information on session dump
4037 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections
4038 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations
4039 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
4040 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options
4041 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies
4042 - CLEANUP: proto_tcp: use the same code to bind servers and backends
4043 - CLEANUP: backend: use the same tproxy address selection code for servers and backends
4044 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13
4045 - MEDIUM: proto_tcp: add support for tracking L7 information
4046 - MEDIUM: counters: add sc1_trackers/sc2_trackers
4047 - MINOR: http: add the "base32" pattern fetch function
4048 - MINOR: http: add the "base32+src" fetch method.
4049 - CLEANUP: session: use an array for the stick counters
4050 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2
4051 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2
4052 - BUG/MAJOR: connection: always recompute polling status upon I/O
4053 - BUG/MINOR: connection: remove a few synchronous calls to polling updates
4054 - MINOR: config: improve error checking on TCP stick-table tracking
4055 - DOC: add some clarifications to the readme
4056
Willy Tarreaufee48ce2012-11-26 03:11:05 +010040572012/11/26 : 1.5-dev14
4058 - DOC: fix minor typos
4059 - BUG/MEDIUM: compression: does not forward trailers
4060 - MINOR: buffer_dump with ASCII
4061 - BUG/MEDIUM: checks: mark the check as stopped after a connect error
4062 - BUG/MEDIUM: checks: ensure we completely disable polling upon success
4063 - BUG/MINOR: checks: don't mark the FD as closed before transport close
4064 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks
4065 - MINOR: cli: report the msg state in full text in "show sess $PTR"
4066 - CLEANUP: checks: rename some server check flags
4067 - MAJOR: checks: rework completely bogus state machine
4068 - BUG/MINOR: checks: slightly clean the state machine up
4069 - MEDIUM: checks: avoid waking the application up for pure TCP checks
4070 - MEDIUM: checks: close the socket as soon as we have a response
4071 - BUG/MAJOR: checks: close FD on all timeouts
4072 - MINOR: checks: fix recv polling after connect()
4073 - MEDIUM: connection: provide a common conn_full_close() function
4074 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
4075 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops
4076 - MINOR: listeners: make the accept loop more robust when maxaccept==0
4077 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one
4078 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit
4079 - BUG/MINOR: stats: fix inversion of the report of a check in progress
4080 - MEDIUM: tcp: add explicit support for delayed ACK in connect()
4081 - BUG/MEDIUM: connection: always disable polling upon error
4082 - MINOR: connection: abort earlier when errors are detected
4083 - BUG/MEDIUM: checks: report handshake failures
4084 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish
4085 - MINOR: tcp: add support for the "v6only" bind option
4086 - MINOR: stats: also report the computed compression savings in html stats
4087 - MINOR: stats: report the total number of compressed responses per front/back
4088 - MINOR: tcp: add support for the "v4v6" bind option
4089 - DOC: stats: document the comp_rsp stats column
4090 - BUILD: buffer: fix another isprint() warning on solaris
4091 - MINOR: cli: add support for the "show sess all" command
4092 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
4093 - MINOR: cli: improve output format for show sess $ptr
4094
Willy Tarreauad15d122012-11-22 01:11:33 +010040952012/11/22 : 1.5-dev13
4096 - BUILD: fix build issue without USE_OPENSSL
4097 - BUILD: fix compilation error with DEBUG_FULL
4098 - DOC: ssl: remove prefer-server-ciphers documentation
4099 - DOC: ssl: surround keywords with quotes
4100 - DOC: fix minor typo on http-send-name-header
4101 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs
4102 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl
4103 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl
4104 - BUILD: report zlib support in haproxy -vv
4105 - DOC: compression: add some details and clean up the formatting
4106 - DOC: Change is_ssl acl to ssl_fc acl in example
4107 - DOC: make it clear what the HTTP request size is
4108 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file
4109 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading
4110 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation
4111 - DOC: ssl: add 'ecdhe' statement on 'bind'
4112 - MEDIUM: ssl: add client certificate authentication support
4113 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind'
4114 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present
4115 - DOC: ssl: add fetch and ACL 'client_cert'
4116 - MINOR: ssl: add ignore verify errors options
4117 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind'
4118 - MINOR: ssl: add fetch and ACL 'ssl_verify_result'
4119 - DOC: ssl: add fetch and ACL 'ssl_verify_result'
4120 - MINOR: ssl: add fetches and ACLs to return verify errors
4121 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth'
4122 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1
4123 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory
4124 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
4125 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'.
4126 - MEDIUM: config: authorize frontend and listen without bind.
4127 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption
4128 - DOC: ssl: add 'no-tls-tickets' statement documentation.
4129 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified.
4130 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature.
4131 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL.
4132 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686.
4133 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners.
4134 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes
4135 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements.
4136 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'.
4137 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file'
4138 - MINOR: ssl: use bit fields to store ssl options instead of one int each
4139 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind.
4140 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server
4141 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS.
4142 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3'
4143 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c
4144 - MEDIUM: ssl: reject ssl server keywords in default-server statement
4145 - MINOR: ssl: add statement 'no-tls-tickets' on server side.
4146 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers.
4147 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file.
4148 - MINOR: sample: manage binary to string type convertion in stick-table and samples.
4149 - MINOR: acl: add parse and match primitives to use binary type on ACLs
4150 - MINOR: sample: export 'sample_get_trash_chunk(void)'
4151 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c'
4152 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize'
4153 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id'
4154 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version'
4155 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn'
4156 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg'
4157 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg'
4158 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter'
4159 - MINOR: ssl: add 'crt' statement on server.
4160 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate
4161 - BUG/MEDIUM: ssl: review polling on reneg.
4162 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled.
4163 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server.
4164 - MINOR: build: allow packagers to specify the ssl cache size
4165 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind.
4166 - MINOR: ssl: Add tune.ssl.lifetime statement in global.
4167 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8
4168 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755
4169 - DOC: duplicate ssl_sni section
4170 - MEDIUM: HTTP compression (zlib library support)
4171 - CLEANUP: use struct comp_ctx instead of union
4172 - BUILD: remove dependency to zlib.h
4173 - MINOR: compression: memlevel and windowsize
4174 - MEDIUM: use pool for zlib
4175 - MINOR: compression: try init in cfgparse.c
4176 - MINOR: compression: init before deleting headers
4177 - MEDIUM: compression: limit RAM usage
4178 - MINOR: compression: tune.comp.maxlevel
4179 - MINOR: compression: maximum compression rate limit
4180 - MINOR: log-format: check number of arguments in cfgparse.c
4181 - BUG/MEDIUM: compression: no Content-Type header but type in configuration
4182 - BUG/MINOR: compression: deinit zlib only when required
4183 - MEDIUM: compression: don't compress when no data
4184 - MEDIUM: compression: use pool for comp_ctx
4185 - MINOR: compression: rate limit in 'show info'
4186 - MINOR: compression: report zlib memory usage
4187 - BUG/MINOR: compression: dynamic level increase
4188 - DOC: compression: unsupported cases.
4189 - MINOR: compression: CPU usage limit
4190 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection
4191 - BUG/MAJOR: ssl: missing tests in ACL fetch functions
4192 - MINOR: config: add a function to indent error messages
4193 - REORG: split "protocols" files into protocol and listener
4194 - MEDIUM: config: replace ssl_conf by bind_conf
4195 - CLEANUP: listener: remove unused conf->file and conf->line
4196 - MEDIUM: listener: add a minimal framework to register "bind" keyword options
4197 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp
4198 - MEDIUM: move bind SSL parsing to ssl_sock
4199 - MINOR: config: improve error reporting for "bind" lines
4200 - MEDIUM: config: move the common "bind" settings to listener.c
4201 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c
4202 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error
4203 - MINOR: listener: add a scope field in the bind keyword lists
4204 - MINOR: config: pass the file and line to config keyword parsers
4205 - MINOR: stats: fill the file and line numbers in the stats frontend
4206 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line.
4207 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends
4208 - REORG: listener: move unix perms from the listener to the bind_conf
4209 - BUG: backend: balance hdr was broken since 1.5-dev11
4210 - MINOR: standard: make memprintf() support a NULL destination
4211 - MINOR: config: make str2listener() use memprintf() to report errors.
4212 - MEDIUM: stats: remove the stats_sock struct from the global struct
4213 - MINOR: ssl: set the listeners' data layer to ssl during parsing
4214 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket
4215 - DOC: move bind options to their own section
4216 - DOC: stats: refer to "bind" section for "stats socket" settings
4217 - DOC: fix index to reference bind and server options
4218 - BUG: http: do not print garbage on invalid requests in debug mode
4219 - BUG/MINOR: config: check the proper pointer to report unknown protocol
4220 - CLEANUP: connection: offer conn_prepare() to set up a connection
4221 - CLEANUP: config: fix typo inteface => interface
4222 - BUG: stats: fix regression introduced by commit 4348fad1
4223 - MINOR: cli: allow to set frontend maxconn to zero
4224 - BUG/MAJOR: http: chunk parser was broken with buffer changes
4225 - MEDIUM: monitor: simplify handling of monitor-net and mode health
4226 - MINOR: connection: add a pointer to the connection owner
4227 - MEDIUM: connection: make use of the owner instead of container_of
4228 - BUG/MINOR: ssl: report the L4 connection as established when possible
4229 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload
4230 - BUG/MINOR: config: use a copy of the file name in proxy configurations
4231 - BUG/MEDIUM: listener: don't pause protocols that do not support it
4232 - MEDIUM: proxy: add the global frontend to the list of normal proxies
4233 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
4234 - MINOR: signal: really ignore signals configured with no handler
4235 - MINOR: buffers: add a few functions to write chars, strings and blocks
4236 - MINOR: raw_sock: always report asynchronous connection errors
4237 - MEDIUM: raw_sock: improve connection error reporting
4238 - REORG: connection: rename the data layer the "transport layer"
4239 - REORG: connection: rename app_cb "data"
4240 - MINOR: connection: provide a generic data layer wakeup callback
4241 - MINOR: connection: split conn_prepare() in two functions
4242 - MINOR: connection: add an init callback to the data_cb struct
4243 - MEDIUM: session: use a specific data_cb for embryonic sessions
4244 - MEDIUM: connection: use a generic data-layer init() callback
4245 - MEDIUM: connection: reorganize connection flags
4246 - MEDIUM: connection: only call the data->wake callback on activity
4247 - MEDIUM: connection: make it possible for data->wake to return an error
4248 - MEDIUM: session: register a data->wake callback to process errors
4249 - MEDIUM: connection: don't call the data->init callback upon error
4250 - MEDIUM: connection: it's not the data layer's role to validate the connection
4251 - MEDIUM: connection: automatically disable polling on error
4252 - REORG: connection: move the PROXY protocol management to connection.c
4253 - MEDIUM: connection: add a new local send-proxy transport callback
4254 - MAJOR: checks: make use of the connection layer to send checks
4255 - REORG: server: move the check-specific parts into a check subsection
4256 - MEDIUM: checks: use real buffers to store requests and responses
4257 - MEDIUM: check: add the ctrl and transport layers in the server check structure
4258 - MAJOR: checks: completely use the connection transport layer
4259 - MEDIUM: checks: add the "check-ssl" server option
4260 - MEDIUM: checks: enable the PROXY protocol with health checks
4261 - CLEANUP: checks: remove minor warnings for assigned but not used variables
4262 - MEDIUM: tcp: enable TCP Fast Open on systems which support it
4263 - BUG: connection: fix regression from commit 9e272bf9
4264 - CLEANUP: cttproxy: remove a warning on undeclared close()
4265 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used
4266 - MEDIUM: listener: add support for linux's accept4() syscall
4267 - MINOR: halog: sort output by cookie code
4268 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines
4269 - BUG/MINOR: halog: fix help message for -ut/-uto
4270 - MINOR: halog: add a parameter to limit output line count
4271 - BUILD: accept4: move the socketcall declaration outside of accept4()
4272 - MINOR: server: add minimal infrastructure to parse keywords
4273 - MINOR: standard: make indent_msg() support empty messages
4274 - MEDIUM: server: check for registered keywords when parsing unknown keywords
4275 - MEDIUM: server: move parsing of keyword "id" to server.c
4276 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin
4277 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c
4278 - MEDIUM: log: suffix the frontend's name with '~' when using SSL
4279 - MEDIUM: connection: always unset the transport layer upon close
4280 - BUG/MINOR: session: fix some leftover from debug code
4281 - BUG/MEDIUM: session: enable the conn_session_update() callback
4282 - MEDIUM: connection: add a flag to hold the transport layer
4283 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer
4284 - MINOR: log: make lf_text use a const char *
4285 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv
4286 - REORG: http: rename msg->buf to msg->chn since it's a channel
4287 - CLEANUP: http: use 'chn' to name channel variables, not 'buf'
4288 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names
4289 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names
4290 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers
4291 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers
4292 - MAJOR: channel: replace the struct buffer with a pointer to a buffer
4293 - OPTIM: channel: reorganize struct members to improve cache efficiency
4294 - CLEANUP: session: remove term_trace which is not used anymore
4295 - OPTIM: session: reorder struct session fields
4296 - OPTIM: connection: pack the struct target
4297 - DOC: document relations between internal entities
4298 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information
4299 - BUILD: ssl: fix shctx build on older compilers
4300 - MEDIUM: ssl: add support for the "npn" bind keyword
4301 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions
4302 - MINOR: chunk: provide string compare functions
4303 - MINOR: sample: accept fetch keywords without parenthesis
4304 - MEDIUM: sample: pass an empty list instead of a null for fetch args
4305 - MINOR: ssl: improve socket behaviour upon handshake abort.
4306 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
4307 - MEDIUM: listener: provide a fallback for accept4() when not supported
4308 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario
4309 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes
4310 - OPTIM: channel: inline channel_forward's fast path
4311 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf()
4312 - OPTIM: tools: inline hex2i()
4313 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state
4314 - MINOR: compression: automatically disable compression for older browsers
4315 - MINOR: compression: optimize memLevel to improve byte rate
4316 - BUG/MINOR: http: compression should consider all Accept-Encoding header values
4317 - BUILD: fix coexistence of openssl and zlib
4318 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial'
4319 - BUG/MEDIUM: command-line option -D must have precedence over "debug"
4320 - MINOR: tools: add a clear_addr() function to unset an address
4321 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set
4322 - CLEANUP: remove trashlen
4323 - MAJOR: session: detach the connections from the stream interfaces
4324 - DOC: update document describing relations between internal entities
4325 - BUILD: make it possible to specify ZLIB path
4326 - MINOR: compression: add an offload option to remove the Accept-Encoding header
4327 - BUG: compression: disable auto-close and enable MSG_MORE during transfer
4328 - CLEANUP: completely remove trashlen
4329 - MINOR: chunk: add a function to reset a chunk
4330 - CLEANUP: replace chunk_printf() with chunk_appendf()
4331 - MEDIUM: make the trash be a chunk instead of a char *
4332 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions
4333 - MEDIUM: stick-table: allocate the table key of size buffer size
4334 - BUG/MINOR: stream_interface: don't loop over ->snd_buf()
4335 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent
4336 - OPTIM: session: don't process the whole session when only timers need a refresh
4337 - BUG/MINOR: session: mark the handshake as complete earlier
4338 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag
4339 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags
4340 - MAJOR: sepoll: make the poller totally event-driven
4341 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set
4342 - BUILD: compression: remove a build warning
4343 - MEDIUM: fd: don't unset fdtab[].updated upon delete
4344 - REORG: fd: move the speculative I/O management from ev_sepoll
4345 - REORG: fd: move the fd state management from ev_sepoll
4346 - REORG: fd: centralize the processing of speculative events
4347 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN
4348 - BUILD: stream_interface: remove si_fd() and its references
4349 - BUILD: compression: enable build in BSD and OSX Makefiles
4350 - MAJOR: ev_select: make the poller support speculative events
4351 - MAJOR: ev_poll: make the poller support speculative events
4352 - MAJOR: ev_kqueue: make the poller support speculative events
4353 - MAJOR: polling: replace epoll with sepoll and remove sepoll
4354 - MAJOR: polling: remove unused callbacks from the poller struct
4355 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present
4356 - CLEANUP: channel: remove any reference of the hijackers
4357 - CLEANUP: stream_interface: remove the external task type target
4358 - MAJOR: connection: replace struct target with a pointer to an enum
4359 - BUG: connection: fix typo in previous commit
4360 - BUG: polling: don't skip polled events in the spec list
4361 - MINOR: splice: disable it when the system returns EBADF
4362 - MINOR: build: allow packagers to specify the default maxzlibmem
4363 - BUG: halog: fix broken output limitation
4364 - BUG: proxy: fix server name lookup in get_backend_server()
4365 - BUG: compression: do not always increment the round counter on allocation failure
4366 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests
4367 - MINOR: global: don't prevent nbproc from being redefined
4368 - MINOR: config: support process ranges for "bind-process"
4369 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map")
4370 - MINOR: ssl: rename and document the tune.ssl.cachesize option
4371 - DOC: update the PROXY protocol spec to support v2
4372 - MINOR: standard: add a simple popcount function
4373 - MEDIUM: adjust the maxaccept per listener depending on the number of processes
4374 - BUG: compression: properly disable compression when content-type does not match
4375 - MINOR: cli: report connection status in "show sess xxx"
4376 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck
4377 - BUILD: cli: fix build when SSL is enabled
4378 - MINOR: cli: report the fd state in "show sess xxx"
4379 - MINOR: cli: report an error message on missing argument to compression rate
4380 - MINOR: http: add some debugging functions to pretty-print msg state names
4381 - BUG/MAJOR: stream_interface: read0 not always handled since dev12
4382 - DOC: documentation on http header capture is wrong
4383 - MINOR: http: allow the cookie capture size to be changed
4384 - DOC: http header capture has not been limited in size for a long time
4385 - DOC: update readme with build methods for BSD
4386 - BUILD: silence a warning on Solaris about usage of isdigit()
4387 - MINOR: stats: report HTTP compression stats per frontend and per backend
4388 - MINOR: log: add '%Tl' to log-format
4389 - MINOR: samples: update the url_param fetch to match parameters in the path
4390
Willy Tarreau16216822012-09-10 09:46:55 +020043912012/09/10 : 1.5-dev12
4392 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
4393 - MEDIUM: ssl: add support for prefer-server-ciphers option
4394 - MINOR: IPv6 support for transparent proxy
4395 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined
4396 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined
4397 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS).
4398 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer
4399 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines
4400 - MEDIUM: config: add support for the 'ssl' option on 'server' lines
4401 - MEDIUM: ssl: protect against client-initiated renegociation
4402 - BUILD: add optional support for SSL via the USE_OPENSSL flag
4403 - MEDIUM: ssl: add shared memory session cache implementation.
4404 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache
4405 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size.
4406 - MEDIUM: ssl: add support for SNI and wildcard certificates
4407 - DOC: Typos cleanup
4408 - DOC: fix name for "option independant-streams"
4409 - DOC: specify the default value for maxconn in the context of a proxy
4410 - BUG/MINOR: to_log erased with unique-id-format
4411 - LICENSE: add licence exception for OpenSSL
4412 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers
4413 - BUILD: add an AIX 5.2 (and later) target.
4414 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection
4415 - MINOR: halog: use the more recent dual-mode fgets2 implementation
4416 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches
4417 - CLEANUP: halog: make clean should also remove .o files
4418 - OPTIM: halog: make use of memchr() on platforms which provide a fast one
4419 - OPTIM: halog: improve cold-cache behaviour when loading a file
4420 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag
4421 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_*
4422 - MEDIUM: pattern: add the "base" sample fetch method
4423 - OPTIM: i386: make use of kernel-mode-linux when available
4424 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message
4425 - BUG/MINOR: polling: some events were not set in various pollers
4426 - MINOR: http: add the urlp_val ACL match
4427 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families
4428 - MINOR: stats/cli: add plans to support more stick-table actions
4429 - MEDIUM: stats/cli: add support for "set table key" to enter values
4430 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab
4431 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll
4432 - REORG/MEDIUM: fd: get rid of FD_STLISTEN
4433 - REORG/MINOR: connection: move declaration to its own include file
4434 - REORG/MINOR: checks: put a struct connection into the server
4435 - MINOR: connection: add flags to the connection struct
4436 - MAJOR: get rid of fdtab[].state and use connection->flags instead
4437 - MINOR: fd: add a new I/O handler to fdtab
4438 - MEDIUM: polling: prepare to call the iocb() function when defined.
