blob: 67e9c565405cc011a9fb1d935c06a1aea750f144 [file] [log] [blame]
willy tarreau036e1ce2005-12-17 13:46:33 +01001ChangeLog :
2===========
willy tarreau4302f492005-12-18 01:00:37 +01003
willy tarreaue0dd2692006-03-30 16:27:34 +020042006/03/30 : 1.2.11.1
5 - under some conditions, it might have been possible that when the
6 last dead server became available, it would not have been used
7 till another one would have changed state. Could not be reproduced
8 at all, however seems possible from the code.
9
willy tarreaud2058dc2006-03-25 20:35:41 +0100102006/03/25 : 1.2.11
11 - added the '-db' command-line option to disable backgrounding.
12 - added the -sf/-st command-line arguments which are used to specify
13 a list of pids to send a FINISH or TERMINATE signal upon startup.
14 They will also be asked to release their port if a bind fails.
15 - reworked the startup mechanism to allow the sending of a signal to a list
16 of old pids if a socket cannot be bound, with a retry for a limited amount
17 of time (1 second by default).
18 - added the ability to enforce limits on memory usage.
19 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6)
20 - re-architectured the server round-robin mechanism to ease integration of
21 other algorithms. It now relies on the number of active and backup servers.
22 - added a counter for the number of active and backup servers, and report
23 these numbers upon SIGHUP or state change.
24
willy tarreaubfad5742006-03-23 14:19:11 +0100252006/03/23 : 1.2.10.1
26 - while fixing the backup server round-robin "feature", a new bug was
27 introduced which could miss some backup servers.
28 - the displayed proxy name was wrong when dumping upon SIGHUP.
29
willy tarreauaaff30e2006-03-19 21:30:41 +0100302006/03/19 : 1.2.10
31 - assert.h is needed when DEBUG is defined.
32 - ENORMOUS long standing bug affecting the epoll polling system :
33 event_data is a union, not a structure !
34 - Make fd management more robust and easier to debug. Also some
35 micro-optimisations.
36 - Limit the number of consecutive accept() in multi-process mode.
37 This produces a more evenly distributed load across the processes and
38 slightly improves performance by reducing bottlenecks.
39 - Make health-checks be more regular, and faster to retry after a timeout.
40 - Fixed some messages to ease parsing of alerts.
41 - provided a patch to enable epoll on RHEL3 kernels.
42 - Separated OpenBSD build from the main Makefile into a new one.
43
willy tarreau50be0172006-03-15 19:41:19 +0100442006/03/15 : 1.2.9
45 - haproxy could not be stopped after being paused, it had to be woken up
46 first. This has been fixed.
47 - the 'ulimit-n' parameter is now optional and by default computed from
48 maxconn + the number of listeners + the number of health-checks.
49 - it is now possible to specify a maximum number of connections at build
50 time with the SYSTEM_MAXCONN define. The value set in the configuration
51 file will then be limited to this value, and only the command-line '-n'
52 option will be able to bypass it. It will prevent against accidental
53 high memory usage on small systems.
54 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier
55 versions did not detect a line beginning with a space as the continuation
56 of previous header. It is now correct.
57 - health checks sent to servers configured with identical intervals were
58 sent in perfect synchronisation because the initial time was the same
59 for all. This could induce high load peaks when fragile servers were
60 hosting tens of instances for the same application. Now the load is
61 spread evenly across the smallest interval amongst a listener.
62 - a new 'forceclose' option was added to make the proxy close the outgoing
63 channel to the server once it has sent all its headers and the server
64 starts responding. This helps some servers which don't close upon the
65 'Connection: close' header. It implies 'option httpclose'.
66 - there was a bug in the way the backup servers were handled. They were
67 erroneously load-balanced while the doc said the opposite. Since
68 load-balanced backup servers is one of the features some people have
69 been asking for, the problem was fixed to reflect the documented
70 behaviour and a new option 'allbackups' was introduced to provide the
71 feature to those who need it.
72 - a never ending connect() could lead to a fast select() loop if its
73 timeout times the number of retransmits exceeded the server read or write
74 timeout, because the later was used to compute select()'s timeout while
75 the connection timeout was not reached.
76 - now we initialize the libc's localtime structures very early so that even
77 under OOM conditions, we can still send dated error messages without
78 segfaulting.
79 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file
80 descriptors are closed.
81
willy tarreau065f1c02006-01-29 22:10:07 +0100822006/01/29 : 1.2.8
83 - fixed a nasty bug affecting poll/epoll which could return unmodified data
84 from the server to the client, and sometimes lead to memory corruption
85 crashing the process.