4439 - MEDIUM: checks: make use of fdtab->iocb instead of cb[]
4440 - MEDIUM: protocols: use the generic I/O callback for accept callbacks
4441 - MINOR: connection: add a handler for fd-based connections
4442 - MAJOR: connection: replace direct I/O callbacks with the connection callback
4443 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore
4444 - MEDIUM: connection: remove the FD_POLL_* flags only once
4445 - MEDIUM: connection: extract the send_proxy callback from proto_tcp
4446 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes
4447 - CLEANUP: remove the now unused fdtab direct I/O callbacks
4448 - MAJOR: remove the stream interface and task management code from sock_*
4449 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops
4450 - MEDIUM: stream_interface: centralize the SI_FL_ERR management
4451 - MAJOR: connection: add a new CO_FL_CONNECTED flag
4452 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes
4453 - MAJOR: connection: call data layer handshakes from the handler
4454 - MEDIUM: fd: remove the EV_FD_COND_* primitives
4455 - MINOR: sock_raw: move calls to si_data_close upper
4456 - REORG: connection: replace si_data_close() with conn_data_close()
4457 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr
4458 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer
4459 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls
4460 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required
4461 - MEDIUM: connection: add definitions for dual polling mechanisms
4462 - MEDIUM: connection: make use of the new polling functions
4463 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers
4464 - MEDIUM: checks: don't use FD_WAIT_* anymore
4465 - MINOR: fd: get rid of FD_WAIT_*
4466 - MEDIUM: stream_interface: offer a generic function for connection updates
4467 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections
4468 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops
4469 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function
4470 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback
4471 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function
4472 - REORG/MAJOR: use "struct channel" instead of "struct buffer"
4473 - REORG/MAJOR: extract "struct buffer" from "struct channel"
4474 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions
4475 - REORG: sock_raw: rename the files raw_sock*
4476 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read()
4477 - MAJOR: raw_sock: temporarily disable splicing
4478 - MINOR: stream-interface: add an rcv_buf callback to sock_ops
4479 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb()
4480 - MAJOR: connection: split the send call into connection and stream interface
4481 - MAJOR: stream-interface: restore splicing mechanism
4482 - MAJOR: stream-interface: make conn_notify_si() more robust
4483 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy()
4484 - MAJOR: stream-interface: don't commit polling changes in every callback
4485 - MAJOR: stream-interface: fix splice not to call chk_snd by itself
4486 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress
4487 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops
4488 - REORG: buffers: split buffers into chunk,buffer,channel
4489 - MAJOR: channel: remove the BF_OUT_EMPTY flag
4490 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h
4491 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel
4492 - MINOR: buffer: provide a new buffer_full() function
4493 - MAJOR: channel: stop relying on BF_FULL to take action
4494 - MAJOR: channel: remove the BF_FULL flag
4495 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h}
4496 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_
4497 - CLEANUP: channel: use "channel" instead of "buffer" in function names
4498 - REORG: connection: move the target pointer from si to connection
4499 - MAJOR: connection: move the addr field from the stream_interface
4500 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags
4501 - MEDIUM: proto_tcp: remove any dependence on stream_interface
4502 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key
4503 - MEDIUM: connection: add an ->init function to data layer
4504 - MAJOR: session: introduce embryonic sessions
4505 - MAJOR: connection: make the PROXY decoder a handshake handler
4506 - CLEANUP: frontend: remove the old proxy protocol decoder
4507 - MAJOR: connection: rearrange the polling flags.
4508 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet
4509 - MEDIUM: connection: complete the polling cleanups
4510 - MEDIUM: connection: avoid calling handshakes when polling is required
4511 - MAJOR: stream_interface: continue to update data polling flags during handshakes
4512 - CLEANUP: fd: remove fdtab->flags
4513 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest
4514 - CLEANUP: includes: fix includes for a number of users of fd.h
4515 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners
4516 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites
4517 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines
4518 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake
4519 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL
4520 - BUILD: ssl: fix shctx build on RHEL with futex
4521 - BUILD: include sys/socket.h to fix build failure on FreeBSD
4522 - BUILD: fix build error without SSL (ssl_cert)
4523 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS
4524 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1
4525 - MEDIUM: config: support per-listener backlog and maxconn
4526 - MINOR: session: do not send an HTTP/500 error on SSL sockets
4527 - MEDIUM: config: implement maxsslconn in the global section
4528 - BUG: tcp: close socket fd upon connect error
4529 - MEDIUM: connection: improve error handling around the data layer
4530 - MINOR: config: make the tasks "nice" value configurable on "bind" lines.
4531 - BUILD: shut a gcc warning introduced by commit 269ab31
4532 - MEDIUM: config: centralize handling of SSL config per bind line
4533 - BUILD: makefile: report USE_OPENSSL status in build options
4534 - BUILD: report openssl build settings in haproxy -vv
4535 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_*
4536 - DOC: add a special acknowledgement for the stud project
4537 - DOC: add missing SSL options for servers and listeners
4538 - BUILD: automatically add -lcrypto for SSL
4539 - DOC: add some info about openssl build in the README
4540
Willy Tarreau02c7c142012-06-04 00:43:45 +020045412012/06/04 : 1.5-dev11
4542 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations
4543 - BUG/MAJOR: trash must always be the size of a buffer
4544 - DOC: fix minor regex example issue and improve doc on stats
4545 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT
4546 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct
4547 - MINOR: checks: add on-marked-up option
4548 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation
4549 - MEDIUM: stream_interface: remove the si->init
4550 - MINOR: buffers: add a rewind function
4551 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header
4552 - MAJOR: http: stop using msg->sol outside the parsers
4553 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks
4554 - MEDIUM: http: get rid of msg->som which is not used anymore
4555 - MEDIUM: http: msg->sov and msg->sol will never wrap
4556 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set
4557 - BUG/MINOR: stop connect timeout when connect succeeds
4558 - REORG: move the send-proxy code to tcp_connect_write()
4559 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept
4560 - MINOR: stream_interface: introduce a new "struct connection" type
4561 - REORG/MINOR: stream_interface: move si->fd to struct connection
4562 - REORG/MEDIUM: stream_interface: move applet->state and private to connection
4563 - MINOR: stream_interface: add a data channel close function
4564 - MEDIUM: stream_interface: call si_data_close() before releasing the si
4565 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw
4566 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect
4567 - MINOR: add a new function call tracer for debugging purposes
4568 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer
4569 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr()
4570 - BUG/MEDIUM: register peer sync handler in the proper order
4571 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer
4572 - BUG/MINOR: fix option httplog validation with TCP frontends
4573 - BUG/MINOR: log: don't report logformat errors in backends
4574 - REORG/MINOR: use dedicated proxy flags for the cookie handling
4575 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http
4576 - MINOR: http: add support for "httponly" and "secure" cookie attributes
4577 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once
4578 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants
4579 - MEDIUM: stats: add support for soft stop/soft start in the admin interface
4580 - MEDIUM: stats: add the ability to kill sessions from the admin interface
4581 - BUILD: add support for linux kernels >= 2.6.28
4582
Willy Tarreauffb89472012-05-14 07:26:56 +020045832012/05/14 : 1.5-dev10
4584 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally
4585 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist
4586 - CLEANUP: auth: make the code build again with DEBUG_AUTH
4587 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names
4588 - REORG: use the name sock_raw instead of stream_sock
4589 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT
4590 - BUG/MEDIUM: stream_interface: restore get_src/get_dst
4591 - CLEANUP: sock_raw: remove last references to stream_sock
4592 - CLEANUP: stream_interface: stop exporting socket layer functions
4593 - MINOR: stream_interface: add an init callback to sock_ops
4594 - MEDIUM: stream_interface: derive the socket operations from the target
4595 - MAJOR: fd: remove the need for the socket layer to recheck the connection
4596 - MINOR: session: call the socket layer init function when a session establishes
4597 - MEDIUM: session: add support for tunnel timeouts
4598 - MINOR: standard: add a new debug macro : fddebug()
4599 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab
4600 - OPTIM: proto_http: don't enable quick-ack on empty buffers
4601 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events
4602 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag
4603
Willy Tarreaua0564f32012-05-08 21:56:27 +020046042012/05/08 : 1.5-dev9
4605 - MINOR: Add release callback to si_applet
4606 - CLEANUP: Fix some minor typos
4607 - MINOR: Add TO/FROM_SET flags to struct stream_interface
4608 - CLEANUP: Fix some minor whitespace issues
4609 - MINOR: stats admin: allow unordered parameters in POST requests
4610 - CLEANUP: fix typo in findserver() log message
4611 - MINOR: stats admin: use the backend id instead of its name in the form
4612 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes
4613 - DOC: cleanup indentation, alignment, columns and chapters
4614 - DOC: fix some keywords arguments documentation
4615 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX"
4616 - BUG/MAJOR: log: possible segfault with logformat
4617 - MEDIUM: log: split of log_format generation
4618 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid
4619 - MEDIUM: log: Unique ID
4620 - MINOR: log: log-format: usable without httplog and tcplog
4621 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses
4622 - MINOR: contrib/iprange: add a network IP range to mask converter
4623 - MEDIUM: session: implement the "use-server" directive
4624 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used
4625 - MEDIUM: http: make extract_cookie_value() iterate over cookie values
4626 - MEDIUM: http: add cookie and scookie ACLs
4627 - CLEANUP: lb_first: add reference to a paper describing the original idea
4628 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET
4629 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present
4630 - BUILD: http: make extract_cookie_value() return an int not size_t
4631 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values
4632 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR
4633 - MINOR: standard: add a memprintf() function to build formatted error messages
4634 - CLEANUP: remove a few warning about unchecked return values in debug code
4635 - MEDIUM: move message-related flags from transaction to message
4636 - DOC: add a diagram to explain how circular buffers work
4637 - MAJOR: buffer rework: replace ->send_max with ->o
4638 - MAJOR: buffer: replace buf->l with buf->{o+i}
4639 - MINOR: buffers: provide simple pointer normalization functions
4640 - MINOR: buffers: remove unused function buffer_contig_data()
4641 - MAJOR: buffers: replace buf->w with buf->p - buf->o
4642 - MAJOR: buffers: replace buf->r with buf->p + buf->i
4643 - MAJOR: http: move buffer->lr to http_msg->next
4644 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin
4645 - CLEANUP: http: remove unused http_msg->col
4646 - MAJOR: http: turn http_msg->eol to a buffer-relative offset
4647 - MEDIUM: http: add a pointer to the buffer in http_msg
4648 - MAJOR: http: make http_msg->sol relative to buffer's origin
4649 - MEDIUM: http: http_send_name_header: remove references to msg and buffer
4650 - MEDIUM: http: remove buffer arg in a few header manipulation functions
4651 - MEDIUM: http: remove buffer arg in http_capture_bad_message
4652 - MEDIUM: http: remove buffer arg in http_msg_analyzer
4653 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10
4654 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign
4655 - MEDIUM: http: remove buffer arg in chunk parsing functions
4656 - MINOR: http: remove useless wrapping checks in http_msg_analyzer
4657 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places
4658 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls
4659 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer
4660 - MEDIUM: buffers: rename a number of buffer management functions
4661 - MEDIUM: http: add a prefetch function for ACL pattern fetch
4662 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http()
4663 - BUG/MINOR: http_auth: ACLs are volatile, not permanent
4664 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies
4665 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr()
4666 - MEDIUM: add a new typed argument list parsing framework
4667 - MAJOR: acl: make use of the new argument parsing framework
4668 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration
4669 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types
4670 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time
4671 - MAJOR: acl: ensure that implicit table and proxies are valid
4672 - MEDIUM: acl: remove unused tests for missing args when args are mandatory
4673 - MEDIUM: pattern: replace type pattern_arg with type arg
4674 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments
4675 - MEDIUM: pattern: use the standard arg parser
4676 - MEDIUM: pattern: add an argument validation callback to pattern descriptors
4677 - MEDIUM: pattern: report the precise argument parsing error when known.
4678 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag
4679 - MINOR: pattern: add a new 'sample' type to store fetched data
4680 - MEDIUM: pattern: add new sample types to replace pattern types
4681 - MAJOR: acl: make use of the new sample struct and get rid of acl_test
4682 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs
4683 - MEDIUM: acl: get rid of the SET_RES flags
4684 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE
4685 - MINOR: pattern: replace struct pattern with struct sample
4686 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere
4687 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description
4688 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down
4689 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions
4690 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie
4691 - MEDIUM: acl/pattern: use the same direction scheme
4692 - MEDIUM: acl/pattern: start merging common sample fetch functions
4693 - MEDIUM: pattern: ensure that sample types always cast into other types.
4694 - MEDIUM: acl/pattern: factor out the src/dst address fetches
4695 - MEDIUM: acl: implement payload and payload_lv
4696 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer
4697 - MINOR: stick_table: centralize the handling of empty keys
4698 - MINOR: pattern: centralize handling of unstable data in pattern_process()
4699 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version
4700 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions
4701 - MINOR: acl: add a val_args field to keywords
4702 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs
4703 - MEDIUM: http: merge acl and pattern header fetch functions
4704 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one
4705 - MEDIUM: acl: report parsing errors to the caller
4706 - MINOR: arg: improve error reporting on invalid arguments
4707 - MINOR: acl: report errors encountered when loading patterns from files
4708 - MEDIUM: acl: extend the pattern parsers to report meaningful errors
4709 - REORG: use the name "sample" instead of "pattern" to designate extracted data
4710 - REORG: rename "pattern" files
4711 - MINOR: acl: add types to ACL patterns
4712 - MINOR: standard: add an IPv6 parsing function (str62net)
4713 - MEDIUM: acl: support IPv6 address matching
4714 - REORG: stream_interface: create a struct sock_ops to hold socket operations
4715 - REORG/MEDIUM: move protocol->{read,write} to sock_ops
4716 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors
4717 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer
4718 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c
4719 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods
4720 - BUG/MINOR: http: error snapshots are wrong if buffer wraps
4721 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p
4722 - MEDIUM: http: improve error capture reports
4723 - MINOR: acl: add the cook_val() match to match a cookie against an integer
4724 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs
4725 - MEDIUM: memory: add the ability to poison memory at run time
4726 - BUG/MEDIUM: log: ensure that unique_id is properly initialized
4727 - MINOR: cfgparse: use a common errmsg pointer for all parsers
4728 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors
4729 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords
4730 - MINOR: http: replace http_message_realign() with buffer_slow_realign()
4731
Willy Tarreau9eeb57b2012-03-26 06:15:29 +020047322012/03/26 : 1.5-dev8
4733 - MINOR: patch for minor typo (ressources/resources)
4734 - MEDIUM: http: add support for sending the server's name in the outgoing request
4735 - DOC: mention that default checks are TCP connections
4736 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified
4737 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static
4738 - CLEANUP: Fix HCHK spelling errors
4739 - BUG/MINOR: fix typo in processing of http-send-name-header
4740 - MEDIUM: log: Use linked lists for loggers
4741 - BUILD: fix declaration inside a scope block
4742 - REORG: log: split send_log function
4743 - MINOR: config: Parse the string of the log-format config keyword
4744 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations
4745 - MINOR: Date and time fonctions that don't use snprintf
4746 - MEDIUM: log: make http_sess_log use log_format
4747 - DOC: log-format documentation
4748 - MEDIUM: log: use log_format for mode tcplog
4749 - MEDIUM: log-format: backend source address %Bi %Bp
4750 - BUG/MINOR: log-format: fix %o flag
4751 - BUG/MEDIUM: bad length in log_format and __send_log
4752 - MINOR: logformat %st is signed
4753 - BUILD/MINOR: fix the source URL in the spec file
4754 - DOC: acl is http_first_req, not http_req_first
4755 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces
4756 - MINOR: acl: add new matches for header/path/url length
4757 - BUILD: halog: make halog build on solaris
4758 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports
4759 - MINOR: remove the client/server side distinction in SI addresses
4760 - MINOR: halog: add support for matching queued requests
4761 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed
4762 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs
4763 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize)
4764 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl)
4765 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct
4766 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers
4767 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers
4768 - CLEANUP: rename possibly confusing struct field "tracked"
4769 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use
4770 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode
4771 - MEDIUM: buffers: add some new primitives and rework existing ones
4772 - BUG: buffers: don't return a negative value on buffer_total_space_res()
4773 - MINOR: buffers: make buffer_pointer() support negative pointers too
4774 - CLEANUP: kill buffer_replace() and use an inline instead
4775 - BUG: tcp: option nolinger does not work on backends
4776 - CLEANUP: ebtree: remove a few annoying signedness warnings
4777 - CLEANUP: ebtree: clarify licence and update to 6.0.6
4778 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code
4779 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code
4780 - BUG: ebtree: ebst_lookup() could return the wrong entry
4781 - OPTIM: stream_sock: reduce the amount of in-flight spliced data
4782 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN
4783 - MINOR: acl: add support for TLS server name matching using SNI
4784 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests
4785 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown
4786 - MINOR: pattern: export the global temporary pattern
4787 - CLEANUP: patterns: get rid of pattern_data_setstring()
4788 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match
4789 - MINOR: acl: include pattern.h to make pattern migration more transparent
4790 - MEDIUM: pattern: change the pattern data integer from unsigned to signed
4791 - MEDIUM: acl: use temp_pattern to store any integer-type information
4792 - MEDIUM: acl: use temp_pattern to store any address-type information
4793 - CLEANUP: acl: integer part of acl_test is not used anymore
4794 - MEDIUM: acl: use temp_pattern to store any string-type information
4795 - CLEANUP: acl: remove last data fields from the acl_test struct
4796 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr()
4797 - MEDIUM: patterns: the hdr() pattern is now of type string
4798 - DOC: add minimal documentation on how ACLs work internally
4799 - DOC: add a coding-style file
4800 - OPTIM: halog: keep a fast path for the lines-count only
4801 - CLEANUP: silence a warning when building on sparc
4802 - BUG: http: tighten the list of allowed characters in a URI
4803 - MEDIUM: http: block non-ASCII characters in URIs by default
4804 - DOC: add some documentation from RFC3986 about URI format
4805 - BUG/MINOR: cli: correctly remove the whole table on "clear table"
4806 - BUG/MEDIUM: correctly disable servers tracking another disabled servers.
4807 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend
4808 - MINOR: halog: add some help on the command line
4809 - BUILD: fix build error on FreeBSD
4810 - BUG: fix double free in peers config error path
4811 - MEDIUM: improve config check return codes
4812 - BUILD: make it possible to look for pcre in the default system paths
4813 - MINOR: config: emit a warning when 'default_backend' masks servers
4814 - MINOR: backend: rework the LC definition to support other connection-based algos
4815 - MEDIUM: backend: add the 'first' balancing algorithm
4816 - BUG: fix httplog trailing LF
4817 - MEDIUM: increase chunk-size limit to 2GB-1
4818 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions
4819 - BUG: http: disable TCP delayed ACKs when forwarding content-length data
4820 - BUG: checks: fix server maintenance exit sequence
4821 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes
4822 - DOC: enumerate valid status codes for "observe layer7"
4823 - MINOR: buffer: switch a number of buffer args to const
4824 - CLEANUP: silence signedness warning in acl.c
4825 - BUG: stream_sock: si->release was not called upon shutw()
4826 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie
4827 - BUG/CRITICAL: log: fix risk of crash in development snapshot
4828 - BUG/MAJOR: possible crash when using capture headers on TCP frontends
4829 - MINOR: config: disable header captures in TCP mode and complain
4830
Willy Tarreau60612eb2011-09-10 23:43:11 +020048312011/09/10 : 1.5-dev7
4832 - [BUG] fix binary stick-tables
4833 - [MINOR] http: *_dom matching header functions now also split on ":"
4834 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check
4835 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server
4836 - [MINOR] check: add redis check support
4837 - [DOC] small fixes to clearly distinguish between keyword and variables
4838 - [MINOR] halog: add support for termination code matching (-tcn/-TCN)
4839 - [DOC] Minor spelling fixes and grammatical enhancements
4840 - [CLEANUP] dumpstats: make symbols static where possible
4841 - [MINOR] Break out dumping table
4842 - [MINOR] Break out processing of clear table
4843 - [MINOR] Allow listing of stick table by key
4844 - [MINOR] Break out all stick table socat command parsing
4845 - [MINOR] More flexible clearing of stick table
4846 - [MINOR] Allow showing and clearing by key of ipv6 stick tables
4847 - [MINOR] Allow showing and clearing by key of integer stick tables
4848 - [MINOR] Allow showing and clearing by key of string stick tables
4849 - [CLEANUP] Remove assigned but unused variables
4850 - [CLEANUP] peers.h: fix declarations
4851 - [CLEANUP] session.c: Make functions static where possible
4852 - [MINOR] Add active connection list to server
4853 - [MINOR] Allow shutdown of sessions when a server becomes unavailable
4854 - [MINOR] Add down termination condition
4855 - [MINOR] Make appsess{,ion}_refresh static
4856 - [MINOR] Add rdp_cookie pattern fetch function
4857 - [CLEANUP] Remove unnecessary casts
4858 - [MINOR] Add non-stick server option
4859 - [MINOR] Consistently use error in tcp_parse_tcp_req()
4860 - [MINOR] Consistently free expr on error in cfg_parse_listen()
4861 - [MINOR] Free rdp_cookie_name on denint()
4862 - [MINOR] Free tcp rules on denint()
4863 - [MINOR] Free stick table pool on denint()
4864 - [MINOR] Free stick rules on denint()
4865 - [MEDIUM] Fix stick-table replication on soft-restart
4866 - [MEDIUM] Correct ipmask() logic
4867 - [MINOR] Correct type in table dump examples
4868 - [MINOR] Fix build error in stream_int_register_handler()
4869 - [MINOR] Use DPRINTF in assign_server()
4870 - [BUG] checks: http-check expect could fail a check on multi-packet responses
4871 - [DOC] fix minor typo in the "dispatch" doc
4872 - [BUG] proto_tcp: fix address binding on remote source
4873 - [MINOR] http: don't report the "haproxy" word on the monitoring response
4874 - [REORG] http: move HTTP error codes back to proto_http.h
4875 - [MINOR] http: make the "HTTP 200" status code configurable.