86 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf.
87
882005/12/18 : 1.2.7.1
89 - the "retries" option was ignored because connect() could not return an
90 error if the connection failed before the timeout.
91 - TCP health-checks could not detect a connection refused in poll/epoll
92 mode.
93
willy tarreaua56eca72005-12-18 01:34:42 +0100942005/11/13 : 1.2.7
willy tarreau77bc8542005-12-18 01:31:43 +010095 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At
96 least on Solaris, this caused the libc's regex primitives to be used instead
97 of PCRE, which caused trouble on group references. This is now fixed.
willy tarreaud0fb4652005-12-18 01:32:04 +010098 - delayed the quiet mode during startup so that most of the startup alerts can
99 be displayed even in quiet mode.
100 - display an alert when a listener has no address, invalid or no port, or when
101 there are no enabled listeners upon startup.
willy tarreau4373b962005-12-18 01:32:31 +0100102 - added "static-pcre" to the list of supported regex options in the Makefile.
willy tarreau77bc8542005-12-18 01:31:43 +0100103
willy tarreaub952e1d2005-12-18 01:31:20 +01001042005/10/09 : 1.2.7rc (1.1.33rc)
105 - second batch of socklen_t changes.
106 - clean-ups from Cameron Simpson.
107 - because tv_remain() does not know about eternity, using no timeout can
108 make select() spin around a null time-out. Bug reported by Cameron Simpson.
109 - client read timeout was not properly set to eternity initialized after an
110 accept() if it was not set in the config. It remained undetected so long
111 because eternity is 0 and newly allocated pages are zeroed by the system.
112 - do not call get_original_dst() when not in transparent mode.
113 - implemented a workaround for a bug in certain epoll() implementations on
114 linux-2.4 kernels (epoll-lt <= 0.21).
115 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka.
116
willy tarreauc5f73ed2005-12-18 01:26:38 +01001172005/08/07 : 1.2.6
118 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t).
119
1202005/07/06 : 1.2.6-pre5 (1.1.32)
willy tarreau0fe39652005-12-18 01:25:24 +0100121 - added the number of active sessions (proxy/process) in the logs
122
1232005/07/06 : 1.2.6-pre4 (1.1.32-pre4)
willy tarreaub1285d52005-12-18 01:20:14 +0100124 - the time-out fix introduced in 1.1.25 caused a corner case where it was
125 possible for a client to keep a connection maintained regardless of the
126 timeout if the server closed the connection during the HEADER phase,
127 while the client ignored the close request while doing nothing in the
128 other direction. This has been fixed now by ensuring that read timeouts
129 are re-armed when switching to any SHUTW state.
130
1312005/07/05 : 1.2.6-pre3 (1.1.32-pre3)
132 - enhanced error reporting in the logs. Now the proxy will precisely detect
133 various error conditions related to the system and/or process limits, and
134 generate LOG_EMERG logs indicating that a resource has been exhausted.
135 - logs will contain two new characters for the error cause : 'R' indicates
136 a resource exhausted, and 'I' indicates an internal error, though this
137 one should never happen.
138 - server connection timeouts can now be reported in the logs (sC), as well
139 as connections refused because of maxconn limitations (PC).
140
1412005/07/05 : 1.2.6-pre2 (1.1.32-pre2)
142 - new global configuration keyword "ulimit-n" may be used to raise the FD
143 limit to usable values.
144 - a warning is now displayed on startup if the FD limit is lower than the
145 configured maximum number of sockets.
146
1472005/07/05 : 1.2.6-pre1 (1.1.32-pre1)
148 - new configuration keyword "monitor-net" makes it possible to be monitored
149 by external devices which connect to the proxy without being logged nor
150 forwarded to any server. Particularly useful on generic TCPv4 relays.
151
willy tarreau5dffb602005-12-18 01:15:23 +01001522005/06/21 : 1.2.5.2
153 - fixed build on PPC where chars are unsigned by default
154
willy tarreau08dedbe2005-12-18 01:13:48 +01001552005/05/02 : 1.2.5.1
156 - dirty hack to fix a bug introduced with epoll : if we close an FD and
157 immediately reassign it to another session through a connect(), the
158 Prev{Read,Write}Events are not updated, which causes trouble detecting
159 changes, thus leading to many timeouts at high loads.