4876 - [MINOR] http: partially revert the chunking optimization for now
4877 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer
4878 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test
4879 - [MEDIUM] http: add support for "http-no-delay"
4880 - [OPTIM] http: optimize chunking again in non-interactive mode
4881 - [OPTIM] stream_sock: avoid fast-forwarding of partial data
4882 - [OPTIM] stream_sock: don't use splice on too small payloads
4883 - [MINOR] config: make it possible to specify a cookie even without a server
4884 - [BUG] stats: support url-encoded forms
4885 - [MINOR] config: automatically compute a default fullconn value
4886 - [CLEANUP] config: remove some left-over printf debugging code from previous patch
4887 - [DOC] add missing entry or stick store-response
4888 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns
4889 - [BUG] halog: correctly handle truncated last line
4890 - [MINOR] halog: make SKIP_CHAR stop on field delimiters
4891 - [MINOR] halog: add support for HTTP log matching (-H)
4892 - [MINOR] halog: gain back performance before SKIP_CHAR fix
4893 - [OPTIM] halog: cache some common fields positions
4894 - [OPTIM] halog: check once for correct line format and reuse the pointer
4895 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters
4896 - [OPTIM] halog: remove support for tab delimiters in input data
4897 - [BUG] session: risk of crash on out of memory (1.5-dev regression)
4898 - [MINOR] session: try to emit a 500 response on memory allocation errors
4899 - [OPTIM] stream_sock: reduce the default number of accepted connections at once
4900 - [BUG] stream_sock: disable listener when system resources are exhausted
4901 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c
4902 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections
4903 - [MINOR] listeners: add listen_full() to mark a listener full
4904 - [MINOR] listeners: add support for queueing resource limited listeners
4905 - [MEDIUM] listeners: put listeners in queue upon resource shortage
4906 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's
4907 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached
4908 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies
4909 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN)
4910 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource
4911 - [MINOR] proxy: make session rate-limit more accurate
4912 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK
4913 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies
4914 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop
4915 - [MINOR] task: new function task_schedule() to schedule a wake up
4916 - [MAJOR] proxy: finally get rid of maintain_proxies()
4917 - [BUG] proxy: stats frontend and peers were missing many initializers
4918 - [MEDIUM] listeners: add a global listener management task
4919 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too
4920 - [DOC] fix typos, "#" is a sharp, not a dash
4921 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime
4922 - [MEDIUM] checks: group health checks methods by values and save option bits
4923 - [MINOR] session-counters: add the ability to clear the counters
4924 - [BUG] check: http-check expect + regex would crash in defaults section
4925 - [MEDIUM] http: make x-forwarded-for addition conditional
4926 - [REORG] build: move syscall redefinition to specific places
4927 - [CLEANUP] update the year in the copyright banner
4928 - [BUG] possible crash in 'show table' on stats socket
4929 - [BUG] checks: use the correct destination port for sending checks
4930 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families
4931 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches
4932 - [DOC] fixed a few "sensible" -> "sensitive" errors
4933 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop()
4934 - [BUG] http: trailing white spaces must also be trimmed after headers
4935 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown
4936 - [MINOR] http: take a capture of too large requests and responses
4937 - [MINOR] http: take a capture of truncated responses
4938 - [MINOR] http: take a capture of bad content-lengths.
4939 - [DOC] add a few old and uncommitted docs
4940 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword
4941 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range
4942 - [MINOR] halog: support backslash-escaped quotes
4943 - [CLEANUP] remove dirty left-over of a debugging message
4944 - [MEDIUM] stats: disable complex socket reservation for stats socket
4945 - [CLEANUP] remove a useless test in manage_global_listener_queue()
4946 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface
4947 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate.
4948 - [MINOR] stats: report the current and max global connection rates
4949 - [MEDIUM] stats: add the ability to adjust the global maxconnrate
4950 - [BUG] peers: don't pre-allocate 65000 connections to each peer
4951 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate
4952 - [BUG] peers: the peer frontend must not emit any log
4953 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs
4954 - [BUG] peers: don't keep a peers section which has a NULL frontend
4955 - [BUG] peers: ensure the peers are resumed if they were paused
4956 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime
4957 - [MEDIUM] session: make session_shutdown() an independant function
4958 - [MEDIUM] stats: offer the possibility to kill a session from the CLI
4959 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI
4960 - [MEDIUM] stats: offer the possibility to kill sessions by server
4961 - [MINOR] halog: do not consider byte 0x8A as end of line
4962 - [MINOR] frontend: ensure debug message length is always initialized
4963 - [OPTIM] halog: make fgets parse more bytes by blocks
4964 - [OPTIM] halog: add assembly version of the field lookup code
4965 - [MEDIUM] poll: add a measurement of idle vs work time
4966 - [CLEANUP] startup: report only the basename in the usage message
4967 - [MINOR] startup: add an option to change to a new directory
4968 - [OPTIM] task: don't scan the run queue if we know it's empty
4969 - [BUILD] stats: stdint is not present on solaris
4970 - [DOC] update the README file to reflect new naming rules for patches
4971 - [MINOR] stats: report the number of requests intercepted by the frontend
4972 - [DOC] update ROADMAP file
4973
Willy Tarreau04df1122011-04-08 00:56:41 +020049742011/04/08 : 1.5-dev6
4975 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage
4976 - [BUG] TCP source tracking was broken with IPv6 changes
4977 - [BUG] stick-tables did not work when converting IPv6 to IPv4
4978 - [CRITICAL] fix risk of crash when dealing with space in response cookies
4979
Willy Tarreaub06ed2c2011-03-29 01:10:33 +020049802011/03/29 : 1.5-dev5
4981 - [BUG] standard: is_addr return value for IPv4 was inverted
4982 - [MINOR] update comment about IPv6 support for server
4983 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail
4984 - [DOC] update IPv6 support for bind
4985 - [DOC] document IPv6 support for server
4986 - [DOC] fix a minor typo
4987 - [MEDIUM] IPv6 support for syslog
4988 - [DOC] document IPv6 support for syslog
4989 - [MEDIUM] IPv6 support for stick-tables
4990 - [DOC] document IPv6 support for stick-tables
4991 - [DOC] update ROADMAP file
4992 - [BUG] session: src_conn_cur was returning src_conn_cnt instead
4993 - [MINOR] frontend: add a make_proxy_line function
4994 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line
4995 - [MEDIUM] server: add support for the "send-proxy" option
4996 - [DOC] update the spec on the proxy protocol
4997 - [BUILD] proto_tcp: fix build issue with CTTPROXY
4998 - [DOC] update ROADMAP file
4999 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses
5000 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range
5001 - [BUILD] add the USE_GETADDRINFO build option
5002 - [TESTS] provide a test case for various address formats
5003 - [BUG] session: conn_retries was not always initialized
5004 - [BUG] log: retrieve the target from the session, not the SI
5005 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2)
5006 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE
5007 - [BUG] http: fix content-length handling on 32-bit platforms
5008 - [OPTIM] buffers: uninline buffer_forward()
5009 - [BUG] stream_sock: fix handling for server side PROXY protocol
5010 - [MINOR] acl: add support for table_cnt and table_avl matches
5011 - [DOC] update ROADMAP file
5012
Willy Tarreaue0052cc2011-03-13 22:15:02 +010050132011/03/13 : 1.5-dev4
5014 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation.
5015 - [MINOR] unix sockets : inherits the backlog size from the listener
5016 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener()
5017 - [DOC] fix a minor typo
5018 - [DOC] fix ignore-persist documentation
5019 - [MINOR] add warnings on features not compatible with multi-process mode
5020 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode
5021 - [MINOR] stats: add support for several packets in stats admin
5022 - [BUG] stats: admin commands must check the proxy state
5023 - [BUG] stats: admin web interface must check the proxy state
5024 - [MINOR] http: add pattern extraction method to stick on query string parameter
5025 - [MEDIUM] add internal support for IPv6 server addresses
5026 - [MINOR] acl: add be_id/srv_id to match backend's and server's id
5027 - [MINOR] log: add support for passing the forwarded hostname
5028 - [MINOR] log: ability to override the syslog tag
5029 - [MINOR] checks: add PostgreSQL health check
5030 - [DOC] update ROADMAP file
5031 - [BUILD] pattern: use 'int' instead of 'int32_t'
5032 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls
5033 - [BUG] debug: report the correct poller list in verbose mode
5034 - [BUG] capture: do not capture a cookie if there is no memory left
5035 - [BUG] appsession: fix possible double free in case of out of memory
5036 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process
5037 - [BUG] http: correctly update the header list when removing two consecutive headers
5038 - [BUILD] add the CPU=native and ARCH=32/64 build options
5039 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4
5040 - [CLEANUP] hash: move the avalanche hash code globally available
5041 - [MEDIUM] hash: add support for an 'avalanche' hash-type
5042 - [DOC] update roadmap file
5043 - [BUG] http: do not re-enable the PROXY analyser on keep-alive
5044 - [OPTIM] http: don't send each chunk in a separate packet
5045 - [DOC] fix minor typos reported recently in the peers section
5046 - [DOC] fix another typo in the doc
5047 - [MINOR] stats: report HTTP message state and buffer flags in error dumps
5048 - [BUG] http chunking: don't report a parsing error on connection errors
5049 - [BUG] stream_interface: truncate buffers when sending error messages
5050 - [MINOR] http: support wrapping messages in error captures
5051 - [MINOR] http: capture incorrectly chunked message bodies
5052 - [MINOR] stats: add global event ID and count
5053 - [BUG] http: analyser optimizations broke pipelining
5054 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets
5055 - [BUG] http: fix incorrect error reporting during data transfers
5056 - [CRITICAL] session: correctly leave turn-around and queue states on abort
5057 - [BUG] session: release slot before processing pending connections
5058 - [MINOR] tcp: add support for dynamic MSS setting
5059 - [BUG] stick-table: correctly terminate string keys during lookups
5060 - [BUG] acl: fix handling of empty lines in pattern files
5061 - [BUG] stick-table: use the private buffer when padding strings
5062 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys
5063 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop
5064 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len
5065 - [REVERT] undo the stick-table string key lookup fixes
5066 - [MINOR] http: improve url_param pattern extraction to ignore empty values
5067 - [BUILD] frontend: shut a warning with TCP_MAXSEG
5068 - [BUG] http: update the header list's tail when removing the last header
5069 - [DOC] fix minor typo in the proxy protocol doc
5070 - [DOC] fix typos (http-request instead of http-check)
5071 - [BUG] http: use correct ACL pointer when evaluating authentication
5072 - [BUG] cfgparse: correctly count one socket per port in ranges
5073 - [BUG] startup: set the rlimits before binding ports, not after.
5074 - [BUG] acl: srv_id must return no match when the server is NULL
5075 - [MINOR] acl: add ability to check for internal response-only parameters
5076 - [MINOR] acl: srv_id is only valid in responses
5077 - [MINOR] config: warn if response-only conditions are used in "redirect" rules
5078 - [BUG] acl: fd leak when reading patterns from file
5079 - [DOC] fix minor typo in "usesrc"
5080 - [BUG] http: fix possible incorrect forwarded wrapping chunk size
5081 - [BUG] http: fix computation of message body length after forwarding has started
5082 - [BUG] http: balance url_param did not work with first parameters on POST
5083 - [TESTS] update the url_param regression test to test check_post too
5084 - [DOC] update ROADMAP
5085 - [DOC] internal: reflect the fact that SI_ST_ASS is transient
5086 - [BUG] config: don't crash on empty pattern files.
5087 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers
5088 - [REORG] stream_interface: move the st0, st1 and private members to the applet
5089 - [REORG] stream_interface: split the struct members in 3 parts
5090 - [REORG] session: move client and server address to the stream interface
5091 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI
5092 - [MEDIUM] stream_interface: store the target pointer and type
5093 - [CLEANUP] stream_interface: remove the applet.handler pointer
5094 - [MEDIUM] log: take the logged server name from the stream interface
5095 - [CLEANUP] session: remove data_source from struct session
5096 - [CLEANUP] stats: make all dump functions only rely on the stream interface
5097 - [REORG] session: move the data_ctx struct to the stream interface's applet
5098 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode
5099 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy
5100 - [MINOR] session: add a pointer to the new target into the session
5101 - [MEDIUM] session: remove s->prev_srv which is not needed anymore
5102 - [CLEANUP] stream_interface: use inline functions to manipulate targets
5103 - [MAJOR] session: remove the ->srv pointer from struct session
5104 - [MEDIUM] stats: split frontend and backend stats
5105 - [MEDIUM] http: always evaluate http-request rules before stats http-request
5106 - [REORG] http: move the http-request rules to proto_http
5107 - [BUG] http: stats were not incremented on http-request deny
5108 - [MINOR] checks: report it if checks fail due to socket creation error
5109
Willy Tarreau442e8342010-11-11 23:29:35 +010051102010/11/11 : 1.5-dev3
5111 - [DOC] fix http-request documentation
5112 - [MEDIUM] enable/disable servers from the stats web interface
5113 - [MEDIUM] stats: add an admin level
5114 - [DOC] stats: document the "stats admin" statement
5115 - [MINOR] startup: print the proxy socket which caused an error
5116 - [CLEANUP] Remove unneeded chars allocation
5117 - [MINOR] config: detect options not supported due to compilation options
5118 - [MINOR] Add pattern's fetchs payload and payload_lv
5119 - [MINOR] frontend: improve accept-proxy header parsing
5120 - [MINOR] frontend: add tcpv6 support on accept-proxy bind
5121 - [MEDIUM] Enhance message errors management on binds
5122 - [MINOR] Manage unix socket source field on logs
5123 - [MINOR] Manage unix socket source field on session dump on sock stats
5124 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c
5125 - [MINOR] Add some tests on sockets family for port remapping and mode transparent.
5126 - [MINOR] Manage socket type unix for some logs
5127 - [MINOR] Enhance controls of socket's family on acls and pattern fetch
5128 - [MINOR] Support listener's sockets unix on http logs.
5129 - [MEDIUM] Add supports of bind on unix sockets.
5130 - [BUG] stick table purge failure if size less than 255
5131 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter
5132 - [MEDIUM] Implement tcp inspect response rules
5133 - [DOC] tcp-response content and inspect
5134 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type
5135 - [DOC] acls rep_ssl_hello and req_ssl_hello
5136 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated.
5137 - [DOC] new type binary in stick-table
5138 - [DOC] stick store-response and new patterns payload and payload_lv
5139 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command
5140 - [MEDIUM] Create updates tree on stick table to manage sync.
5141 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management
5142 - [MEDIUM] Manage peers section parsing and stick table registration on peers.
5143 - [MEDIUM] Manage soft stop on peers proxy
5144 - [DOC] add documentation for peers section
5145 - [MINOR] checks: add support for LDAPv3 health checks
5146 - [MINOR] add better support to "mysql-check"
5147 - [BUG] Restore info about available active/backup servers
5148 - [CONTRIB] Update haproxy.pl
5149 - [CONTRIB] Update Cacti Tempates
5150 - [CONTRIB] add templates for Cacti.
5151 - [BUG] http: don't consider commas as a header delimitor within quotes
5152 - [MINOR] support a global jobs counter
5153 - [DOC] add a summary about cookie incompatibilities between specs and browsers
5154 - [DOC] fix description of cookie "insert" and "indirect" modes
5155 - [MEDIUM] http: fix space handling in the request cookie parser
5156 - [MEDIUM] http: fix space handling in the response cookie parser
5157 - [DOC] fix typo in the queue() definition (backend, not frontend)
5158 - [BUG] deinit: unbind listeners before freeing them
5159 - [BUG] stream_interface: only call si->release when both dirs are closed
5160 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers
5161 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend)
5162 - [MINOR] halog: add '-tc' to sort by termination codes
5163 - [MINOR] halog: skip non-traffic logs for -st and -tc
5164 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage
5165 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning.
5166 - [DOC] bind option is "defer-accept", not "defer_accept"
5167 - [DOC] missing index entry for http-check send-state
5168 - [DOC] tcp-request inspect-delay is for backends too
5169 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings
5170 - [BUG] stream_sock: try to flush any extra pending request data after a POST
5171 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95
5172 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose
5173 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full
5174 - [MEDIUM] checks: add support for HTTP contents lookup
5175 - [TESTS] add test-check-expect to test various http-check methods
5176 - [MINOR] global: add "tune.chksize" to change the default check buffer size
5177 - [MINOR] cookie: add options "maxidle" and "maxlife"
5178 - [MEDIUM] cookie: support client cookies with some contents appended to their value
5179 - [MINOR] http: make some room in the transaction flags to extend cookies
5180 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies
5181 - [MEDIUM] cookie: reassign set-cookie status flags to store more states
5182 - [MINOR] add encode/decode function for 30-bit integers from/to base64
5183 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies
5184 - [MEDIUM] cookie: set the date in the cookie if needed
5185 - [DOC] document the cookie maxidle and maxlife parameters
5186 - [BUG] checks: don't log backend down for all zero-weight servers
5187 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance
5188 - [BUG] config: report correct keywords for "observe"
5189 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section
5190 - [MINOR] acl: add the http_req_first match
5191 - [DOC] fix typos about bind-process syntax
5192 - [BUG] cookie: correctly unset default cookie parameters
5193 - [MINOR] cookie: add support for the "preserve" option
5194 - [BUG] ebtree: fix duplicate strings insertion
5195 - [CONTRIB] halog: report per-url counts, errors and times
5196 - [CONTRIB] halog: minor speed improvement in timer parser
5197 - [MINOR] buffers: add a new request analyser flag for PROXY mode
5198 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword
5199 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer
5200 - [MINOR] standard: change arg type from const char* to char*
5201 - [MINOR] frontend: add a new analyser to parse a proxied connection
5202 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections
5203 - [DOC] add the proxy protocol's specifications
5204 - [DOC] document the 'accept-proxy' bind option
5205 - [MINOR] cfgparse: report support of <path> for the 'bind' statements
5206 - [DOC] add references to unix socket handling
5207 - [MINOR] move MAXPATHLEN definition to compat.h
5208 - [MEDIUM] unix sockets: cleanup the error reporting path
5209 - [BUG] session: don't stop forwarding of data upon last packet
5210 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log()
5211 - [BUILD] peers: shut a printf format warning (key_size is a size_t)
5212 - [BUG] accept: don't close twice upon error
5213 - [OPTIM] session: don't recheck analysers when buffer flags have not changed
5214 - [OPTIM] stream_sock: don't clear FDs that are already cleared
5215 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport
5216
Willy Tarreau37242fa2010-08-28 19:21:00 +020052172010/08/28 : 1.5-dev2
5218 - [MINOR] startup: release unused structs after forking
5219 - [MINOR] startup: don't wait for nothing when no old pid remains
5220 - [CLEANUP] reference product branch 1.5
5221 - [MEDIUM] signals: add support for registering functions and tasks
5222 - [MEDIUM] signals: support redistribution of signal zero when stopping
5223 - [BUG] http: don't set auto_close if more data are expected
5224
Willy Tarreaufc815fd2010-08-25 10:56:53 +020052252010/08/25 : 1.5-dev1
5226 - [BUG] stats: session rate limit gets garbaged in the stats
5227 - [DOC] mention 'option http-server-close' effect in Tq section
5228 - [DOC] summarize and highlight persistent connections behaviour
5229 - [DOC] add configuration samples
5230 - [BUG] http: dispatch and http_proxy modes were broken for a long time
5231 - [BUG] http: the transaction must be initialized even in TCP mode
5232 - [BUG] tcp: dropped connections must be counted as "denied" not "failed"
5233 - [BUG] consistent hash: balance on all servers, not only 2 !
5234 - [CONTRIB] halog: report per-server status codes, errors and response times
5235 - [BUG] http: the transaction must be initialized even in TCP mode (part 2)
5236 - [BUG] client: always ensure to zero rep->analysers
5237 - [BUG] session: clear BF_READ_ATTACHED before next I/O
5238 - [BUG] http: automatically close response if req is aborted
5239 - [BUG] proxy: connection rate limiting was eating lots of CPU
5240 - [BUG] http: report correct flags in case of client aborts during body
5241 - [TESTS] refine non-regression tests and add 4 new tests
5242 - [BUG] debug: wrong pointer was used to report a status line
5243 - [BUG] debug: correctly report truncated messages
5244 - [DOC] document the "dispatch" keyword
5245 - [BUG] stick_table: fix possible memory leak in case of connection error
5246 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents
5247 - [MINOR] accept: count the incoming connection earlier
5248 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp
5249 - [CLEANUP] client: move some ACLs away to their respective locations
5250 - [CLEANUP] rename client -> frontend
5251 - [MEDIUM] separate protocol-level accept() from the frontend's
5252 - [MINOR] proxy: add a list to hold future layer 4 rules
5253 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject)
5254 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept()
5255 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur
5256 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener
5257 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set
5258 - [CLEANUP] buffer->cto is not used anymore
5259 - [MEDIUM] session: finish session establishment sequence in with I/O handlers
5260 - [MEDIUM] session: initialize server-side timeouts after connect()
5261 - [MEDIUM] backend: initialize the server stream_interface upon connect()
5262 - [MAJOR] frontend: don't initialize the server-side stream_int anymore
5263 - [MEDIUM] session: move the conn_retries attribute to the stream interface
5264 - [MEDIUM] session: don't assign conn_retries upon accept() anymore
5265 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR
5266 - [MAJOR] frontend: reorder the session initialization upon accept
5267 - [MINOR] proxy: add an accept() callback for the application layer
5268 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept()
5269 - [MEDIUM] stats: rely on the standard session_accept() function
5270 - [MINOR] buffer: refine the flags that may wake an analyser up.
5271 - [MINOR] stream_sock: don't dereference a non-existing frontend
5272 - [MINOR] session: differenciate between accepted connections and received connections
5273 - [MEDIUM] frontend: count the incoming connection earlier
5274 - [MINOR] frontend: count denied TCP requests separately
5275 - [CLEANUP] stick_table: add/clarify some comments
5276 - [BUILD] memory: add a few missing parenthesis to the pool management macros
5277 - [MINOR] stick_table: add support for variable-sized data
5278 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion
5279 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c
5280 - [MEDIUM] stick_table: add room for extra data types
5281 - [MINOR] stick_table: add support for "conn_cum" data type.
5282 - [MEDIUM] stick_table: don't overwrite data when storing an entry
5283 - [MINOR] config: initialize stick tables after all the parsing
5284 - [MINOR] stick_table: provide functions to return stksess data from a type
5285 - [MEDIUM] stick_table: move the server ID to a generic data type
5286 - [MINOR] stick_table: enable it for frontends too
5287 - [MINOR] stick_table: export the stick_table_key
5288 - [MINOR] tcp: add per-source connection rate limiting
5289 - [MEDIUM] stick_table: separate storage and update of session entries
5290 - [MEDIUM] stick-tables: add a reference counter to each entry
5291 - [MINOR] session: add a pointer to the tracked counters for the source
5292 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible
5293 - [BUG] config: report the correct proxy type in tcp-request errors
5294 - [MINOR] config: provide a function to quote args in a more friendly way
5295 - [BUG] stick_table: the fix for the memory leak caused a regression
5296 - [MEDIUM] backend: support servers on 0.0.0.0
5297 - [BUG] stick-table: correctly refresh expiration timers
5298 - [MEDIUM] stream-interface: add a ->release callback
5299 - [MINOR] proxy: add a "parent" member to the structure
5300 - [MEDIUM] session: make it possible to call an I/O handler on both SI
5301 - [MINOR] tools: add a fast div64_32 function
5302 - [MINOR] freq_ctr: add new types and functions for periods different from 1s
5303 - [MINOR] errors: provide new status codes for config parsing functions
5304 - [BUG] http: denied requests must not be counted as denied resps in listeners
5305 - [MINOR] tools: add a get_std_op() function to parse operators
5306 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges
5307 - [MAJOR] stream_sock: better wakeup conditions on read()
5308 - [BUG] session: analysers must be checked when SI state changes
5309 - [MINOR] http: reset analysers to listener's, not frontend's
5310 - [MEDIUM] session: support "tcp-request content" rules in backends
5311 - [BUILD] always match official tags when doing git-tar
5312 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers
5313 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks
5314 - [MINOR] tcp: src_count acl does not have a permanent result
5315 - [MAJOR] session: add track-counters to track counters related to the session
5316 - [MINOR] stick-table: provide a table lookup function
5317 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts
5318 - [MEDIUM] session: move counter ACL fetches from proto_tcp
5319 - [MEDIUM] session: add concurrent connections counter
5320 - [MEDIUM] session: add data in and out volume counters
5321 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts
5322 - [MEDIUM] session-counters: automatically update tracked connection count
5323 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection
5324 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size
5325 - [MEDIUM] session: add a counter on the cumulated number of sessions
5326 - [MINOR] config: support a comma-separated list of store data types in stick-table
5327 - [MEDIUM] stick-tables: add support for arguments to data_types
5328 - [MEDIUM] stick-tables: add stored data argument type checking
5329 - [MEDIUM] session counters: add conn_rate and sess_rate counters
5330 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters
5331 - [MINOR] stktable: add a stktable_update_key() function
5332 - [MINOR] session-counters: add a general purpose counter (gpc0)
5333 - [MEDIUM] session-counters: add HTTP req/err tracking
5334 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table
5335 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries
5336 - [CLEANUP] stick-table: declare stktable_data_types as extern
5337 - [MEDIUM] stick-table: make use of generic types for stored data
5338 - [MINOR] stats: correctly report errors on "show table" and "clear table"
5339 - [MEDIUM] stats: add the ability to dump table entries matching criteria
5340 - [DOC] configuration: document all the new tracked counters
5341 - [DOC] stats: document "show table" and "clear table"
5342 - [MAJOR] session-counters: split FE and BE track counters
5343 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules
5344 - [MEDIUM] session counters: automatically remove expired entries.
5345 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection"
5346 - [MEDIUM] session-counters: make it possible to count connections from frontend
5347 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters"
5348 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend
5349 - [CLEANUP] stats: use stksess_kill() to remove table entries
5350 - [DOC] update the references to session counters and to tcp-request connection
5351 - [DOC] cleanup: split a few long lines
5352 - [MEDIUM] http: forward client's close when abortonclose is set
5353 - [BUG] queue: don't dequeue proxy-global requests on disabled servers
5354 - [BUG] stats: global stats timeout may be specified before stats socket.
5355 - [BUG] conf: add tcp-request content rules to the correct list
5356
Willy Tarreau21475e32010-05-23 08:46:08 +020053572010/05/23 : 1.5-dev0
5358 - exact copy of 1.4.6
5359
Willy Tarreau5fdd77d2010-05-16 22:34:28 +020053602010/05/16 : 1.4.6
5361 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf()
5362 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test
5363 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not
5364 - [DOC] add a few precisions about the use of RDP cookies
5365
Willy Tarreau9d4d9e32010-05-13 22:17:08 +020053662010/05/13 : 1.4.5
5367 - [DOC] report minimum kernel version for tproxy in the Makefile
5368 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence
5369 - [DOC] add the "ignore-persist" option to conditionally ignore persistence
5370 - [DOC] fix ignore-persist/force-persist documentation
5371 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version
5372 - [DOC] doc/configuration.txt: fix typos
5373 - [MINOR] option http-pretend-keepalive is both for FEs and BEs
5374 - [MINOR] fix possible crash in debug mode with invalid responses
5375 - [MINOR] halog: add support for statisticts on status codes
5376 - [OPTIM] halog: use a faster zero test in fgets()
5377 - [OPTIM] halog: minor speedup by using unlikely()
5378 - [OPTIM] halog: speed up fgets2-64 by about 10%
5379 - [DOC] refresh the README file and merge the CONTRIB file into it
5380 - [MINOR] acl: support loading values from files
5381 - [MEDIUM] ebtree: upgrade to version 6.0
5382 - [MINOR] acl trees: add flags and union members to store values in trees
5383 - [MEDIUM] acl: add ability to insert patterns in trees
5384 - [MEDIUM] acl: add tree-based lookups of exact strings
5385 - [MEDIUM] acl: add tree-based lookups of networks
5386 - [MINOR] acl: ignore empty lines and comments in pattern files
5387 - [MINOR] stick-tables: add support for "stick on hdr"
5388
Willy Tarreau9508c1c2010-04-07 23:12:24 +020053892010/04/07 : 1.4.4
5390 - [BUG] appsession should match the whole cookie name
5391 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag
5392 - [MEDIUM] backend: move the transparent proxy address selection to backend
5393 - [MINOR] add very fast IP parsing functions
5394 - [MINOR] add new tproxy flags for dynamic source address binding
5395 - [MEDIUM] add ability to connect to a server from an IP found in a header
5396 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY
5397 - [MINOR] http: make it possible to pretend keep-alive when doing close
5398 - [MINOR] config: report "default-server" instead of "(null)" in error messages
5399
Willy Tarreau75934a12010-03-30 09:50:08 +020054002010/03/30 : 1.4.3
5401 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer()
5402 - [MEDIUM] session: better fix for connection to servers with closed input
5403 - [DOC] indicate in the doc how to bind to port ranges
5404 - [BUG] backend: L7 hashing must not be performed on incomplete requests
5405 - [TESTS] add a simple program to test connection resets
5406 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used
5407 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode
5408 - [MINOR] config: allow "slowstart 0s"
5409 - [BUILD] 'make tags' did not consider files ending in '.c'
5410 - [MINOR] checks: add the ability to disable a server in the config
5411
Willy Tarreauda618cb2010-03-17 23:41:57 +010054122010/03/17 : 1.4.2
5413 - [CLEANUP] product branch update
5414 - [DOC] Some more documentation cleanups
5415 - [BUG] clf logs segfault when capturing a non existant header
5416 - [OPTIM] config: only allocate check buffer when checks are enabled
5417 - [MEDIUM] checks: support multi-packet health check responses
5418 - [CLEANUP] session: remove duplicate test
5419 - [BUG] http: don't wait for response data to leave buffer is client has left
5420 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time
5421 - [MINOR] stats: don't send empty lines in "show errors"
5422 - [MINOR] stats: make the data dump function reusable for other purposes
5423 - [MINOR] stats socket: add show sess <id> to dump details about a session
5424 - [BUG] stats: connection reset counters must be plain ascii, not HTML
5425 - [BUG] url_param hash may return a down server
5426 - [MINOR] force null-termination of hostname
5427 - [MEDIUM] connect to servers even when the input has already been closed
5428 - [BUG] don't merge anonymous ACLs !
5429 - [BUG] config: fix endless loop when parsing "on-error"
5430 - [MINOR] http: don't mark a server as failed when it returns 501/505
5431 - [OPTIM] checks: try to detect the end of response without polling again
5432 - [BUG] checks: don't report an error when recv() returns an error after data
5433 - [BUG] checks: don't abort when second poll returns an error
5434 - [MINOR] checks: make shutdown() silently fail
5435 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size
5436 - [BUG] init: unconditionally catch SIGPIPE
5437 - [BUG] checks: don't wait for a close to start parsing the response
5438
Willy Tarreauc5e60c32010-03-04 23:39:19 +010054392010/03/04 : 1.4.1
5440 - [BUG] Clear-cookie path issue
5441 - [DOC] fix typo on stickiness rules
5442 - [BUILD] fix BSD and OSX makefiles for missing files
5443 - [BUILD] includes order breaks OpenBSD build
5444 - [BUILD] fix some build warnings on Solaris with is* macros
5445 - [BUG] logs: don't report "last data" when we have just closed after an error
5446 - [BUG] logs: don't report "proxy request" when server closes early
5447 - [BUILD] fix platform-dependant build issues related to crypt()
5448 - [STATS] count transfer aborts caused by client and by server
5449 - [STATS] frontend requests were not accounted for failed requests
5450 - [MINOR] report total number of processed connections when stopping a proxy
5451 - [DOC] be more clear about the limitation to one single monitor-net entry
5452
Willy Tarreaue18fdfd2010-02-26 14:55:22 +010054532010/02/26 : 1.4.0
5454 - [MINOR] stats: report maint state for tracking servers too
5455 - [DOC] fix summary to add pattern extraction
5456 - [DOC] Documentation cleanups
5457 - [BUG] cfgparse memory leak and missing free calls in deinit()
5458 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced
5459 - [EXAMPLES] add auth.cfg
5460 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008
5461 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once
5462 - [BUILD] auth: don't use unnamed unions
5463 - [BUG] config: report unresolvable host names as errors
5464 - [BUILD] fix build breakage with DEBUG_FULL
5465 - [DOC] fix a typo about timeout check and clarify the explanation.
5466 - [MEDIUM] http: don't use trash to realign large buffers
5467 - [STATS] report HTTP requests (total and rate) in frontends
5468 - [STATS] separate frontend and backend HTTP stats
5469 - [MEDIUM] http: revert to use a swap buffer for realignment
5470 - [MINOR] stats: report the request rate in frontends as cell titles
5471 - [MINOR] stats: mark areas with an underline when tooltips are available
5472 - [DOC] reorder some entries to maintain the alphabetical order
5473 - [DOC] cleanup of the keyword matrix
5474
Willy Tarreaub05613d2010-02-02 10:18:28 +010054752010/02/02 : 1.4-rc1
5476 - [MEDIUM] add a maintenance mode to servers
5477 - [MINOR] http-auth: last fix was wrong
5478 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table.
5479 - [MINOR] Base64 decode
5480 - [MINOR] generic auth support with groups and encrypted passwords
5481 - [MINOR] add ACL_TEST_F_NULL_MATCH
5482 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen
5483 - [MINOR] acl: add http_auth and http_auth_group
5484 - [MAJOR] use the new auth framework for http stats
5485 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls
5486 - [STATS] make it possible to change a CLI connection timeout
5487 - [BUG] patterns: copy-paste typo in type conversion arguments
5488 - [MINOR] pattern: make the converter more flexible by supporting void* and int args
5489 - [MINOR] standard: str2mask: string to netmask converter
5490 - [MINOR] pattern: add support for argument parsers for converters
5491 - [MINOR] pattern: add the "ipmask()" converting function
5492 - [MINOR] config: off-by-one in "stick-table" after list of converters
5493 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy
5494 - [BUG] restore accidentely removed line in last patch !
5495 - [MINOR] checks: make the HTTP check code add the CRLF itself
5496 - [MINOR] checks: add the server's status in the checks
5497 - [BUILD] halog: make without arch-specific optimizations
5498 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d)
5499 - [MINOR] http: disable keep-alive when process is going down
5500 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config
5501 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond()
5502 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs
5503 - [MINOR] prepare req_*/rsp_* to receive a condition
5504 - [CLEANUP] config: specify correct const char types to warnif_* functions
5505 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords
5506 - [MEDIUM] http: make the request filter loop check for optional conditions
5507 - [MEDIUM] http: add support for conditional request filter execution
5508 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e)
5509 - [MEDIUM] http: add support for conditional request header addition
5510 - [MEDIUM] http: add support for conditional response header rewriting
5511 - [DOC] add some missing ACLs about response header matching
5512 - [MEDIUM] http: add support for proxy authentication
5513 - [MINOR] http-auth: make the 'unless' keyword work as expected
5514 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing
5515 - [MEDIUM] add support for anonymous ACLs
5516 - [MEDIUM] http: switch to tunnel mode after status 101 responses
5517 - [MEDIUM] http: stricter processing of the CONNECT method
5518 - [BUG] config: reset check request to avoid double free when switching to ssl/sql
5519 - [MINOR] config: fix too large ssl-hello-check message.
5520 - [BUG] fix error response in case of server error
5521
Willy Tarreau2eba6aa2010-01-25 23:28:05 +010055222010/01/25 : 1.4-dev8
5523 - [CLEANUP] Keep in sync "defaults" support between documentation and code
5524 - [MEDIUM] http: add support for Proxy-Connection header
5525 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry
5526 - [MINOR] http: remove a copy-paste typo in transaction cleaning
5527 - [BUG] http: trim any excess buffer data when recycling a connection
5528
Willy Tarreau6939b552010-01-25 01:54:37 +010055292010/01/25 : 1.4-dev7
5530 - [BUG] appsession: possible memory leak in case of out of memory condition
5531 - [MINOR] config: don't accept 'appsession' in defaults section
5532 - [MINOR] Add function to parse a size in configuration
5533 - [MEDIUM] Add stick table (persistence) management functions and types
5534 - [MEDIUM] Add pattern fetch management types and functions
5535 - [MEDIUM] Add src dst and dport pattern fetches.
5536 - [MEDIUM] Add stick table configuration and init.
5537 - [MEDIUM] Add stick and store rules analysers.
5538 - [MINOR] add option "mysql-check" to use MySQL health checks
5539 - [BUG] health checks: fix requeued message
5540 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS
5541 - [BUG] checks: fix newline termination
5542 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id
5543 - [BUG] appsession's sessid must be reset at end of transaction
5544 - [BUILD] appsession did not build anymore under gcc-2.95
5545 - [BUG] server redirection used an uninitialized string.
5546 - [MEDIUM] http: fix handling of message pointers
5547 - [MINOR] http: fix double slash prefix with server redirect
5548 - [MINOR] http redirect: add the ability to append a '/' to the URL
5549 - [BUG] stream_interface: fix retnclose and remove cond_close
5550 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1
5551 - [MINOR] http: move appsession 'sessid' from session to http_txn
5552 - [OPTIM] reorder http_txn to optimize cache lines placement
5553 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst
5554 - [MINOR] http: add a separate "http-keep-alive" timeout
5555 - [MINOR] config: remove undocumented and buggy 'timeout appsession'
5556 - [DOC] fix various too large lines
5557 - [DOC] remove several trailing spaces
5558 - [DOC] add the doc about stickiness
5559 - [BUILD] remove a warning in standard.h on AIX
5560 - [BUG] checks: chars are unsigned on AIX, check was always true
5561 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv()
5562 - [BUG] check: we must not check for error before reading a response
5563 - [BUG] buffers: remove remains of wrong obsolete length check
5564 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error
5565 - [BUG] http: don't count req errors on client resets or t/o during keep-alive
5566 - [MEDIUM] http: don't switch to tunnel mode upon close
5567 - [DOC] add documentation about connection header processing
5568 - [MINOR] http: add http_remove_header2() to remove a header value.
5569 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces
5570 - [MAJOR] http: rework request Connection header handling
5571 - [MAJOR] http: rework response Connection header handling
5572 - [MINOR] add the ability to force kernel socket buffer size.