160
willy tarreau64a3cc32005-12-18 01:13:11 +01001612005/04/30 : 1.2.5 (1.1.31)
162 - changed the runtime argument to disable epoll() to '-de'
163 - changed the runtime argument to disable poll() to '-dp'
164 - added global options 'nopoll' and 'noepoll' to do the same at the
165 configuration level.
166 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to
167 support epoll().
168 - changed default FD_SETSIZE to 65536 on Solaris (default=1024)
169 - conditionned signals redirection to #ifdef DEBUG_MEMORY
170
willy tarreau1c2ad212005-12-18 01:11:29 +01001712005/04/26 : 1.2.5-pre4
172 - made epoll() support a compile-time option : ENABLE_EPOLL
173 - provided a very little libc replacement for a possibly missing epoll()
174 implementation which can be enabled by -DUSE_MY_EPOLL
175 - implemented the poll() poller, which can be enabled with -DENABLE_POLL.
176 The equivalent runtime argument becomes '-P'. A few tests show that it
177 performs like select() with many fds, but slightly slower (certainly
178 because of the higher amount of memory involved).
179 - separated the 3 polling methods and the tasks scheduler into 4 distinct
180 functions which makes the code a lot more modular.
181 - moved some event tables to private static declarations inside the poller
182 functions.
183 - the poller functions can now initialize themselves, run, and cleanup.
184 - changed the runtime argument to enable epoll() to '-E'.
185 - removed buggy epoll_ctl() code in the client_retnclose() function. This
186 function was never meant to remove anything.
187 - fixed a typo which caused glibc to yell about a double free on exit.
188 - removed error checking after epoll_ctl(DEL) because we can never know if
189 the fd is still active or already closed.
190 - added a few entries in the makefile
191
willy tarreauad90a0c2005-12-18 01:09:15 +01001922005/04/25 : 1.2.5-pre3
193 - experimental epoll() support (use temporary '-e' argument)
194
1952005/04/24 : 1.2.5-pre2
willy tarreauc1f47532005-12-18 01:08:26 +0100196 - implemented the HTTP 303 code for error redirection. This forces the
197 browser to fetch the given URI with a GET request. The new keyword for
198 this is 'errorloc303', and a new 'errorloc302' keyword has been created
199 to make them easily distinguishable.
200 - added more controls in the parser for valid use of '\x' sequence.
201 - few fixes from Alex & Klaus
202
willy tarreauad90a0c2005-12-18 01:09:15 +01002032005/02/17 : 1.2.5-pre1
willy tarreauc1f47532005-12-18 01:08:26 +0100204 - fixed a few errors in the documentation
205
2062005/02/13
207 - do not pre-initialize unused file-descriptors before select() anymore.
208
willy tarreau12350152005-12-18 01:03:27 +01002092005/01/22 : 1.2.4
210 - merged Alexander Lazic's and Klaus Wagner's work on application
211 cookie-based persistence. Since this is the first merge, this version is
212 not intended for general use and reports are more than welcome. Some
213 documentation is really needed though.
214
willy tarreau0174f312005-12-18 01:02:42 +01002152005/01/22 : 1.2.3 (1.1.30)
216 - add an architecture guide to the documentation
217 - released without any changes
218
2192004/12/26 : 1.2.3-pre1 (1.1.30-pre1)
220 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is
221 compatible with Apache. This limit can be configured in the makefile now.
222 Thanks to Eric Fehr for the checks.
223 - added a per-server "source" option which now makes it possible to bind to
224 a different source for each (potentially identical) server.
225 - changed cookie-based server selection slightly to allow several servers to
226 share a same cookie, thus making it possible to associate backup servers to
227 live servers and ease soft-stop for maintenance periods. (Alexander Lazic)
228 - added the cookie 'prefix' mode which makes it possible to use persistence
229 with thin clients which support only one cookie. The server name is prefixed
230 before the application cookie, and restore back.
231 - fixed the order of servers within an instance to match documentation. Now
232 the servers are *really* used in the order of their declaration. This is
233 particularly important when multiple backup servers are in use.
234
willy tarreau4302f492005-12-18 01:00:37 +01002352004/10/18 : 1.2.2 (1.1.29)
236 - fixed a bug where a TCP connection would be logged twice if the 'logasap'
237 option was enabled without the 'tcplog' option.
238 - encode_string() would use hdr_encode_map instead of the map argument.