5573 - [BUG] http_server_error() must not purge a previous pending response
5574 - [OPTIM] http: don't delay response if next request is incomplete
5575 - [MINOR] add the "force-persist" statement to force persistence on down servers
5576 - [MINOR] http: logs must report persistent connections to down servers
5577 - [BUG] buffer_replace2 must never change the ->w entry
5578
Willy Tarreau11f8f542010-01-08 07:49:44 +010055792010/01/08 : 1.4-dev6
5580 - [BUILD] warning in stream_interface.h
5581 - [BUILD] warning ultoa_r returns char *
5582 - [MINOR] hana: only report stats if it is enabled
5583 - [MINOR] stats: add "a link" & "a href" for sockets
5584 - [MINOR]: stats: add show-legends to report additional informations
5585 - [MEDIUM] default-server support
5586 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list
5587 - [MINOR] stats: add href to tracked server
5588 - [BUG] stats: show UP/DOWN status also in tracking servers
5589 - [DOC] Restore ability to search a keyword at the beginning of a line
5590 - [BUG] stats: cookie should be reported under backend not under proxy
5591 - [BUG] cfgparser/stats: fix error message
5592 - [BUG] http: disable auto-closing during chunk analysis
5593 - [BUG] http: fix hopefully last closing issue on data forwarding
5594 - [DEBUG] add an http_silent_debug function to debug HTTP states
5595 - [MAJOR] http: fix again the forward analysers
5596 - [BUG] http_process_res_common() must not skip the forward analyser
5597 - [BUG] http: some possible missed close remain in the forward chain
5598 - [BUG] http: redirect needed to be updated after recent changes
5599 - [BUG] http: don't set no-linger on response in case of forced close
5600 - [MEDIUM] http: restore the original behaviour of option httpclose
5601 - [TESTS] add a file to test various connection modes
5602 - [BUG] http: check options before the connection header
5603 - [MAJOR] session: fix the order by which the analysers are run
5604 - [MEDIUM] session: also consider request analysers added during response
5605 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags
5606 - [BUG] http: memory leak with captures when using keep-alive
5607 - [BUG] http: fix for capture memory leak was incorrect
5608 - [MINOR] http redirect: use proper call to return last response
5609 - [MEDIUM] http: wait for some flush of the response buffer before a new request
5610 - [MEDIUM] session: limit the number of analyser loops
5611
Willy Tarreau1f445892010-01-03 23:23:36 +010056122010/01/03 : 1.4-dev5
5613 - [MINOR] server tracking: don't care about the tracked server's mode
5614 - [MEDIUM] appsession: add "len", "prefix" and "mode" options
5615 - [MEDIUM] appsession: add the "request-learn" option
5616 - [BUG] Configuration parser bug when escaping characters
5617 - [MINOR] CSS & HTML fun
5618 - [MINOR] Collect & provide http response codes received from servers
5619 - [BUG] Fix silly typo: hspr_other -> hrsp_other
5620 - [MINOR] Add "a name" to stats page
5621 - [MINOR] add additional "a href"s to stats page
5622 - [MINOR] Collect & provide http response codes for frontends, fix backends
5623 - [DOC] some small spell fixes and unifications
5624 - [MEDIUM] Decrease server health based on http responses / events, version 3
5625 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int'
5626 - [BUG] config: fix erroneous check on cookie domain names, again
5627 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately
5628 - [DOC] trivial fix for man page
5629 - [MINOR] config: report all supported options for the "bind" keyword
5630 - [MINOR] tcp: add support for the defer_accept bind option
5631 - [MINOR] unix socket: report the socket path in case of bind error
5632 - [CONTRIB] halog: support searching by response time
5633 - [DOC] add a reminder about obsolete documents
5634 - [DOC] point to 1.4 doc, not 1.3
5635 - [DOC] option tcp-smart-connect was missing from index
5636 - [MINOR] http: detect connection: close earlier
5637 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions
5638 - [OPTIM] move some rarely used fields out of fdtab
5639 - [MEDIUM] fd: merge fd_list into fdtab
5640 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required
5641 - [MINOR] http: add new transaction flags for keep-alive and content-length
5642 - [MEDIUM] http request: parse connection, content-length and transfer-encoding
5643 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite
5644 - [MINOR] http request: simplify the test of no-data
5645 - [MEDIUM] http request: simplify POST length detection
5646 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header
5647 - [MAJOR] http: create the analyser which waits for a response
5648 - [MINOR] http: pre-set the persistent flags in the transaction
5649 - [MEDIUM] http response: check body length and set transaction flags
5650 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite
5651 - [MINOR] http: remove the last call to stream_int_return
5652 - [IMPORT] import ebtree v5.0 into directory ebtree/
5653 - [MEDIUM] build: switch ebtree users to use new ebtree version
5654 - [CLEANUP] ebtree: remove old unused files
5655 - [BUG] definitely fix regparm issues between haproxy core and ebtree
5656 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning
5657 - [BUILD] missing #ifndef in ebmbtree.h
5658 - [BUILD] missing #ifndef in ebsttree.h
5659 - [MINOR] tools: add hex2i() function to convert hex char to int
5660 - [MINOR] http: create new MSG_BODY sub-states
5661 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms
5662 - [DOC] option is "defer-accept", not "defer_accept"
5663 - [MINOR] http: keep pointer to beginning of data
5664 - [BUG] x-original-to: name was not set in default instance
5665 - [MINOR] http: detect tunnel mode and set it in the session
5666 - [BUG] config: fix error message when config file is not found
5667 - [BUG] config: fix wrong handling of too large argument count
5668 - [BUG] config: disable 'option httplog' on TCP proxies
5669 - [BUG] config: fix erroneous check on cookie domain names
5670 - [BUG] config: cookie domain was ignored in defaults sections
5671 - [MINOR] config: support passing multiple "domain" statements to cookies
5672 - [MINOR] ebtree: add functions to lookup non-null terminated strings
5673 - [MINOR] config: don't report error on all subsequent files on failure
5674 - [BUG] second fix for the printf format warning
5675 - [BUG] check_post: limit analysis to the buffer length
5676 - [MEDIUM] http: process request body in a specific analyser
5677 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post()
5678 - [MAJOR] http: completely process the "connection" header
5679 - [MINOR] http: only consider chunk encoding with HTTP/1.1
5680 - [MAJOR] buffers: automatically compute the maximum buffer length
5681 - [MINOR] http: move the http transaction init/cleanup code to proto_http
5682 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs
5683 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE
5684 - [MEDIUM] http: rework chunk-size parser
5685 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length
5686 - [MINOR] buffers: add buffer_ignore() to skip some bytes
5687 - [BUG] http: offsets are relative to the buffer, not to ->som
5688 - [MEDIUM] http: automatically re-aling request buffer
5689 - [BUG] http: body parsing must consider the start of message
5690 - [MINOR] new function stream_int_cond_close()
5691 - [MAJOR] http: implement body parser
5692 - [BUG] http: typos on several unlikely() around header insertion
5693 - [BUG] stream_sock: wrong max computation on recv
5694 - [MEDIUM] http: rework the buffer alignment logic
5695 - [BUG] buffers: wrong size calculation for displaced data
5696 - [MINOR] stream_sock: prepare for closing when all pending data are sent
5697 - [MEDIUM] http: add two more states for the closing period
5698 - [MEDIUM] http: properly handle "option forceclose"
5699 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close
5700 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER
5701 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts
5702 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors
5703 - [MINOR] config: option forceclose is valid in frontends too
5704 - [BUILD] halog: insufficient include path in makefile
5705 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore
5706 - [MEDIUM] http: make the parsers able to wait for a buffer flush
5707 - [MAJOR] http: add support for option http-server-close
5708 - [BUG] http: ensure we abort data transfer on write error
5709 - [BUG] last fix was overzealous and disabled server-close
5710 - [BUG] http: fix erroneous trailers size computation
5711 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data
5712 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending
5713 - [BUG] http: redirects were broken by chunk changes
5714 - [BUG] http: the request URI pointer is relative to the buffer
5715 - [OPTIM] http: don't immediately enable reading on request
5716 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length
5717 - [BUG] http: take care of errors, timeouts and aborts during the data phase
5718 - [MINOR] http: don't wait for sending requests to the server
5719 - [MINOR] http: make the conditional redirect support keep-alive
5720 - [BUG] http: fix cookie parser to support spaces and commas in values
5721 - [MINOR] config: some options were missing for "redirect"
5722 - [MINOR] redirect: add support for unconditional rules
5723 - [MINOR] config: centralize proxy struct initialization
5724 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements
5725 - [MEDIUM] config: remove the limitation of 10 config files
5726 - [CLEANUP] http: remove a remaining impossible condition
5727 - [OPTIM] http: optimize a bit the construct of the forward loops
5728
Willy Tarreauc82a9e52009-10-12 06:40:53 +020057292009/10/12 : 1.4-dev4
5730 - [DOC] add missing rate_lim and rate_max
5731 - [MAJOR] struct chunk rework
5732 - [MEDIUM] Health check reporting code rework + health logging, v3
5733 - [BUG] check if rise/fall has an argument and it is > 0
5734 - [MINOR] health checks logging unification
5735 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2
5736 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname.
5737 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html
5738 - [MINOR] Introduce include/types/counters.h
5739 - [CLEANUP] Move counters to dedicated structures
5740 - [MINOR] Add "clear counters" to clear statistics counters
5741 - [MEDIUM] Collect & provide separate statistics for sockets, v2
5742 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2
5743 - [MINOR] acl: don't report valid acls as potential mistakes
5744 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim()
5745 - [MINOR] Add chunk_htmlencode and chunk_asciiencode
5746 - [MINOR] Capture & display more data from health checks, v2
5747 - [BUG] task.c: don't assing last_timer to node-less entries
5748 - [BUG] http stats: large outputs sometimes got some parts chopped off
5749 - [MINOR] backend: export some functions to recount servers
5750 - [MINOR] backend: uninline some LB functions
5751 - [MINOR] include time.h from freq_ctr.h as is uses "now".
5752 - [CLEANUP] backend: move LB algos to individual files
5753 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions
5754 - [CLEANUP] proxy: move last lb-specific bits to their respective files
5755 - [MINOR] backend: separate declarations of LB algos from their lookup method
5756 - [MINOR] backend: reorganize the LB algorithm selection
5757 - [MEDIUM] backend: introduce the "static-rr" LB algorithm
5758 - [MINOR] report list of supported pollers with -vv
5759 - [DOC] log-health-checks is an option, not a directive
5760 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes
5761 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead
5762 - [MINOR] stats: strip CR and LF from the input command line
5763 - [BUG] don't refresh timeouts late after detected activity
5764 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk()
5765 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk()
5766 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk
5767 - [MEDIUM] stats: don't use s->ana_state anymore
5768 - [MINOR] remove now obsolete ana_state from the session struct
5769 - [MEDIUM] stats: make HTTP stats use an I/O handler
5770 - [MEDIUM] stream_int: adjust WAIT_ROOM handling
5771 - [BUG] config: look for ID conflicts in all sockets, not only last ones.
5772 - [MINOR] config: reference file and line with any listener/proxy/server declaration
5773 - [MINOR] config: report places of duplicate names or IDs
5774 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules
5775 - [MINOR] tools: add a new get_next_id() function
5776 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners
5777 - [OPTIM] counters: move some max numbers to the counters struct
5778 - [BUG] counters: fix segfault on missing counters for a listener
5779 - [MEDIUM] backend: implement consistent hashing variation
5780 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue
5781 - [MINOR] stats: use 'clear counters all' to clear all values
5782 - [MEDIUM] add access restrictions to the stats socket
5783 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length
5784 - [MINOR] proxy: provide function to retrieve backend/server pointers
5785 - [MINOR] add the "initial weight" to the server struct.
5786 - [MEDIUM] stats: add the "get weight" command to report a server's weight
5787 - [MEDIUM] stats: add the "set weight" command
5788 - [BUILD] add a 'make tags' target
5789 - [MINOR] stats: add support for numeric IDs in set weight/get weight
5790 - [MINOR] stats: use a dedicated state to output static data
5791 - [OPTIM] stats: check free space before trying to print
5792
Willy Tarreau9f389e02009-09-24 00:12:50 +020057932009/09/24 : 1.4-dev3
5794 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD
5795 - [MEDIUM] Collect & show information about last health check, v3
5796 - [MINOR] export the hostname variable so that all the code can access it
5797 - [MINOR] stats: add a new node-name setting
5798 - [MEDIUM] remove old experimental tcpsplice option
5799 - [BUILD] fix build for systems without SOL_TCP
5800 - [MEDIUM] move connection establishment from backend to the SI.
5801 - [MEDIUM] make the global stats socket part of a frontend
5802 - [MEDIUM] session: account per-listener connections
5803 - [MINOR] session: switch to established state if no connect function
5804 - [MEDIUM] make the unix stats sockets use the generic session handler
5805 - [CLEANUP] unix: remove uxst_process_session()
5806 - [CLEANUP] move remaining stats sockets code to dumpstats
5807 - [MINOR] move the initial task's nice value to the listener
5808 - [MINOR] cleanup set_session_backend by using pre-computed analysers
5809 - [MINOR] set s->srv_error according to the analysers
5810 - [MEDIUM] set rep->analysers from fe and be analysers
5811 - [MEDIUM] replace BUFSIZE with buf->size in computations
5812 - [MEDIUM] make it possible to change the buffer size in the configuration
5813 - [MEDIUM] report error on buffer writes larger than buffer size
5814 - [MEDIUM] stream_interface: add and use ->update function to resync
5815 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead
5816 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead
5817 - [BUG] tarpit did not work anymore
5818 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers
5819 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag
5820 - [MINOR] buffers: provide more functions to handle buffer data
5821 - [MEDIUM] buffers: provide new buffer_feed*() function
5822 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces
5823 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface
5824 - [BUG] buffer_forward() would not correctly consider data already scheduled
5825 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data
5826 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors
5827 - [MAJOR] http: add support for HTTP 1xx informational responses
5828 - [MINOR] buffers: inline buffer_si_putchar()
5829 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE
5830 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning
5831 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT
5832 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set
5833 - [MEDIUM] add support for infinite forwarding
5834 - [BUILD] stream_interface: fix conflicting declaration
5835 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY
5836 - [BUG] variable buffer size ignored at initialization time
5837 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL
5838 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds
5839 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag
5840 - [MINOR] stream_interface: add iohandler callback
5841 - [MINOR] stream_interface: add functions to support running as internal/external tasks
5842 - [MEDIUM] session: call iohandler for embedded tasks (applets)
5843 - [MINOR] add a ->private member to the stream_interface
5844 - [MEDIUM] stats: prepare the connection for closing before dumping
5845 - [MEDIUM] stats: replace the stats socket analyser with an SI applet
5846
Willy Tarreau68dcd252009-08-09 22:57:09 +020058472009/08/09 : 1.4-dev2
5848 - [BUG] task: fix possible crash when some timeouts are not configured
5849 - [BUG] log: option tcplog would log to global if no logger was defined
5850
Willy Tarreaub03d2982009-07-29 22:38:32 +020058512009/07/29 : 1.4-dev1
5852 - [MINOR] acl: add support for matching of RDP cookies
5853 - [MEDIUM] add support for RDP cookie load-balancing
5854 - [MEDIUM] add support for RDP cookie persistence
5855 - [MINOR] add a new CLF log format
5856 - [MINOR] startup: don't imply -q with -D
5857 - [BUG] ensure that we correctly re-start old process in case of error
5858 - [MEDIUM] add support for binding to source port ranges during connect
5859 - [MINOR] config: track "no option"/"option" changes
5860 - [MINOR] config: support resetting options do default values
5861 - [MEDIUM] implement option tcp-smart-accept at the frontend
5862 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux
5863 - [MEDIUM] implement tcp-smart-connect option at the backend
5864 - [MEDIUM] add support for TCP MSS adjustment for listeners
5865 - [MEDIUM] support setting a server weight to zero
5866 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time
5867 - [MAJOR] session: don't clear buffer status flags anymore
5868 - [MAJOR] session: only check for timeouts when they have just occurred.
5869 - [MAJOR] session: simplify buffer error handling
5870 - [MEDIUM] config: split parser and checker in two functions
5871 - [MEDIUM] config: support loading multiple configuration files
5872 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set
5873 - [MEDIUM] session: rework buffer analysis to permit permanent analysers
5874 - [MEDIUM] splice: set the capability on each stream_interface
5875 - [BUG] http: redirect rules were processed too early
5876 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define
5877 - [MEDIUM] http: split request waiter from request processor
5878 - [MEDIUM] session: tell analysers what bit they were called for
5879 - [MAJOR] http: complete splitting of the remaining stages
5880 - [MINOR] report in the proxies the requirements for ACLs
5881 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx
5882 - [MINOR] acl: add HTTP protocol detection (req_proto_http)
5883 - [MINOR] prepare callers of session_set_backend to handle errors
5884 - [BUG] default ACLs did not properly set the ->requires flag
5885 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend
5886 - [MINOR] ensure we can jump from swiching rules to http without data
5887 - [MINOR] http: take http request timeout from the backend
5888 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs
5889 - [BUILD] report commit date and not author's date as build date
5890 - [MINOR] acl: don't complain anymore when using L7 acls in TCP
5891 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing
5892 - [BUG] stream_sock: don't stop reading when the poller reports an error
5893 - [BUG] config: tcp-request content only accepts "if" or "unless"
5894 - [BUG] task: fix possible timer drift after update
5895 - [MINOR] apply tcp-smart-connect option for the checks too
5896 - [MINOR] stats: better displaying in MSIE
5897 - [MINOR] config: improve error reporting in global section
5898 - [MINOR] config: improve error reporting in listen sections
5899 - [MINOR] config: the "capture" keyword is not allowed in backends
5900 - [MINOR] config: improve error reporting when checking configuration
5901 - [BUILD] fix a minor build warning on AIX
5902 - [BUILD] use "git cmd" instead of "git-cmd"
5903 - [CLEANUP] report 2009 not 2008 in the copyright banner.
5904 - [MINOR] print usage on the stats sockets upon invalid commands
5905 - [MINOR] acl: detect and report potential mistakes in ACLs
5906 - [BUILD] fix incorrect printf arg count with tcp_splice
5907 - [BUG] fix random pauses on last segment of a series
5908 - [BUILD] add support for build under Cygwin
5909
Willy Tarreau79158882009-06-09 11:59:08 +020059102009/06/09 : 1.4-dev0
5911 - exact copy of 1.3.18
5912
Willy Tarreaubeb05ae2009-05-10 20:27:47 +020059132009/05/10 : 1.3.18
5914 - [MEDIUM] add support for "balance hdr(name)"
5915 - [CLEANUP] give a little bit more information in error message
5916 - [MINOR] add X-Original-To: header
5917 - [BUG] x-original-to: fix missing initialization to default value
5918 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file
5919 - [MINOR] improve reporting of misplaced acl/reqxxx rules
5920 - [MEDIUM] http: add options to ignore invalid header names
5921 - [MEDIUM] http: capture invalid requests/responses even if accepted
5922 - [BUILD] add format(printf) to printf-like functions
5923 - [MINOR] fix several printf formats and missing arguments
5924 - [BUG] stats: total and lbtot are unsigned
5925 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms
5926 - [CLEANUP] remove unused make option from haproxy.spec
5927 - [BUILD] make it possible to pass alternative arch at build time
5928 - [MINOR] switch all stat counters to 64-bit
5929 - [MEDIUM] ensure we don't recursively call pool_gc2()
5930 - [CRITICAL] uninitialized response field can sometimes cause crashes
5931 - [BUG] fix wrong pointer arithmetics in HTTP message captures
5932 - [MINOR] rhel init script : support the reload operation
5933 - [MINOR] add basic signal handling functions
5934 - [BUILD] add signal.o to all makefiles
5935 - [MEDIUM] call signal_process_queue from run_poll_loop
5936 - [MEDIUM] pollers: don't wait if a signal is pending
5937 - [MEDIUM] convert all signals to asynchronous signals
5938 - [BUG] O(1) pollers should check their FD before closing it
5939 - [MINOR] don't close stdio fds twice
5940 - [MINOR] add options dontlog-normal and log-separate-errors
5941 - [DOC] minor fixes and rearrangements
5942 - [BUG] fix parser crash on unconditional tcp content rules
5943 - [DOC] rearrange the configuration manual and add a summary
5944 - [MINOR] standard: provide a new 'my_strndup' function
5945 - [MINOR] implement per-logger log level limitation
5946 - [MINOR] compute the max of sessions/s on fe/be/srv
5947 - [MINOR] stats: report max sessions/s and limit in CSV export
5948 - [MINOR] stats: report max sessions/s and limit in HTML stats
5949 - [MINOR] stats/html: use the arial font before helvetica
5950
Willy Tarreauf459b422009-03-29 15:26:57 +020059512009/03/29 : 1.3.17
5952 - Update specfile to build for v2.6 kernel.
5953 - [BUG] reset the stream_interface connect timeout upon connect or error
5954 - [BUG] reject unix accepts when connection limit is reached
5955 - [MINOR] show sess: report number of calls to each task
5956 - [BUG] don't call epoll_ctl() on closed sockets
5957 - [BUG] stream_sock: disable I/O on fds reporting an error
5958 - [MINOR] sepoll: don't count two events on the same FD.
5959 - [MINOR] show sess: report a lot more information about sessions
5960 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts
5961 - [BUG] don't set an expiration date directly from now_ms
5962 - [MINOR] implement ulltoh() to write HTML-formatted numbers
5963 - [MINOR] stats/html: group digits by 3 to clarify numbers
5964 - [BUILD] remove haproxy-small.spec
5965 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND
5966
Willy Tarreau8019ffa2009-03-22 23:46:12 +010059672009/03/22 : 1.3.16
5968 - [BUILD] Fixed Makefile for linking pcre
5969 - [CONTRIB] selinux policy for haproxy
5970 - [MINOR] show errors: encode backslash as well as non-ascii characters
5971 - [MINOR] cfgparse: some cleanups in the consistency checks
5972 - [MINOR] cfgparse: set backends to "balance roundrobin" by default
5973 - [MINOR] tcp-inspect: permit the use of no-delay inspection
5974 - [MEDIUM] reverse internal proxy declaration order to match configuration
5975 - [CLEANUP] config: catch and report some possibly wrong rule ordering
5976 - [BUG] connect timeout is in the stream interface, not the buffer
5977 - [BUG] session: errors were not reported in termination flags in TCP mode
5978 - [MINOR] tcp_request: let the caller take care of errors and timeouts
5979 - [CLEANUP] http: remove some commented out obsolete code in process_response
5980 - [MINOR] update ebtree to version 4.1
5981 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1
5982 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present
5983 - [BUG] scheduler: fix improper handling of duplicates __task_queue()
5984 - [MINOR] sched: permit a task to stay up between calls
5985 - [MINOR] task: keep a task count and clean up task creators
5986 - [MINOR] stats: report number of tasks (active and running)
5987 - [BUG] server check intervals must not be null
5988 - [OPTIM] stream_sock: don't retry to read after a large read
5989 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates
5990 - [MEDIUM] session: don't resync FSMs on non-interesting changes
5991 - [BUG] check for global.maxconn before doing accept()
5992 - [OPTIM] sepoll: do not re-check whole list upon accepts
5993
Willy Tarreau8185ced2009-03-09 22:45:53 +010059942009/03/09 : 1.3.16-rc2
5995 - [BUG] stream_sock: write timeout must be updated when forwarding !