239
2402004/08/10 : (1.1.29-pre2)
241 - the logged request is now encoded with '#XX' for unprintable characters
242 - new keywords 'capture request header' and 'capture response header' enable
243 logging of arbitrary HTTP headers in requests and responses
244 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton()
245
willy tarreau982249e2005-12-18 00:57:06 +01002462004/06/06 : 1.2.1 (1.1.28)
247 - added the '-V' command line option to verbosely report errors even though
248 the -q or 'quiet' options are specified. This is useful with '-c'.
249 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch>
willy tarreau036e1ce2005-12-17 13:46:33 +0100250
willy tarreau982249e2005-12-18 00:57:06 +01002512004/06/05 :
252 - added the "logasap" option which produces a log without waiting for the data
253 to be transferred from the server to the client.
254 - added the "httpclose" option which removes any "connection:" header and adds
255 "Connection: close" in both direction.
willy tarreau97f58572005-12-18 00:53:44 +0100256 - added the 'checkcache' option which blocks cacheable responses containing
257 dangerous headers, such as 'set-cookie'.
willy tarreau982249e2005-12-18 00:57:06 +0100258 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible
259 information leak from servers.
willy tarreau25c4ea52005-12-18 00:49:49 +0100260
2612004/04/18 :
willy tarreaudd07e972005-12-18 00:48:48 +0100262 - send an EMERG log when no server is available for a given proxy
263 - added the '-c' command line option to syntactically check the
264 configuration file without starting the service.
265
willy tarreau8a86dbf2005-12-18 00:45:59 +01002662003/11/09 : 1.2.0
267 - the same as 1.1.27 + IPv6 support on the client side
268
willy tarreaufe2c5c12005-12-17 14:14:34 +01002692003/10/27 : 1.1.27
270 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful
271 bug : the code still assumed that HTTP requests were the same size as the
272 original ones (22 bytes), and failed if they were not.
273 - added support for pidfiles.
274
willy tarreauc58fc692005-12-17 14:13:08 +01002752003/10/22 : 1.1.26
276 - the fix introduced in 1.1.25 for client timeouts while waiting for servers
277 broke almost all compatibility with POST requests, because the proxy
278 stopped to read anything from the client as soon as it got all of its
279 headers.
280
willy tarreauc1cae632005-12-17 14:12:23 +01002812003/10/15 : 1.1.25
282 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for
283 generic TCP proxies, or lighter logs for HTTP proxies.
284 - fixed a time-out condition wrongly reported as client time-out in data
285 phase if the client timeout was lower than the connect timeout times the
286 number of retries.
287
willy tarreau197e8ec2005-12-17 14:10:59 +01002882003/09/21 : 1.1.24
289 - if a client sent a full request then shut its write connection down, then
290 the request was aborted. This case was detected only when using haproxy
291 both as health-check client and as a server.
292 - if 'option httpchk' is used in a 'health' mode server, then responses will
293 change from 'OK' to 'HTTP/1.0 200 OK'.
294 - fixed a Linux-only bug in case of HTTP server health-checks, where a single
295 server response followed by a close could be ignored, and the server seen
296 as failed.
297
willy tarreaueedaa9f2005-12-17 14:08:03 +01002982003/09/19 : 1.1.23
299 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent
300 'default' sections to keep previous parameters, and not initialize logs
301 correctly.
302 - fixed a second stupid bug introduced in 1.1.22 which caused configurations
303 relying on 'dispatch' mode to segfault at the first connection.
304 - 'option httpchk' now supports method, HTTP version and a few headers.
305 - now, 'option httpchk', 'cookie' and 'capture' can be specified in
306 'defaults' section
307
3082003/09/10 : 1.1.22
willy tarreaua41a8b42005-12-17 14:02:24 +0100309 - 'listen' now supports optionnal address:port-range lists
310 - 'bind' introduced to add new listen addresses
311 - fixed a bug which caused a session to be kept established on a server till
312 it timed out if the client closed during the DATA phase.
313 - the port part of each server address can now be empty to make the proxy
314 connect to the server on the same port it was connected to, be an absolute
315 unsigned number to reflect a single port (as in older versions), or an
316 explicitly signed number (+N/-N) to indicate that this offset must be
317 applied to the port the proxy was connected to, when connecting to the
318 server.
319 - the 'port' server option allows the user to specify a different
320 health-check port than the service one. It is mandatory when only relative
321 ports have been specified and check is required. By default, the checks are
322 sent to the service port.
323 - new 'defaults' section which is rather similar to 'listen' except that all
324 values are only used as default values for future 'listen' sections, until
325 a new 'defaults' resets them. At the moment, server options, regexes,
326 cookie names and captures cannot be set in the 'defaults' section.