5996
Willy Tarreauff63b432009-03-09 01:03:42 +010059972009/03/09 : 1.3.16-rc1
5998 - appsessions: cleanup DEBUG_HASH and initialize request_counter
5999 - [MINOR] acl: add new keyword "connslots"
6000 - [MINOR] cfgparse: fix off-by 2 in error message size
6001 - [BUILD] fix build with gcc 4.3
6002 - [BUILD] fix MANDIR default location to match documentation
6003 - [TESTS] add a debug patch to help trigger the stats bug
6004 - [BUG] Flush buffers also where there are exactly 0 bytes left
6005 - [MINOR] Allow to specify a domain for a cookie
6006 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain)
6007 - [MEDIUM] Fix memory freeing at exit
6008 - [MEDIUM] Fix memory freeing at exit, part 2
6009 - [BUG] Fix listen & more of 2 couples <ip>:<port>
6010 - [DOC] remove buggy comment for use_backend
6011 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n)
6012 - [MEDIUM] add support for URI hash depth and length limits
6013 - [MINOR] permit renaming of x-forwarded-for header
6014 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface
6015 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined
6016 - [MEDIUM] upgrade to ebtree v4.0
6017 - [DOC] update the README file with new build options
6018 - [MEDIUM] reduce risk of event starvation in ev_sepoll
6019 - [MEDIUM] detect streaming buffers and tag them as such
6020 - [MEDIUM] add support for conditional HTTP redirection
6021 - [BUILD] make install should depend on haproxy not "all"
6022 - [DEBUG] add a TRACE macro to facilitate runtime data extraction
6023 - [BUG] event pollers must not wait if a task exists in the run queue
6024 - [BUG] queue management: wake oldest request in queues
6025 - [BUG] log: reported queue position was offed-by-one
6026 - [BUG] fix the dequeuing logic to ensure that all requests get served
6027 - [DOC] documentation for the "retries" parameter was missing.
6028 - [MEDIUM] implement a monotonic internal clock
6029 - [MEDIUM] further improve monotonic clock by check forward jumps
6030 - [OPTIM] add branch prediction hints in list manipulations
6031 - [MAJOR] replace ultree with ebtree in wait-queues
6032 - [BUG] we could segfault during exit while freeing uri_auths
6033 - [BUG] wqueue: perform proper timeout comparisons with wrapping values
6034 - [MINOR] introduce now_ms, the current date in milliseconds
6035 - [BUG] disable buffer read timeout when reading stats
6036 - [MEDIUM] rework the wait queue mechanism
6037 - [BUILD] change declaration of base64tab to fix build with Intel C++
6038 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup()
6039 - [MAJOR] use an ebtree instead of a list for the run queue
6040 - [MEDIUM] introduce task->nice and boot access to statistics
6041 - [OPTIM] task_queue: assume most consecutive timers are equal
6042 - [BUILD] silent a warning in unlikely() with gcc 4.x
6043 - [MAJOR] convert all expiration timers from timeval to ticks
6044 - [BUG] use_backend would not correctly consider "unless"
6045 - [TESTS] added test-acl.cfg to test some ACL combinations
6046 - [MEDIUM] add support for configuration keyword registration
6047 - [MEDIUM] modularize the global "stats" keyword configuration parser
6048 - [MINOR] cfgparse: add support for warnings in external functions
6049 - [MEDIUM] modularize the "timeout" keyword configuration parser
6050 - [MAJOR] implement tcp request content inspection
6051 - [MINOR] acl: add a new parsing function: parse_dotted_ver
6052 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version
6053 - [CLEANUP] remove unused include/types/client.h
6054 - [CLEANUP] remove many #include <types/xxx> from C files
6055 - [CLEANUP] remove dependency on obsolete INTBITS macro
6056 - [DOC] document the new "tcp-request" keyword and associated ACLs
6057 - [MINOR] acl: add REQ_CONTENT to the list of default acls
6058 - [MEDIUM] acl: permit fetch() functions to set the result themselves
6059 - [MEDIUM] acl: get rid of dummy values in always_true/always_false
6060 - [MINOR] acl: add the "wait_end" acl verb
6061 - [MEDIUM] acl: enforce ACL type checking
6062 - [MEDIUM] acl: set types on all currently known ACL verbs
6063 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings
6064 - [CLEANUP] remove 65 useless NULL checks before free
6065 - [MEDIUM] memory: update pool_free2() to support NULL pointers
6066 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns
6067 - [MEDIUM] process_srv: rely on buffer flags for client shutdown
6068 - [MEDIUM] process_srv: don't rely at all on client state
6069 - [MEDIUM] process_cli: don't rely at all on server state
6070 - [BUG] fix segfault with url_param + check_post
6071 - [BUG] server timeout was not considered in some circumstances
6072 - [BUG] client timeout incorrectly rearmed while waiting for server
6073 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1)
6074 - [MAJOR] get rid of SV_STANALYZE (step 2)
6075 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding
6076 - [MAJOR] completely separate HTTP and TCP states on the request path
6077 - [BUG] fix recently introduced loop when client closes early
6078 - [MAJOR] get rid of the SV_STHEADERS state
6079 - [MAJOR] better separation of response processing and server state
6080 - [MAJOR] clearly separate HTTP response processing from TCP server state
6081 - [MEDIUM] remove unused references to {CL|SV}_STSHUT*
6082 - [MINOR] term_trace: add better instrumentations to trace the code
6083 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list
6084 - [BUG] process_response must not enable the read FD
6085 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue
6086 - [BUG] process_response: do not touch srv_state
6087 - [BUG] maintain_proxies must not disable backends
6088 - [CLEANUP] get rid of BF_SHUT*_PENDING
6089 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l
6090 - [MAJOR] process_session: rely only on buffer flags
6091 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout
6092 - [MEDIUM] centralize buffer timeout checks at the top of process_session
6093 - [MINOR] ensure the termination flags are set by process_xxx
6094 - [MEDIUM] session: move the analysis bit field to the buffer
6095 - [OPTIM] process_cli/process_srv: reduce the number of tests
6096 - [BUG] regparm is broken on gcc < 3
6097 - [BUILD] fix warning in proto_tcp.c with gcc >= 4
6098 - [MEDIUM] merge inspect_exp and txn->exp into request buffer
6099 - [BUG] process_cli/process_srv: don't call shutdown when already done
6100 - [BUG] process_request: HTTP body analysis must return zero if missing data
6101 - [TESTS] test-fsm: 22 regression tests for state machines
6102 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section
6103 - [BUG] fix harmless but wrong fd insertion sequence
6104 - [MEDIUM] make it possible for analysers to follow the whole session
6105 - [MAJOR] rework of the server FSM
6106 - [OPTIM] remove useless fd_set(read) upon shutdown(write)
6107 - [MEDIUM] massive cleanup of process_srv()
6108 - [MEDIUM] second level of code cleanup for process_srv_data
6109 - [MEDIUM] third cleanup and optimization of process_srv_data()
6110 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts
6111 - [MEDIUM] stream_sock_process_data moved to stream_sock.c
6112 - [MAJOR] make the client side use stream_sock_process_data()
6113 - [MEDIUM] split stream_sock_process_data
6114 - [OPTIM] stream_sock_read must check for null-reads more often
6115 - [MINOR] only call flow analysers when their read side is connected.
6116 - [MEDIUM] reintroduce BF_HIJACK with produce_content
6117 - [MINOR] re-arrange buffer flags and rename some of them
6118 - [MINOR] do not check for BF_SHUTR when computing write timeout
6119 - [OPTIM] ev_sepoll: detect newly created FDs and check them once
6120 - [OPTIM] reduce the number of calls to task_wakeup()
6121 - [OPTIM] force inlining of large functions with gcc >= 3
6122 - [MEDIUM] indicate a reason for a task wakeup
6123 - [MINOR] change type of fdtab[]->owner to void*
6124 - [MAJOR] make stream sockets aware of the stream interface
6125 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers
6126 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT
6127 - [MEDIUM] process_session: make use of the new buffer flags
6128 - [CLEANUP] process_session: move debug outputs out of the critical loop
6129 - [MEDIUM] move QUEUE and TAR timers to stream interfaces
6130 - [OPTIM] add compiler hints in tick_is_expired()
6131 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired.
6132 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts()
6133 - [MINOR] add an expiration flag to the stream_sock_interface
6134 - [MAJOR] migrate the connection logic to stream interface
6135 - [MAJOR] add a connection error state to the stream_interface
6136 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions
6137 - [MEDIUM] continue layering cleanups.
6138 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO
6139 - [MEDIUM] remove stream_sock_update_data()
6140 - [MINOR] maintain a global session list in order to ease debugging
6141 - [BUG] shutw must imply close during a connect
6142 - [MEDIUM] process shutw during connection attempt
6143 - [MEDIUM] make the stream interface control the SHUT{R,W} bits
6144 - [MAJOR] complete layer4/7 separation
6145 - [CLEANUP] move the session-related functions to session.c
6146 - [MINOR] call session->do_log() for logging
6147 - [MINOR] replace the ambiguous client_return function by stream_int_return
6148 - [MINOR] replace client_retnclose() with stream_int_retnclose()
6149 - [MINOR] replace srv_close_with_err() with http_server_error()
6150 - [MEDIUM] make the http server error function a pointer in the session
6151 - [CLEANUP] session.c: removed some migration left-overs in sess_establish()
6152 - [MINOR] stream_sock_data_finish() should not expose fd
6153 - [MEDIUM] extract TCP request processing from HTTP
6154 - [MEDIUM] extract the HTTP tarpit code from process_request().
6155 - [MEDIUM] move the HTTP request body analyser out of process_request().
6156 - [MEDIUM] rename process_request to http_process_request
6157 - [BUG] fix forgotten server session counter
6158 - [MINOR] declare process_session in session.h, not proto_http.h
6159 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept()
6160 - [MINOR] add an analyser code for UNIX stats request
6161 - [MINOR] pre-set analyser flags on the listener at registration time
6162 - [BUG] do not forward close from cons to prod with analysers
6163 - [MEDIUM] ensure that sock->shutw() also closes read for init states
6164 - [MINOR] add an analyser state in struct session
6165 - [MAJOR] make unix sockets work again with stats
6166 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session
6167 - [MINOR] move the listener reference from fd to session
6168 - [MEDIUM] reference the current hijack function in the buffer itself
6169 - [MINOR] slightly rebalance stats_dump_{raw,http}
6170 - [MINOR] add a new back-reference type : struct bref
6171 - [MINOR] add back-references to sessions for later use by a dumper.
6172 - [MEDIUM] add support for "show sess" in unix stats socket
6173 - [BUG] do not release the connection slot during a retry
6174 - [BUG] dynamic connection throttling could return a max of zero conns
6175 - [BUG] do not try to pause backends during reload
6176 - [BUG] ensure that listeners from disabled proxies are correctly unbound.
6177 - [BUG] acl-related keywords are not allowed in defaults sections
6178 - [BUG] cookie capture is declared in the frontend but checked on the backend
6179 - [BUG] critical errors should be reported even in daemon mode
6180 - [MINOR] redirect: add support for the "drop-query" option
6181 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie"
6182 - [MINOR] redirect: in prefix mode a "/" means not to change the URI
6183 - [BUG] do not dequeue requests on a dead server
6184 - [BUG] do not dequeue the backend's pending connections on a dead server
6185 - [MINOR] stats: indicate if a task is running in "show sess"
6186 - [BUG] check timeout must not be changed if timeout.check is not set
6187 - [BUG] "option transparent" is for backend, not frontend !
6188 - [MINOR] transfer errors were not reported anymore in data phase
6189 - [MEDIUM] add a send limit to a buffer
6190 - [MEDIUM] don't report buffer timeout when there is I/O activity
6191 - [MEDIUM] indicate when we don't care about read timeout
6192 - [MINOR] add flags to indicate when a stream interface is waiting for space/data
6193 - [MEDIUM] enable inter-stream_interface wakeup calls
6194 - [MAJOR] implement autonomous inter-socket forwarding
6195 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support
6196 - [MEDIUM] stream_sock: factor out the return path in case of no-writes
6197 - [MEDIUM] i/o: rework ->to_forward and ->send_max
6198 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read
6199 - [OPTIM] buffer: replace rlim by max_len
6200 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop
6201 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y)
6202 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop
6203 - [MEDIUM] split stream_sock_write() into callback and core functions
6204 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending
6205 - [MINOR] stream_sock: fix a few wrong empty calculations
6206 - [MEDIUM] stream_sock: try to send pending data on chk_snd()
6207 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes
6208 - [MEDIUM] splice: add configuration options and set global.maxpipes
6209 - [MINOR] introduce structures required to support Linux kernel splicing
6210 - [MEDIUM] add definitions for Linux kernel splicing
6211 - [MAJOR] complete support for linux 2.6 kernel splicing
6212 - [BUG] reserve some pipes for backends with splice enabled
6213 - [MEDIUM] splice: add hints to support older buggy kernels
6214 - [MEDIUM] introduce pipe pools
6215 - [MEDIUM] splice: make use of pipe pools
6216 - [STATS] report pipe usage in the statistics
6217 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified
6218 - [BUILD] fix snapshot date extraction with negative timezones
6219 - [MEDIUM] move global tuning options to the global structure
6220 - [MEDIUM] splice: add the global "nosplice" option
6221 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6
6222 - [BUG] we must not exit if protocol binding only returns a warning
6223 - [MINOR] add support for bind interface name
6224 - [BUG] inform the user when root is expected but not set
6225 - [MEDIUM] add support for source interface binding
6226 - [MEDIUM] add support for source interface binding at the server level
6227 - [MEDIUM] implement bind-process to limit service presence by process
6228 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response}
6229 - [DOC] filled the logging section of the configuration manual
6230 - [DOC] document HTTP status codes
6231 - [DOC] document a few missing info about errorfile
6232 - [BUG] fix random memory corruption using "show sess"
6233 - [BUG] fix unix socket processing of interrupted output
6234 - [DOC] add diagrams of queuing and future ACL design
6235 - [BUILD] proto_http did not build on gcc-2.95
6236 - [BUG] the "source" keyword must first clear optional settings
6237 - [BUG] global.tune.maxaccept must be limited even in mono-process mode
6238 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char
6239 - [MEDIUM] store a complete dump of request and response errors in proxies
6240 - [MEDIUM] implement error dump on unix socket with "show errors"
6241 - [DOC] document "show errors"
6242 - [MINOR] errors dump must use user-visible date, not internal date.
6243 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second
6244 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second.
6245 - [MEDIUM] measure and report session rate on frontend, backends and servers
6246 - [BUG] the "connslots" keyword was matched as "connlots"
6247 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate
6248 - [MEDIUM] implement "rate-limit sessions" for the frontend
6249 - [BUG] interface binding: length must include the trailing zero
6250 - [BUG] typo in timeout error reporting : report *res and not *err
6251 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready
6252 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption
6253 - [BUG] switch server-side stream interface to close in case of abort
6254 - [CLEANUP] remove last references to term_trace
6255 - [OPTIM] freq_ctr: do not rotate the counters when reading
6256 - [BUG] disable any analysers for monitoring requests
6257 - [BUG] rate-limit in defaults section was ignored
6258 - [BUG] task: fix handling of duplicate keys
6259 - [OPTIM] task: don't unlink a task from a wait queue when waking it up
6260 - [OPTIM] displace tasks in the wait queue only if absolutely needed
6261 - [MEDIUM] minor update to the task api: let the scheduler queue itself
6262 - [BUG] event_accept() must always wake the task up, even in health mode
6263 - [CLEANUP] task: distinguish between clock ticks and timers
6264 - [OPTIM] task: reduce the number of calls to task_queue()
6265 - [OPTIM] do not re-check req buffer when only response has changed
6266 - [CLEANUP] don't enable kernel splicing when socket is closed
6267 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase
6268 - [MINOR] buffers: implement buffer_flush()
6269 - [MEDIUM] rearrange forwarding condition to enable splice during analysis
6270 - [BUILD] build fixes for Solaris
6271 - [BUILD] proto_http did not build on gcc-2.95 (again)
6272 - [CONTRIB] halog: fast log parser for haproxy
6273 - [CONTRIB] halog: faster fgets() and add support for percentile reporting
6274
Willy Tarreau7b4c5ae2008-04-19 21:06:14 +020062752008/04/19 : 1.3.15
6276 - [BUILD] Added support for 'make install'
6277 - [BUILD] Added 'install-man' make target for installing the man page
6278 - [BUILD] Added 'install-bin' make target
6279 - [BUILD] Added 'install-doc' make target
6280 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets
6281 - [BUILD] Changed 'install' target to install the binaries first
6282 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)'
6283 - [MEDIUM]: Inversion for options
6284 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup
6285 - [BUG]: Restore clearing t->logs.bytes
6286 - [MEDIUM]: rework checks handling
6287 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects
6288 - [MEDIUM] Implement "track [<backend>/]<server>"
6289 - [MINOR] Implement persistent id for proxies and servers
6290 - [BUG] Don't increment server connections too much + fix retries
6291 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3
6292 - [MAJOR] proto_uxst rework -> SNMP support
6293 - [BUG] appsession lookup in URL does not work
6294 - [BUG] transparent proxy address was ignored in backend
6295 - [BUG] hot reconfiguration failed because of a wrong error check
6296 - [DOC] big update to the configuration manual
6297 - [DOC] large update to the configuration manual
6298 - [DOC] document more options
6299 - [BUILD] major rework of the GNU Makefile
6300 - [STATS] add support for "show info" on the unix socket
6301 - [DOC] document options forwardfor to logasap
6302 - [MINOR] add support for the "backlog" parameter
6303 - [OPTIM] introduce global parameter "tune.maxaccept"
6304 - [MEDIUM] introduce "timeout http-request" in frontends
6305 - [MINOR] tarpit timeout is also allowed in backends
6306 - [BUG] increment server connections for each connect()
6307 - [MEDIUM] add a turn-around state of one second after a connection failure
6308 - [BUG] fix typo in redispatched connection
6309 - [DOC] document options nolinger to ssl-hello-chk
6310 - [DOC] added documentation for "option tcplog" to "use_backend"
6311 - [BUG] connect_server: server might not exist when sending error report
6312 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY)
6313 - [MEDIUM] add non-local bind to connect() on Linux
6314 - [MINOR] add transparent proxy support for balabit's Tproxy v4
6315 - [BUG] use backend's source and not server's source with tproxy
6316 - [BUG] fix overlapping server flags
6317 - [MEDIUM] fix server health checks source address selection
6318 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY
6319 - [DOC] added "server", "source" and "stats" keywords
6320 - [DOC] all server parameters have been documented
6321 - [DOC] document all req* and rsp* keywords.
6322 - [DOC] added documentation about HTTP header manipulations
6323 - [BUG] log response byte count, not request
6324 - [BUILD] code did not build in full debug mode
6325 - [BUG] fix truncated responses with sepoll
6326 - [MINOR] use s->frt_addr as the server's address in transparent proxy
6327 - [MINOR] fix configuration hint about timeouts
6328 - [DOC] minor cleanup of the doc and notice to contributors
6329 - [MINOR] report correct section type for unknown keywords.
6330 - [BUILD] update MacOS Makefile to build on newer versions
6331 - [DOC] fix erroneous "useallbackups" option in the doc
6332 - [DOC] applied small fixes from early readers
6333 - [MINOR] add configuration support for "redir" server keyword
6334 - [MEDIUM] completely implement the server redirection method
6335 - [TESTS] add a test case for the server redirection mechanism
6336 - [DOC] add a configuration entry for "server ... redir <prefix>"
6337 - [BUILD] backend.c and checks.c did not build without tproxy !
6338 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !"
6339 - [BUILD] backend.c and checks.c did not build without tproxy !
6340 - [OPTIM] used unsigned ints for HTTP state and message offsets
6341 - [OPTIM] GCC4's builtin_expect() is suboptimal
6342 - [BUG] failed conns were sometimes incremented in the frontend!
6343 - [BUG] timeout.check was not pre-set to eternity
6344 - [TESTS] add test-pollers.cfg to easily report pollers in use
6345 - [BUG] do not apply timeout.connect in checks if unset
6346 - [BUILD] ensure that makefile understands USE_DLMALLOC=1
6347 - [MINOR] silent gcc for a wrong warning
6348 - [CLEANUP] update .gitignore to ignore more temporary files
6349 - [CLEANUP] report dlmalloc's source path only if explictly specified
6350 - [BUG] str2sun could leak a small buffer in case of error during parsing
6351 - [BUG] option allbackups was not working anymore in roundrobin mode
6352 - [MAJOR] implementation of the "leastconn" load balancing algorithm
6353 - [BUILD] ensure that users don't build without setting the target anymore.
6354 - [DOC] document the leastconn LB algo
6355 - [MEDIUM] fix stats socket limitation to 16 kB
6356 - [DOC] fix unescaped space in httpchk example.