327
willy tarreau2f6ba652005-12-17 13:57:42 +01003282003/05/06 : 1.1.21
329 - changed the debug output format so that it now includes the session unique
330 ID followed by the instance name at the beginning of each line.
331 - in debug mode, accept now shows the client's IP and port.
332 - added one 3 small debugging scripts to search and pretty print debug output
333 - changed the default health check request to "OPTIONS /" instead of
334 "OPTIONS *" since not all servers implement the later one.
335 - "option httpchk" now accepts an optional parameter allowing the user to
336 specify and URI other than '/' during health-checks.
337
willy tarreaub1ff9db2005-12-17 13:51:03 +01003382003/04/21 : 1.1.20
339 - fixed two problems with time-outs, one where a server would be logged as
340 timed out during transfer that take longer to complete than the fixed
341 time-out, and one where clients were logged as timed-out during the data
342 phase because they didn't have anything to send. This sometimes caused
343 slow client connections to close too early while in fact there was no
344 problem. The proper fix would be to have a per-fd time-out with
345 conditions depending on the state of the HTTP FSM.
346
willy tarreau906b2682005-12-17 13:49:52 +01003472003/04/16 : 1.1.19
348 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP
349 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on
350 cookie persistence because it uses "cookie:". Two memcmp() have been
351 replaced with strncasecmp().
352
willy tarreau036e1ce2005-12-17 13:46:33 +01003532003/04/02 : 1.1.18
354 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting
355 REGEX=pcre on the make command line.
356 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /".
357 - when explicit source address binding is required, it is now also used for
358 health-checks.
359 - added 'reqpass' and 'reqipass' to allow certain headers but not the request
360 itself.
361 - factored several strings to reduce binary size by about 2 kB.
362 - replaced setreuid() and setregid() with more standard setuid() and setgid().
363 - added 4 status flags to the log line indicating who ended the connection
364 first, the sessions state, the validity of the cookie, and action taken on
365 the set-cookie header.
366
3672002/10/18 : 1.1.17
368 - add the notion of "backup" servers, which are used only when all other
369 servers are down.
370 - make Set-Cookie return "" instead of "(null)" when the server has no
371 cookie assigned (useful for backup servers).
372 - "log" now supports an optionnal level name (info, notice, err ...) above
373 which nothing is sent.
374 - replaced some strncmp() with memcmp() for better efficiency.
375 - added "capture cookie" option which logs client and/or server cookies
376 - cleaned up/down messages and dump servers states upon SIGHUP
377 - added a redirection feature for errors : "errorloc <errnum> <url>"
378 - now we won't insist on connecting to a dead server, even with a cookie,
379 unless option "persist" is specified.
380 - added HTTP/408 response for client request time-out and HTTP/50[234] for
381 server reply time-out or errors.
382
3832002/09/01 : 1.1.16
384 - implement HTTP health checks when option "httpchk" is specified.
385
3862002/08/07 : 1.1.15
387 - replaced setpgid()/setpgrp() with setsid() for better portability, because
388 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD.
389
3902002/07/20 : 1.1.14
391 - added "postonly" cookie mode
392
3932002/07/15 : 1.1.13
394 - tv_diff used inverted parameters which led to negative times !
395
3962002/07/13 : 1.1.12
397 - fixed stats monitoring, and optimized some tv_* for most common cases.
398 - replaced temporary 'newhdr' with 'trash' to reduce stack size
399 - made HTTP errors more HTML-fiendly.
400 - renamed strlcpy() to strlcpy2() because of a slightly difference between
401 their behaviour (return value), to avoid confusion.
402 - restricted HTTP messages to HTTP proxies only
403 - added a 502 message when the connection has been refused by the server,
404 to prevent clients from believing this is a zero-byte HTTP 0.9 reply.
405 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when
406 inserting a cookie, because some caches (apache) don't understand it.
407 - fixed processing of server headers when client is in SHUTR state
408
4092002/07/04 :
410 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after
411 setpgid()
412
4132002/06/04 : 1.1.11
414 - fixed multi-cookie handling in client request to allow clean deletion
415 in insert+indirect mode. Now, only the server cookie is deleted and not
willy tarreau906b2682005-12-17 13:49:52 +0100416 all the header. Should now be compliant to RFC2965.
willy tarreau036e1ce2005-12-17 13:46:33 +0100417 - added a "nocache" option to "cookie" to specify that we explicitly want
418 to add a "cache-control" header when we add a cookie.