6357 - [BUG] fix double-decrement of server connections
6358 - [TESTS] add a test case for port mapping
6359 - [TESTS] add a benchmark for integer hashing
6360 - [TESTS] add new methods in ip-hash test file
6361 - [MAJOR] implement parameter hashing for POST requests
6362
Willy Tarreaue5b77e82007-12-06 01:25:44 +010063632007/12/06 : 1.3.14
6364 - New option http_proxy (Alexandre Cassen)
6365 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov)
6366 - Check for duplicated conflicting proxies (Krzysztof Oledzki)
6367 - stats: report server and backend cumulated downtime (Krzysztof Oledzki)
6368 - use backends only with use_backend directive (Krzysztof Oledzki)
6369 - Handle long lines properly (Krzysztof Oledzki)
6370 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki)
6371 - continous statistics (Krzysztof Oledzki)
6372 - add support for logging via a UNIX socket (Robert Tsai)
6373 - fix error checking in strl2ic/strl2uic()
6374 - fix calls to localtime()
6375 - provide easier-to-use ultoa_* functions
6376 - provide easy-to-use limit_r and LIM2A* macros
6377 - add a simple test for the status page
6378 - move error codes to common/errors.h
6379 - silent warning about LIST_* being redefined on OpenBSD
6380 - add socket address length to the protocols
6381 - group PR_O_BALANCE_* bits into a checkable value
6382 - externalize the "balance" option parser to backend.c
6383 - introduce the "url_param" balance method
6384 - make default_backend work in TCP mode too
6385 - disable warning about localtime_r on Solaris
6386 - adjust error messages about conflicting proxies
6387 - avoid calling some layer7 functions if not needed
6388 - simplify error path in event_accept()
6389 - add an options field to the listeners
6390 - added a new state to listeners
6391 - unbind_listener() must use fd_delete() and not close()
6392 - add a generic unbind_listener() primitive
6393 - add a generic delete_listener() primitive
6394 - add a generic unbind_all_listeners() primitive
6395 - create proto_tcp and move initialization of proxy listeners
6396 - stats: report numerical process ID, proxy ID and server ID
6397 - relative_pid was not initialized
6398 - missing header names in raw stats output
6399 - fix missing parenthesis in check_response_for_cacheability
6400 - small optimization on session_process_counters()
6401 - merge ebtree version 3.0
6402 - make ebtree headers multiple-include compatible
6403 - ebtree: include config.h for REGPRM*
6404 - differentiate between generic LB params and map-specific ones
6405 - add a weight divisor to the struct proxy
6406 - implement the Fast Weighted Round Robin (FWRR) algo
6407 - include filltab25.c to experiment on FWRR for dynamic weights
6408 - merge test-fwrr.cfg to validate dynamic weights
6409 - move the load balancing algorithm to be->lbprm.algo
6410 - change server check result to a bit field
6411 - implement "http-check disable-on-404" for graceful shutdown
6412 - secure the calling conditions of ->set_server_status_{up,down}
6413 - report disabled servers as "NOLB" when they are still UP
6414 - document the "http-check disable-on-404" option
6415 - http-check disable-on-404 is not limited to HTTP mode
6416 - add a test file for disable-on-404
6417 - use distinct bits per load-balancing algorithm type
6418 - implement the slowstart parameter for servers
6419 - document the server's slowstart parameter
6420 - stats: report the server warm up status in a "throttle" column
6421 - fix 2 minor issues on AIX
6422 - add the "nbsrv" ACL verb
6423 - add the "fail" condition to monitor requests
6424 - remove a warning from gcc due to htons() in standard.c
6425 - fwrr: ensure that we never overflow in placements
6426 - store the build options to report with -vv
6427 - fix the status return of the init script (R.I. Pienaar)
6428 - stats: real time monitoring script for unix socket (Prizee)
6429 - document "nbsrv" and "monitor fail"
6430 - restrict the set of allowed characters for identifiers
6431 - implement a time parsing function
6432 - add support for time units in the configuration
6433 - add a bit of documentation about timers
6434 - introduce separation between contimeout, and tarpit + queue
6435 - introduce the "timeout" keyword
6436 - grouped all timeouts in one structure
6437 - slowstart is in ms, not seconds
6438 - slowstart: ensure we don't start with a null weight
6439 - report the number of times each server was selected
6440 - fix build on AIX due to recent log changes
6441 - fix build on Solaris due to recent log changes
6442
Willy Tarreaue855f422007-10-18 22:38:22 +020064432007/10/18 : 1.3.13
6444 - replace the code under O'Reilly license (Arnaud Cornet)
6445 - add a small man page (Arnaud Cornet)
6446 - stats: report haproxy's version by default (Krzysztof Oledzki)
6447 - stats: count server retries and redispatches (Krzysztof Oledzki)
6448 - core: added easy support for Doug Lea's malloc (dlmalloc)
6449 - core: fade out memory usage when stopping proxies
6450 - core: moved the sockaddr pointer to the fdtab structure
6451 - core: add generic protocol support
6452 - core: implement client-side support for PF_UNIX sockets
6453 - stats: implement the CSV output
6454 - stats: add a link to the CSV export HTML page
6455 - stats: implement the statistics output on a unix socket
6456 - config: introduce the "stats" keyword in global section
6457 - build: centralize version and date into one file for each
6458 - tests: added a new hash algorithm
6459
64602007/10/18 : 1.3.12.3
6461 - add the "nolinger" option to disable data lingering (Alexandre Cassen)
6462 - fix double-free during clean exit (Krzysztof Oledzki)
6463 - prevent the system from sending an RST when closing health-checks
6464 (Krzysztof Oledzki)
6465 - do not add a cache-control header when on non-cacheable responses
6466 (Krzysztof Oledzki)
6467 - spread health checks even more (Krzysztof Oledzki)
6468 - stats: scope "." must match the backend and not the frontend
6469 - fixed call to chroot() during startup
6470 - fix wrong timeout computation in event_accept()
6471 - remove condition for exit() under fork() failure
6472
64732007/09/20 : 1.3.12.2
6474 - fix configuration sanity checks for TCP listeners
6475 - set the log socket receive window to zero bytes
6476 - pre-initialize timeouts to infinity, not zero
6477 - fix the SIGHUP message not to alert on server-less proxies
6478 - timeouts and retries could be ignored when switching backend
6479 - added a file to check that "retries" works.
6480 - O'Reilly has clarified its license
6481
64822007/09/05 : 1.3.12.1
6483 - spec I/O: fix allocations of spec entries for an FD
6484 - ensure we never overflow in chunk_printf()
6485 - improve behaviour with large number of servers per proxy
6486 - add support for "stats refresh <interval>"
6487 - stats page: added links for 'refresh' and 'hide down'
6488 - fix backend's weight in the stats page.
6489 - the "stats" keyword is not allowed in a pure frontend.
6490 - provide a test configuration file for stats and checks
6491
Willy Tarreaub21152b2007-06-17 23:41:40 +020064922007/06/17 : 1.3.12
6493 - fix segfault at exit when using captures
6494 - bug: negation in ACL conds was not cleared between terms
6495 - errorfile: use a local file to feed error messages
6496 - acl: support '-i' to ignore case when matching
6497 - acl: smarter integer comparison with operators eq,lt,gt,le,ge
6498 - acl: support maching on 'path' component
6499 - acl: implement matching on header values
6500 - acl: distinguish between request and response headers
6501 - acl: permit to return any header when no name specified
6502 - acl: provide default ACLs
6503 - added the 'use_backend' keyword for full content-switching
6504 - acl: specify the direction during fetches
6505 - acl: provide the argument length for fetch functions
6506 - acl: provide a reference to the expr to fetch()
6507 - improve memory freeing upon exit
6508 - str2net() must not change the const char *
6509 - shut warnings 'is*' macros from ctype.h on solaris
6510
Willy Tarreaua3503e02007-06-03 17:27:07 +020065112007/06/03 : 1.3.11.4
6512 - do not re-arm read timeout in SHUTR state !
6513 - optimize I/O by detecting system starvation
6514 - the epoll FD must not be shared between processes
6515 - limit the number of events returned by *poll*
6516
Willy Tarreau3c6fc072007-05-14 14:40:25 +020065172007/05/14 : 1.3.11.3
6518 - pre-initialize timeouts with tv_eternity during parsing
6519
Willy Tarreaufc273c22007-05-14 03:42:47 +020065202007/05/14 : 1.3.11.2
6521 - fixed broken health-checks since switch to timeval
6522
Willy Tarreau3c5340c2007-05-14 03:18:43 +020065232007/05/14 : 1.3.11.1
6524 - fixed ev_kqueue which was forgotten during the switch to timeval
6525 - allowed null timeouts for past events in select
6526
Willy Tarreau544eb402007-05-14 02:42:33 +020065272007/05/14 : 1.3.11
6528 - fixed ev_sepoll again by rewriting the state machine
6529 - switched all timeouts to timevals instead of milliseconds
6530 - improved memory management using mempools v2.
6531 - several minor optimizations
6532
Willy Tarreau9ca931f2007-05-10 07:51:17 +020065332007/05/09 : 1.3.10.2
6534 - fixed build on OpenBSD (missing types.h)
6535
Willy Tarreau13398d32007-05-09 22:58:28 +020065362007/05/09 : 1.3.10.1
6537 - fixed sepoll transition matrix (two states were missing)
6538
Willy Tarreau61beedf2007-05-09 01:44:58 +020065392007/05/08 : 1.3.10
6540 - several fixes in ev_sepoll
6541 - fixed some expiration dates on some tasks
6542 - fixed a bug in connection establishment detection due to speculative I/O
6543 - fixed rare bug occuring on TCP with early close (reported by Andy Smith)
6544 - implemented URI hashing algorithm (Guillaume Dallaire)
6545 - implemented SMTP health checks (Peter van Dijk)
6546 - replaced the rbtree with ul2tree from old scheduler project
6547 - new framework for generic ACL support
6548 - added the 'acl' and 'block' keywords to the config language
6549 - added several ACL criteria and matches (IP, port, URI, ...)
6550 - cleaned up and better modularization for some time functions
6551 - fixed list macros
6552 - fixed useless memory allocation in str2net()
6553 - store the original destination address in the session
6554
Willy Tarreau6e0433f2007-04-16 01:18:12 +020065552007/04/15 : 1.3.9
6556 - modularized the polling mechanisms and use function pointers instead
6557 of macros at many places
6558 - implemented support for FreeBSD's kqueue() polling mechanism
6559 - fixed a warning on OpenBSD : MIN/MAX redefined
6560 - change socket registration order at startup to accomodate kqueue.
6561 - several makefile cleanups to support old shells
6562 - fix build with limits.h once for all
6563 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead.
6564 - fdtab now holds the results of polling
6565 - implemented support for speculative I/O processing with epoll()
6566 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost
6567 - auto-registering of pollers at load time
6568
Willy Tarreau42c76592007-04-03 20:30:13 +020065692007/04/03 : 1.3.8.2
6570 - rewriting either the status line or request line could crash the
6571 process due to a pointer which ought to be reset before parsing.
6572 - rewriting the status line in the response did not work, it caused
6573 a 502 Bad Gateway due to an erroneous state during parsing
6574
Willy Tarreauef6d7612007-04-01 11:06:22 +020065752007/04/01 : 1.3.8.1
6576 - fix reqadd when no option httpclose is used.
6577 - removed now unused fiprm and beprm from proxies
6578 - split logs into two versions : TCP and HTTP
6579 - added some docs about http headers storage and acls
6580 - added a VIM script for syntax color highlighting (Bruno Michel)
6581
Willy Tarreaud661cc02007-03-26 00:24:56 +020065822007/03/25 : 1.3.8
6583 - fixed several bugs which might have caused a crash with bad configs
6584 - several optimizations in header processing
6585 - many progresses towards transaction-based processing
6586 - option forwardfor may be used in frontends
6587 - completed HTTP response processing
6588 - some code refactoring between request and response processing
6589 - new HTTP header manipulation functions
6590 - optimizations on the recv() patch to reduce CPU usage under very
6591 high data rates.
6592 - more user-friendly help about the 'usesrc' keyword (CTTPROXY)
6593 - username/groupname support from Marcus Rueckert
6594 - added the "except" keyword to the "forwardfor" option (Bryan German)
6595 - support for health-checks on other addresses (Fabrice Dulaunoy)
6596 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe)
6597 - do not insert "Connection: close" in HTTP/1.0 messages
6598
Willy Tarreau9cabf702007-01-26 23:49:01 +010065992007/01/26 : 1.3.7
6600 - fix critical bug introduced with 1.3.6 : an empty request header
6601 may lead to a crash due to missing pointer assignment
6602 - hdr_idx might be left uninitialized in debug mode
6603 - fixed build on FreeBSD due to missing fd_set declaration
6604
Willy Tarreaue7a24382007-01-22 08:57:44 +010066052007/01/22 : 1.3.6.1
6606 - change in the header chaining broke cookies and authentication
6607
Willy Tarreau49e1ee82007-01-22 00:56:46 +010066082007/01/22 : 1.3.6
6609 - stats now support the HEAD method too
6610 - extracted http request from the session
6611 - huge rework of the HTTP parser which is now a 28-state FSM.
6612 - linux-style likely/unlikely macros for optimization hints
6613 - do not create a server socket when there's no server
6614 - imported lots of docs
6615
Willy Tarreau5871f8e2007-01-07 02:47:01 +010066162007/01/07 : 1.3.5
6617 - stats: swap color sets for active and backup servers
6618 - try to guess server check port when unset
6619 - added complete support and doc for TCP Splicing
6620 - replace the wait-queue linked list with an rbtree.
6621 - a few bugfixes and cleanups
6622
Willy Tarreau85270da2007-01-02 00:59:39 +010066232007/01/02 : 1.3.4
6624 - support for cttproxy on the server side to present the client
6625 address to the server.
6626 - added support for SO_REUSEPORT on Linux (needs kernel patch)
6627 - new RFC2616-compliant HTTP request parser with header indexing
6628 - split proxies in frontends, rulesets and backends
6629 - implemented the 'req[i]setbe' to select a backend depending
6630 on the contents
6631 - added the 'default_backend' keyword to select a default BE.
6632 - new stats page featuring FEs and BEs + bytes in both dirs
6633 - improved log format to indicate the backend and the time in ms.
6634 - lots of cleanups
6635
Willy Tarreau9c9fea42006-10-16 00:03:35 +020066362006/10/15 : 1.3.3
6637 - fix broken redispatch option in case the connection has already
6638 been marked "in progress" (ie: nearly always).
6639 - support regparm on x86 to speed up some often called functions
6640 - removed a few useless calls to gettimeofday() in log functions.
6641 - lots of 'const char*' cleanups
6642 - turn every FD_* into functions which are faster on recent CPUs
6643
Willy Tarreau690f9aa2006-09-03 11:23:06 +020066442006/09/03 : 1.3.2
6645 - started the changes towards I/O completion callbacks. stream_sock* have
6646 replaced event_*.
6647 - added the new "reqtarpit" and "reqitarpit" protection features
6648
Willy Tarreau8f2b8552006-07-09 17:11:39 +020066492006/07/09 : 1.3.1 (1.2.15)
6650 - now, haproxy warns about missing timeout during startup to try to
6651 eliminate all those buggy configurations.
6652 - added "Content-Type: text/html" in responses wherever appropriate, as
6653 suggested by Cameron Simpson.
6654 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to
6655 test server's health
6656 - implemented "monitor-uri" so that haproxy can reply to a specific URI with
6657 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies
6658 at once.
6659
Willy Tarreaub9e98b62006-07-03 10:32:46 +020066602006/06/29 : 1.3.0
6661 - exploded the whole file into multiple .c and .h. No functionnal
Willy Tarreau8f2b8552006-07-09 17:11:39 +02006662 difference is expected at all.
6663 - fixed a bug by which neither stats nor error messages could be returned if
6664 'clitimeout' was missing.
Willy Tarreaub9e98b62006-07-03 10:32:46 +02006665
willy tarreau7e6328d2006-05-21 23:26:20 +020066662006/05/21 : 1.2.14
6667 - new HTML status report with the 'stats' keyword.
6668 - added the 'abortonclose' option to better resist traffic surges
6669 - implemented dynamic traffic regulation with the 'minconn' option
6670 - show request time on denied requests
6671 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT
6672 - now a proxy instance is allowed to run without servers, which is
6673 useful to dedicate one instance to stats
6674 - added lots of error counters
6675 - a missing parenthesis preventd matching of cacheable cookies
6676 - a missing parenthesis in poll_loop() might have caused missed events.
6677
Willy TARREAU4404b7e2006-05-14 10:00:09 +020066782006/05/14 : 1.2.13.1
6679 - an uninitialized field in the struct session could cause a crash when
6680 the session was freed. This has been encountered on Solaris only.
6681 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's
6682 be nice to them by performing a soft stop if pause fails.
6683
willy tarreauc3a2e072006-05-13 18:51:38 +020066842006/05/13 : 1.2.13
6685 - 'maxconn' server parameter to do per-server session limitation
6686 - queueing to support non-blocking session limitation
6687 - fixed removal of cookies for cookie-less servers such as backup servers
6688 - two separate wait queues for expirable and non-expirable tasks provide
6689 better performance with lots of sessions.
6690 - some code cleanups and performance improvements
6691 - made state dumps a bit more verbose
6692 - fixed missing checks for NULL srv in dispatch mode
6693 - load balancing on backup servers was not possible in source hash mode.
6694 - two session flags shared the same bit, but fortunately they were not
6695 compatible.
6696
willy tarreauc0d4bbd2006-04-15 21:47:50 +020066972006/04/15 : 1.2.12
6698 Very few changes preparing for more important changes to support per-server
6699 session limitations and queueing :
6700 - ignore leading empty lines in HTTP requests as suggested by RFC2616.
6701 - added the 'weight' parameter to the servers, limited to 1..256. It applies
6702 to roundrobin and source hash.
6703 - the optional '-s' option could clobber '-st' and '-sf' if compiled in.
6704
willy tarreaue0dd2692006-03-30 16:27:34 +020067052006/03/30 : 1.2.11.1
6706 - under some conditions, it might have been possible that when the
6707 last dead server became available, it would not have been used
6708 till another one would have changed state. Could not be reproduced
6709 at all, however seems possible from the code.
6710
willy tarreaud2058dc2006-03-25 20:35:41 +010067112006/03/25 : 1.2.11
6712 - added the '-db' command-line option to disable backgrounding.
6713 - added the -sf/-st command-line arguments which are used to specify
6714 a list of pids to send a FINISH or TERMINATE signal upon startup.
6715 They will also be asked to release their port if a bind fails.
6716 - reworked the startup mechanism to allow the sending of a signal to a list
6717 of old pids if a socket cannot be bound, with a retry for a limited amount
6718 of time (1 second by default).
6719 - added the ability to enforce limits on memory usage.
6720 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
6721 - re-architectured the server round-robin mechanism to ease integration of
6722 other algorithms. It now relies on the number of active and backup servers.
6723 - added a counter for the number of active and backup servers, and report
6724 these numbers upon SIGHUP or state change.
6725
willy tarreaubfad5742006-03-23 14:19:11 +010067262006/03/23 : 1.2.10.1
6727 - while fixing the backup server round-robin "feature", a new bug was
6728 introduced which could miss some backup servers.
6729 - the displayed proxy name was wrong when dumping upon SIGHUP.
6730
willy tarreauaaff30e2006-03-19 21:30:41 +010067312006/03/19 : 1.2.10
6732 - assert.h is needed when DEBUG is defined.
6733 - ENORMOUS long standing bug affecting the epoll polling system :
6734 event_data is a union, not a structure !
6735 - Make fd management more robust and easier to debug. Also some
6736 micro-optimisations.
6737 - Limit the number of consecutive accept() in multi-process mode.
6738 This produces a more evenly distributed load across the processes and
6739 slightly improves performance by reducing bottlenecks.
6740 - Make health-checks be more regular, and faster to retry after a timeout.
6741 - Fixed some messages to ease parsing of alerts.
6742 - provided a patch to enable epoll on RHEL3 kernels.
6743 - Separated OpenBSD build from the main Makefile into a new one.
6744
willy tarreau50be0172006-03-15 19:41:19 +010067452006/03/15 : 1.2.9
6746 - haproxy could not be stopped after being paused, it had to be woken up
6747 first. This has been fixed.
6748 - the 'ulimit-n' parameter is now optional and by default computed from
6749 maxconn + the number of listeners + the number of health-checks.
6750 - it is now possible to specify a maximum number of connections at build
6751 time with the SYSTEM_MAXCONN define. The value set in the configuration
6752 file will then be limited to this value, and only the command-line '-n'
6753 option will be able to bypass it. It will prevent against accidental
6754 high memory usage on small systems.
6755 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
6756 versions did not detect a line beginning with a space as the continuation
6757 of previous header. It is now correct.
6758 - health checks sent to servers configured with identical intervals were
6759 sent in perfect synchronisation because the initial time was the same
6760 for all. This could induce high load peaks when fragile servers were
6761 hosting tens of instances for the same application. Now the load is
6762 spread evenly across the smallest interval amongst a listener.
6763 - a new 'forceclose' option was added to make the proxy close the outgoing
6764 channel to the server once it has sent all its headers and the server
6765 starts responding. This helps some servers which don't close upon the
6766 'Connection: close' header. It implies 'option httpclose'.
6767 - there was a bug in the way the backup servers were handled. They were
6768 erroneously load-balanced while the doc said the opposite. Since
6769 load-balanced backup servers is one of the features some people have
6770 been asking for, the problem was fixed to reflect the documented
6771 behaviour and a new option 'allbackups' was introduced to provide the
6772 feature to those who need it.
6773 - a never ending connect() could lead to a fast select() loop if its
6774 timeout times the number of retransmits exceeded the server read or write
6775 timeout, because the later was used to compute select()'s timeout while
6776 the connection timeout was not reached.
6777 - now we initialize the libc's localtime structures very early so that even
6778 under OOM conditions, we can still send dated error messages without
6779 segfaulting.
6780 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
6781 descriptors are closed.
6782
willy tarreau065f1c02006-01-29 22:10:07 +010067832006/01/29 : 1.2.8
6784 - fixed a nasty bug affecting poll/epoll which could return unmodified data
6785 from the server to the client, and sometimes lead to memory corruption
6786 crashing the process.
6787 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
6788
67892005/12/18 : 1.2.7.1
6790 - the "retries" option was ignored because connect() could not return an
6791 error if the connection failed before the timeout.
6792 - TCP health-checks could not detect a connection refused in poll/epoll
6793 mode.
6794
willy tarreaua56eca72005-12-18 01:34:42 +010067952005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +01006796 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
6797 least on Solaris, this caused the libc's regex primitives to be used instead
6798 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +01006799 - delayed the quiet mode during startup so that most of the startup alerts can
6800 be displayed even in quiet mode.
6801 - display an alert when a listener has no address, invalid or no port, or when
6802 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +01006803 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +01006804
willy tarreaub952e1d2005-12-18 01:31:20 +010068052005/10/09 : 1.2.7rc (1.1.33rc)
6806 - second batch of socklen_t changes.
6807 - clean-ups from Cameron Simpson.
6808 - because tv_remain() does not know about eternity, using no timeout can
6809 make select() spin around a null time-out. Bug reported by Cameron Simpson.
6810 - client read timeout was not properly set to eternity initialized after an
6811 accept() if it was not set in the config. It remained undetected so long
6812 because eternity is 0 and newly allocated pages are zeroed by the system.
6813 - do not call get_original_dst() when not in transparent mode.
6814 - implemented a workaround for a bug in certain epoll() implementations on
6815 linux-2.4 kernels (epoll-lt <= 0.21).
6816 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
6817
willy tarreauc5f73ed2005-12-18 01:26:38 +010068182005/08/07 : 1.2.6
6819 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
6820
68212005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +01006822 - added the number of active sessions (proxy/process) in the logs
6823
68242005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +01006825 - the time-out fix introduced in 1.1.25 caused a corner case where it was
6826 possible for a client to keep a connection maintained regardless of the
6827 timeout if the server closed the connection during the HEADER phase,
6828 while the client ignored the close request while doing nothing in the
6829 other direction. This has been fixed now by ensuring that read timeouts
6830 are re-armed when switching to any SHUTW state.
6831
68322005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
6833 - enhanced error reporting in the logs. Now the proxy will precisely detect
6834 various error conditions related to the system and/or process limits, and
6835 generate LOG_EMERG logs indicating that a resource has been exhausted.
6836 - logs will contain two new characters for the error cause : 'R' indicates
6837 a resource exhausted, and 'I' indicates an internal error, though this
6838 one should never happen.
6839 - server connection timeouts can now be reported in the logs (sC), as well
6840 as connections refused because of maxconn limitations (PC).
6841
68422005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
6843 - new global configuration keyword "ulimit-n" may be used to raise the FD
6844 limit to usable values.
6845 - a warning is now displayed on startup if the FD limit is lower than the
6846 configured maximum number of sockets.
6847
68482005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
6849 - new configuration keyword "monitor-net" makes it possible to be monitored
6850 by external devices which connect to the proxy without being logged nor
6851 forwarded to any server. Particularly useful on generic TCPv4 relays.
6852
willy tarreau5dffb602005-12-18 01:15:23 +010068532005/06/21 : 1.2.5.2
6854 - fixed build on PPC where chars are unsigned by default
6855
willy tarreau08dedbe2005-12-18 01:13:48 +010068562005/05/02 : 1.2.5.1
6857 - dirty hack to fix a bug introduced with epoll : if we close an FD and
6858 immediately reassign it to another session through a connect(), the
6859 Prev{Read,Write}Events are not updated, which causes trouble detecting
6860 changes, thus leading to many timeouts at high loads.
6861
willy tarreau64a3cc32005-12-18 01:13:11 +010068622005/04/30 : 1.2.5 (1.1.31)
6863 - changed the runtime argument to disable epoll() to '-de'
6864 - changed the runtime argument to disable poll() to '-dp'
6865 - added global options 'nopoll' and 'noepoll' to do the same at the
6866 configuration level.
6867 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
6868 support epoll().
6869 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
6870 - conditionned signals redirection to #ifdef DEBUG_MEMORY
6871
willy tarreau1c2ad212005-12-18 01:11:29 +010068722005/04/26 : 1.2.5-pre4
6873 - made epoll() support a compile-time option : ENABLE_EPOLL
6874 - provided a very little libc replacement for a possibly missing epoll()
6875 implementation which can be enabled by -DUSE_MY_EPOLL
6876 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
6877 The equivalent runtime argument becomes '-P'. A few tests show that it
6878 performs like select() with many fds, but slightly slower (certainly
6879 because of the higher amount of memory involved).
6880 - separated the 3 polling methods and the tasks scheduler into 4 distinct
6881 functions which makes the code a lot more modular.
6882 - moved some event tables to private static declarations inside the poller
6883 functions.
6884 - the poller functions can now initialize themselves, run, and cleanup.
6885 - changed the runtime argument to enable epoll() to '-E'.
6886 - removed buggy epoll_ctl() code in the client_retnclose() function. This
6887 function was never meant to remove anything.
6888 - fixed a typo which caused glibc to yell about a double free on exit.
6889 - removed error checking after epoll_ctl(DEL) because we can never know if
6890 the fd is still active or already closed.
6891 - added a few entries in the makefile
6892
willy tarreauad90a0c2005-12-18 01:09:15 +010068932005/04/25 : 1.2.5-pre3
6894 - experimental epoll() support (use temporary '-e' argument)
6895
68962005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +01006897 - implemented the HTTP 303 code for error redirection. This forces the
6898 browser to fetch the given URI with a GET request. The new keyword for
6899 this is 'errorloc303', and a new 'errorloc302' keyword has been created
6900 to make them easily distinguishable.
6901 - added more controls in the parser for valid use of '\x' sequence.
6902 - few fixes from Alex & Klaus
6903
willy tarreauad90a0c2005-12-18 01:09:15 +010069042005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +01006905 - fixed a few errors in the documentation
6906
69072005/02/13
6908 - do not pre-initialize unused file-descriptors before select() anymore.
6909
willy tarreau12350152005-12-18 01:03:27 +010069102005/01/22 : 1.2.4
6911 - merged Alexander Lazic's and Klaus Wagner's work on application
6912 cookie-based persistence. Since this is the first merge, this version is
6913 not intended for general use and reports are more than welcome. Some
6914 documentation is really needed though.
6915
willy tarreau0174f312005-12-18 01:02:42 +010069162005/01/22 : 1.2.3 (1.1.30)
6917 - add an architecture guide to the documentation
6918 - released without any changes
6919
69202004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
6921 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
6922 compatible with Apache. This limit can be configured in the makefile now.
6923 Thanks to Eric Fehr for the checks.
6924 - added a per-server "source" option which now makes it possible to bind to
6925 a different source for each (potentially identical) server.
6926 - changed cookie-based server selection slightly to allow several servers to
6927 share a same cookie, thus making it possible to associate backup servers to
6928 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
6929 - added the cookie 'prefix' mode which makes it possible to use persistence
6930 with thin clients which support only one cookie. The server name is prefixed
6931 before the application cookie, and restore back.
6932 - fixed the order of servers within an instance to match documentation. Now
6933 the servers are *really* used in the order of their declaration. This is
6934 particularly important when multiple backup servers are in use.
6935
willy tarreau4302f492005-12-18 01:00:37 +010069362004/10/18 : 1.2.2 (1.1.29)
6937 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
6938 option was enabled without the 'tcplog' option.
6939 - encode_string() would use hdr_encode_map instead of the map argument.
6940
69412004/08/10 : (1.1.29-pre2)
6942 - the logged request is now encoded with '#XX' for unprintable characters
6943 - new keywords 'capture request header' and 'capture response header' enable
6944 logging of arbitrary HTTP headers in requests and responses
6945 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
6946
willy tarreau982249e2005-12-18 00:57:06 +010069472004/06/06 : 1.2.1 (1.1.28)
6948 - added the '-V' command line option to verbosely report errors even though
6949 the -q or 'quiet' options are specified. This is useful with '-c'.
6950 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +01006951
willy tarreau982249e2005-12-18 00:57:06 +010069522004/06/05 :
6953 - added the "logasap" option which produces a log without waiting for the data
6954 to be transferred from the server to the client.
6955 - added the "httpclose" option which removes any "connection:" header and adds
6956 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +01006957 - added the 'checkcache' option which blocks cacheable responses containing
6958 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +01006959 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
6960 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +01006961
69622004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +01006963 - send an EMERG log when no server is available for a given proxy
6964 - added the '-c' command line option to syntactically check the
6965 configuration file without starting the service.
6966
willy tarreau8a86dbf2005-12-18 00:45:59 +010069672003/11/09 : 1.2.0
6968 - the same as 1.1.27 + IPv6 support on the client side
6969
willy tarreaufe2c5c12005-12-17 14:14:34 +010069702003/10/27 : 1.1.27
6971 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
6972 bug : the code still assumed that HTTP requests were the same size as the
6973 original ones (22 bytes), and failed if they were not.
6974 - added support for pidfiles.
6975
willy tarreauc58fc692005-12-17 14:13:08 +010069762003/10/22 : 1.1.26
6977 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
6978 broke almost all compatibility with POST requests, because the proxy
6979 stopped to read anything from the client as soon as it got all of its
6980 headers.
6981
willy tarreauc1cae632005-12-17 14:12:23 +010069822003/10/15 : 1.1.25
6983 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
6984 generic TCP proxies, or lighter logs for HTTP proxies.
6985 - fixed a time-out condition wrongly reported as client time-out in data
6986 phase if the client timeout was lower than the connect timeout times the
6987 number of retries.
6988
willy tarreau197e8ec2005-12-17 14:10:59 +010069892003/09/21 : 1.1.24
6990 - if a client sent a full request then shut its write connection down, then
6991 the request was aborted. This case was detected only when using haproxy
6992 both as health-check client and as a server.
6993 - if 'option httpchk' is used in a 'health' mode server, then responses will
6994 change from 'OK' to 'HTTP/1.0 200 OK'.
6995 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
6996 server response followed by a close could be ignored, and the server seen
6997 as failed.
6998
willy tarreaueedaa9f2005-12-17 14:08:03 +010069992003/09/19 : 1.1.23
7000 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
7001 'default' sections to keep previous parameters, and not initialize logs
7002 correctly.
7003 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
7004 relying on 'dispatch' mode to segfault at the first connection.
7005 - 'option httpchk' now supports method, HTTP version and a few headers.
7006 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
7007 'defaults' section
7008
70092003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +01007010 - 'listen' now supports optionnal address:port-range lists
7011 - 'bind' introduced to add new listen addresses
7012 - fixed a bug which caused a session to be kept established on a server till
7013 it timed out if the client closed during the DATA phase.
7014 - the port part of each server address can now be empty to make the proxy
7015 connect to the server on the same port it was connected to, be an absolute
7016 unsigned number to reflect a single port (as in older versions), or an
7017 explicitly signed number (+N/-N) to indicate that this offset must be
7018 applied to the port the proxy was connected to, when connecting to the
7019 server.
7020 - the 'port' server option allows the user to specify a different
7021 health-check port than the service one. It is mandatory when only relative
7022 ports have been specified and check is required. By default, the checks are
7023 sent to the service port.
7024 - new 'defaults' section which is rather similar to 'listen' except that all
7025 values are only used as default values for future 'listen' sections, until
7026 a new 'defaults' resets them. At the moment, server options, regexes,
7027 cookie names and captures cannot be set in the 'defaults' section.
7028
willy tarreau2f6ba652005-12-17 13:57:42 +010070292003/05/06 : 1.1.21
7030 - changed the debug output format so that it now includes the session unique
7031 ID followed by the instance name at the beginning of each line.
7032 - in debug mode, accept now shows the client's IP and port.
7033 - added one 3 small debugging scripts to search and pretty print debug output
7034 - changed the default health check request to "OPTIONS /" instead of
7035 "OPTIONS *" since not all servers implement the later one.
7036 - "option httpchk" now accepts an optional parameter allowing the user to
7037 specify and URI other than '/' during health-checks.
7038
willy tarreaub1ff9db2005-12-17 13:51:03 +010070392003/04/21 : 1.1.20
7040 - fixed two problems with time-outs, one where a server would be logged as
7041 timed out during transfer that take longer to complete than the fixed
7042 time-out, and one where clients were logged as timed-out during the data
7043 phase because they didn't have anything to send. This sometimes caused
7044 slow client connections to close too early while in fact there was no
7045 problem. The proper fix would be to have a per-fd time-out with
7046 conditions depending on the state of the HTTP FSM.
7047
willy tarreau906b2682005-12-17 13:49:52 +010070482003/04/16 : 1.1.19
7049 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
7050 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
7051 cookie persistence because it uses "cookie:". Two memcmp() have been
7052 replaced with strncasecmp().
7053
willy tarreau036e1ce2005-12-17 13:46:33 +010070542003/04/02 : 1.1.18
7055 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
7056 REGEX=pcre on the make command line.
7057 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
7058 - when explicit source address binding is required, it is now also used for
7059 health-checks.
7060 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
7061 itself.
7062 - factored several strings to reduce binary size by about 2 kB.
7063 - replaced setreuid() and setregid() with more standard setuid() and setgid().
7064 - added 4 status flags to the log line indicating who ended the connection
7065 first, the sessions state, the validity of the cookie, and action taken on
7066 the set-cookie header.
7067
70682002/10/18 : 1.1.17
7069 - add the notion of "backup" servers, which are used only when all other
7070 servers are down.
7071 - make Set-Cookie return "" instead of "(null)" when the server has no
7072 cookie assigned (useful for backup servers).
7073 - "log" now supports an optionnal level name (info, notice, err ...) above
7074 which nothing is sent.
7075 - replaced some strncmp() with memcmp() for better efficiency.
7076 - added "capture cookie" option which logs client and/or server cookies
7077 - cleaned up/down messages and dump servers states upon SIGHUP
7078 - added a redirection feature for errors : "errorloc <errnum> <url>"
7079 - now we won't insist on connecting to a dead server, even with a cookie,
7080 unless option "persist" is specified.
7081 - added HTTP/408 response for client request time-out and HTTP/50[234] for
7082 server reply time-out or errors.
7083
70842002/09/01 : 1.1.16
7085 - implement HTTP health checks when option "httpchk" is specified.
7086
70872002/08/07 : 1.1.15
7088 - replaced setpgid()/setpgrp() with setsid() for better portability, because
7089 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
7090
70912002/07/20 : 1.1.14
7092 - added "postonly" cookie mode
7093
70942002/07/15 : 1.1.13
7095 - tv_diff used inverted parameters which led to negative times !
7096
70972002/07/13 : 1.1.12
7098 - fixed stats monitoring, and optimized some tv_* for most common cases.
7099 - replaced temporary 'newhdr' with 'trash' to reduce stack size
7100 - made HTTP errors more HTML-fiendly.
7101 - renamed strlcpy() to strlcpy2() because of a slightly difference between
7102 their behaviour (return value), to avoid confusion.
7103 - restricted HTTP messages to HTTP proxies only
7104 - added a 502 message when the connection has been refused by the server,
7105 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
7106 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
7107 inserting a cookie, because some caches (apache) don't understand it.
7108 - fixed processing of server headers when client is in SHUTR state
7109
71102002/07/04 :
7111 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
7112 setpgid()
7113
71142002/06/04 : 1.1.11
7115 - fixed multi-cookie handling in client request to allow clean deletion
7116 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +01007117 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +01007118 - added a "nocache" option to "cookie" to specify that we explicitly want
7119 to add a "cache-control" header when we add a cookie.
7120 It is also possible to add an "Expires: <old-date>" to keep compatibility
7121 with old/broken caches.
7122
71232002/05/10 : 1.1.10
7124 - if a cookie is used in insert+indirect mode, it's desirable that the
7125 the servers don't see it. It was not possible to remove it correctly
7126 with regexps, so now it's removed automatically.
7127
71282002/04/19 : 1.1.9
7129 - don't use snprintf()'s return value as an end of message since it may
7130 be larger. This caused bus errors and segfaults in internal libc's
7131 getenv() during localtime() in send_log().
7132 - removed dead insecure send_syslog() function and all references to it.
7133 - fixed warnings on Solaris due to buggy implementation of isXXXX().
7134
71352002/04/18 : 1.1.8
7136 - option "dontlognull"
7137 - fixed "double space" bug in config parser
7138 - fixed an uninitialized server field in case of dispatch
7139 with no existing server which could cause a segfault during
7140 logging.
7141 - the pid logged was always the father's, which was wrong for daemons.
7142 - fixed wrong level "LOG_INFO" for message "proxy started".
7143
71442002/04/13 :
7145 - http logging is now complete :
7146 - ip:port, date, proxy, server
7147 - req_time, conn_time, hdr_time, tot_time
7148 - status, size, request
7149 - source address
7150
71512002/04/12 : 1.1.7
7152 - added option forwardfor
7153 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
7154 - added "log global" in "listen" section.
7155
71562002/04/09 :
7157 - added a new "global" section :
7158 - logs
7159 - debug, quiet, daemon modes
7160 - uid, gid, chroot, nbproc, maxconn
7161
71622002/04/08 : 1.1.6
7163 - regex are now chained and not limited anymore.
7164 - unavailable server now returns HTTP/502.
7165 - increased per-line args limit to 40
7166 - added reqallow/reqdeny to block some request on matches
7167 - added HTTP 400/403 responses
7168
71692002/04/03 : 1.1.5
7170 - connection logging displayed incorrect source address.
7171 - added proxy start/stop and server up/down log events.
7172 - replaced log message short buffers with larger trash.
7173 - enlarged buffer to 8 kB and replace buffer to 4 kB.
7174
71752002/03/25 : 1.1.4
7176 - made rise/fall/interval time configurable
7177
71782002/03/22 : 1.1.3
7179 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
7180 which could lead to loops.
7181
71822002/03/21 : 1.1.2
7183 - fixed a bug in buffer management where we could have a loop
7184 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
7185 => implemented an adjustable buffer limit.
7186 - fixed a bug : expiration of tasks in wait queue timeout is used again,
7187 and running tasks are skipped.
7188 - added some debug lines for accept events.
7189 - send warnings for servers up/down.
7190
71912002/03/12 : 1.1.1
7192 - fixed a bug in total failure handling
7193 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
7194
71952002/03/10 : 1.1.0
7196 - fixed a few timeout bugs
7197 - rearranged the task scheduler subsystem to improve performance,
7198 add new tasks, and make it easier to later port to librt ;
7199 - allow multiple accept() for one select() wake up ;
7200 - implemented internal load balancing with basic health-check ;
7201 - cookie insertion and header add/replace/delete, with better strings
7202 support.
7203
72042002/03/08
7205 - reworked buffer handling to fix a few rewrite bugs, and
7206 improve overall performance.
7207 - implement the "purge" option to delete server cookies in direct mode.
7208
72092002/03/07
7210 - fixed some error cases where the maxfd was not decreased.
7211
72122002/02/26
7213 - now supports transparent proxying, at least on linux 2.4.
7214
72152002/02/12
7216 - soft stop works again (fixed select timeout computation).
7217 - it seems that TCP proxies sometimes cannot timeout.
7218 - added a "quiet" mode.
7219 - enforce file descriptor limitation on socket() and accept().
7220
72212001/12/30 : release of version 1.0.2 : fixed a bug in header processing
72222001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
72232001/12/16 : release of version 1.0.0.
72242001/12/16 : added syslog capability for each accepted connection.
72252001/11/19 : corrected premature end of files and occasional SIGPIPE.
72262001/10/31 : added health-check type servers (mode health) which replies OK then closes.
72272001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
7228 with or without cookies (use keyword http for this).
72292001/09/01 : added client/server header replacing with regexps.
7230 eg:
7231 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
7232 srvexp ^Server:\ .* Server:\ Apache
72332000/11/29 : first fully working release with complete FSMs and timeouts.
72342000/11/28 : major rewrite
72352000/11/26 : first write