419 It is also possible to add an "Expires: <old-date>" to keep compatibility
420 with old/broken caches.
421
4222002/05/10 : 1.1.10
423 - if a cookie is used in insert+indirect mode, it's desirable that the
424 the servers don't see it. It was not possible to remove it correctly
425 with regexps, so now it's removed automatically.
426
4272002/04/19 : 1.1.9
428 - don't use snprintf()'s return value as an end of message since it may
429 be larger. This caused bus errors and segfaults in internal libc's
430 getenv() during localtime() in send_log().
431 - removed dead insecure send_syslog() function and all references to it.
432 - fixed warnings on Solaris due to buggy implementation of isXXXX().
433
4342002/04/18 : 1.1.8
435 - option "dontlognull"
436 - fixed "double space" bug in config parser
437 - fixed an uninitialized server field in case of dispatch
438 with no existing server which could cause a segfault during
439 logging.
440 - the pid logged was always the father's, which was wrong for daemons.
441 - fixed wrong level "LOG_INFO" for message "proxy started".
442
4432002/04/13 :
444 - http logging is now complete :
445 - ip:port, date, proxy, server
446 - req_time, conn_time, hdr_time, tot_time
447 - status, size, request
448 - source address
449
4502002/04/12 : 1.1.7
451 - added option forwardfor
452 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel
453 - added "log global" in "listen" section.
454
4552002/04/09 :
456 - added a new "global" section :
457 - logs
458 - debug, quiet, daemon modes
459 - uid, gid, chroot, nbproc, maxconn
460
4612002/04/08 : 1.1.6
462 - regex are now chained and not limited anymore.
463 - unavailable server now returns HTTP/502.
464 - increased per-line args limit to 40
465 - added reqallow/reqdeny to block some request on matches
466 - added HTTP 400/403 responses
467
4682002/04/03 : 1.1.5
469 - connection logging displayed incorrect source address.
470 - added proxy start/stop and server up/down log events.
471 - replaced log message short buffers with larger trash.
472 - enlarged buffer to 8 kB and replace buffer to 4 kB.
473
4742002/03/25 : 1.1.4
475 - made rise/fall/interval time configurable
476
4772002/03/22 : 1.1.3
478 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR]
479 which could lead to loops.
480
4812002/03/21 : 1.1.2
482 - fixed a bug in buffer management where we could have a loop
483 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE.
484 => implemented an adjustable buffer limit.
485 - fixed a bug : expiration of tasks in wait queue timeout is used again,
486 and running tasks are skipped.
487 - added some debug lines for accept events.
488 - send warnings for servers up/down.
489
4902002/03/12 : 1.1.1
491 - fixed a bug in total failure handling
492 - fixed a bug in timestamp comparison within same second (tv_cmp_ms)
493
4942002/03/10 : 1.1.0
495 - fixed a few timeout bugs
496 - rearranged the task scheduler subsystem to improve performance,
497 add new tasks, and make it easier to later port to librt ;
498 - allow multiple accept() for one select() wake up ;
499 - implemented internal load balancing with basic health-check ;
500 - cookie insertion and header add/replace/delete, with better strings
501 support.
502
5032002/03/08
504 - reworked buffer handling to fix a few rewrite bugs, and
505 improve overall performance.
506 - implement the "purge" option to delete server cookies in direct mode.
507
5082002/03/07
509 - fixed some error cases where the maxfd was not decreased.
510
5112002/02/26
512 - now supports transparent proxying, at least on linux 2.4.
513
5142002/02/12
515 - soft stop works again (fixed select timeout computation).
516 - it seems that TCP proxies sometimes cannot timeout.
517 - added a "quiet" mode.
518 - enforce file descriptor limitation on socket() and accept().
519
5202001/12/30 : release of version 1.0.2 : fixed a bug in header processing
5212001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris
5222001/12/16 : release of version 1.0.0.
5232001/12/16 : added syslog capability for each accepted connection.
5242001/11/19 : corrected premature end of files and occasional SIGPIPE.
5252001/10/31 : added health-check type servers (mode health) which replies OK then closes.
5262001/10/30 : added the ability to support standard TCP proxies and HTTP proxies
527 with or without cookies (use keyword http for this).
5282001/09/01 : added client/server header replacing with regexps.
529 eg:
530 cliexp ^(Host:\ [^:]*).* Host:\ \1:80
531 srvexp ^Server:\ .* Server:\ Apache
5322000/11/29 : first fully working release with complete FSMs and timeouts.
5332000/11/28 : major rewrite
5342000/11/26 : first write